{"id":13468254,"url":"https://github.com/aws/aws-sam-cli","last_synced_at":"2026-04-05T17:38:00.800Z","repository":{"id":37057422,"uuid":"92205085","full_name":"aws/aws-sam-cli","owner":"aws","description":"CLI tool to build, test, debug, and deploy Serverless applications using AWS SAM","archived":false,"fork":false,"pushed_at":"2026-04-01T21:51:49.000Z","size":181991,"stargazers_count":6702,"open_issues_count":515,"forks_count":1217,"subscribers_count":145,"default_branch":"develop","last_synced_at":"2026-04-01T22:14:45.917Z","etag":null,"topics":["api-gateway","aws","docker","lambda","python","sam","serverless","serverlessapplicationmodel"],"latest_commit_sha":null,"homepage":"https://aws.amazon.com/serverless/sam/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/aws.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":"NOTICE","maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2017-05-23T18:16:23.000Z","updated_at":"2026-04-01T14:04:32.000Z","dependencies_parsed_at":"2022-07-14T10:22:10.951Z","dependency_job_id":"768fb874-1331-42fb-94ea-051d85db2e67","html_url":"https://github.com/aws/aws-sam-cli","commit_stats":{"total_commits":3164,"total_committers":311,"mean_commits":10.17363344051447,"dds":0.752212389380531,"last_synced_commit":"4b3322c6d8f454c1076dea01218f6dd75c3d4aa5"},"previous_names":["awslabs/aws-sam-cli","awslabs/aws-sam-local"],"tags_count":878,"template":false,"template_full_name":null,"purl":"pkg:github/aws/aws-sam-cli","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aws%2Faws-sam-cli","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aws%2Faws-sam-cli/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aws%2Faws-sam-cli/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aws%2Faws-sam-cli/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/aws","download_url":"https://codeload.github.com/aws/aws-sam-cli/tar.gz/refs/heads/develop","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aws%2Faws-sam-cli/sbom","scorecard":{"id":164781,"data":{"date":"2025-08-11","repo":{"name":"github.com/aws/aws-sam-cli","commit":"ba82b4752d2a0a2bbb807e971a9a5d12ecc79590"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":6.1,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: jobLevel 'contents' permission set to 'write': .github/workflows/automated-updates-to-sam-cli.yml:12","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/automated-updates-to-sam-cli.yml:57","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/automated-updates-to-sam-cli.yml:108","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/build.yml:74","Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:29","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:30","Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/codeql.yml:32","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/update-reproducibles.yml:16","Warn: no topLevel permission defined: .github/workflows/automated-updates-to-sam-cli.yml:1","Warn: no topLevel permission defined: .github/workflows/build.yml:1","Warn: no topLevel permission defined: .github/workflows/close-issue-on-release.yml:1","Warn: no topLevel permission defined: .github/workflows/close-stale-issues.yml:1","Warn: no topLevel permission defined: .github/workflows/closed-issue-message.yml:1","Warn: no topLevel permission defined: .github/workflows/codeql.yml:1","Warn: no topLevel permission defined: .github/workflows/pr-labeler.yml:1","Warn: no topLevel permission defined: .github/workflows/update-reproducibles.yml:1","Warn: no topLevel permission defined: .github/workflows/validate_pyinstaller.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Binary-Artifacts","score":7,"reason":"binaries present in source code","details":["Warn: binary detected: samcli/lib/init/templates/cookiecutter-aws-sam-hello-java-gradle/{{cookiecutter.project_name}}/HelloWorldFunction/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: samcli/local/rapid/aws-lambda-rie-arm64:1","Warn: binary detected: samcli/local/rapid/aws-lambda-rie-x86_64:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/aws/.github/SECURITY.md:1","Info: Found linked content: github.com/aws/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/aws/.github/SECURITY.md:1","Info: Found text in security policy: github.com/aws/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":8,"reason":"5 out of the last 5 releases have a total of 5 signed artifacts.","details":["Info: signed release artifact: aws-sam-cli-linux-arm64.zip.sig: https://github.com/aws/aws-sam-cli/releases/tag/v1.142.1","Info: signed release artifact: aws-sam-cli-linux-arm64.zip.sig: https://github.com/aws/aws-sam-cli/releases/tag/v1.142.0","Info: signed release artifact: aws-sam-cli-linux-arm64.zip.sig: https://github.com/aws/aws-sam-cli/releases/tag/v1.141.0","Info: signed release artifact: aws-sam-cli-linux-arm64.zip.sig: https://github.com/aws/aws-sam-cli/releases/tag/v1.140.0","Info: signed release artifact: aws-sam-cli-linux-arm64.zip.sig: https://github.com/aws/aws-sam-cli/releases/tag/v1.139.0","Warn: release artifact v1.142.1 does not have provenance: https://api.github.com/repos/aws/aws-sam-cli/releases/229217666","Warn: release artifact v1.142.0 does not have provenance: https://api.github.com/repos/aws/aws-sam-cli/releases/228961302","Warn: release artifact v1.141.0 does not have provenance: https://api.github.com/repos/aws/aws-sam-cli/releases/226807340","Warn: release artifact v1.140.0 does not have provenance: https://api.github.com/repos/aws/aws-sam-cli/releases/223520377","Warn: release artifact v1.139.0 does not have provenance: https://api.github.com/repos/aws/aws-sam-cli/releases/220490135"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/automated-updates-to-sam-cli.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/automated-updates-to-sam-cli.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:216: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:217: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:238: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:239: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/build.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/close-stale-issues.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/close-stale-issues.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/closed-issue-message.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/closed-issue-message.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/codeql.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/codeql.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/codeql.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/codeql.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-labeler.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/pr-labeler.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-labeler.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/pr-labeler.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-reproducibles.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/update-reproducibles.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-reproducibles.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/update-reproducibles.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate_pyinstaller.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-sam-cli/validate_pyinstaller.yml/develop?enable=pin","Warn: containerImage not pinned by hash: .gitpod.Dockerfile:1: pin your Docker image by updating gitpod/workspace-full to gitpod/workspace-full@sha256:b1195dfae7ee9a12a89d195247c3e1357cc6a18360a41473dbec67525ef434e2","Warn: pipCommand not pinned by hash: .gitpod.Dockerfile:10","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-linux.sh:121","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-linux.sh:122","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-linux.sh:128","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-mac.sh:104","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-mac.sh:105","Warn: pipCommand not pinned by hash: installer/pyinstaller/build-mac.sh:111","Warn: downloadThenRun not pinned by hash: .github/workflows/build.yml:169","Warn: pipCommand not pinned by hash: .github/workflows/build.yml:174","Info:   0 out of  33 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   3 third-party GitHubAction dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   8 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":10,"reason":"SAST tool is run on all commits","details":["Info: SAST configuration detected: CodeQL","Info: all commits (30) are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"45 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2014-14 / GHSA-652x-xj99-gmcc","Warn: Project is vulnerable to: GHSA-9hjg-9r4m-mvj7","Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56","Warn: Project is vulnerable to: PYSEC-2014-13 / GHSA-cfj3-7x9c-4p3h","Warn: Project is vulnerable to: PYSEC-2018-28 / GHSA-x84v-xcm2-53pg","Warn: Project is vulnerable to: PYSEC-2023-74 / GHSA-j8r2-6x86-q33q","Warn: Project is vulnerable to: PYSEC-2018-34 / GHSA-2fc2-6r4j-p65h","Warn: Project is vulnerable to: PYSEC-2021-856 / GHSA-5545-2q6w-2gh6","Warn: Project is vulnerable to: PYSEC-2019-108 / GHSA-9fq2-x9r6-wfmf","Warn: Project is vulnerable to: PYSEC-2018-33 / GHSA-cw6w-4rcx-xphc","Warn: Project is vulnerable to: PYSEC-2021-857 / GHSA-f7c7-j99h-c22f","Warn: Project is vulnerable to: GHSA-fpfv-jqm9-f5jm","Warn: Project is vulnerable to: PYSEC-2017-1 / GHSA-frgw-fgh6-9g52","Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22","Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-6pw2-5hjv-9pf7","Warn: Project is vulnerable to: GHSA-4w2j-2rg4-5mjw","Warn: Project is vulnerable to: GHSA-mrgp-mrhc-5jrq","Warn: Project is vulnerable to: GHSA-7jxr-cg7f-gpgv","Warn: Project is vulnerable to: GHSA-xj72-wvfv-8985","Warn: Project is vulnerable to: GHSA-ch3r-j5x3-6q2m","Warn: Project is vulnerable to: GHSA-p5gc-c584-jj6v","Warn: Project is vulnerable to: GHSA-whpj-8f3w-67p5","Warn: Project is vulnerable to: GHSA-cchq-frgv-rjh5","Warn: Project is vulnerable to: GHSA-g644-9gfx-q4q4","Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7","Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q","Warn: Project is vulnerable to: GHSA-776f-qx25-q3cc","Warn: Project is vulnerable to: GHSA-h46c-h94j-95f3","Warn: Project is vulnerable to: GHSA-wf8f-6423-gfxg","Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T14:31:35.731Z","repository_id":37057422,"created_at":"2025-08-16T14:31:35.732Z","updated_at":"2025-08-16T14:31:35.732Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31444702,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-05T15:22:31.103Z","status":"ssl_error","status_checked_at":"2026-04-05T15:22:00.205Z","response_time":75,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api-gateway","aws","docker","lambda","python","sam","serverless","serverlessapplicationmodel"],"created_at":"2024-07-31T15:01:07.724Z","updated_at":"2026-04-05T17:38:00.756Z","avatar_url":"https://github.com/aws.png","language":"Python","readme":"\u003cp align=\"center\"\u003e\n\u003c/p\u003e\n\n# AWS SAM CLI\n\n[![Apache 2.0 License](https://img.shields.io/github/license/aws/aws-sam-cli)](https://github.com/aws/aws-sam-cli/blob/develop/LICENSE)\n![SAM CLI Version](https://img.shields.io/github/release/aws/aws-sam-cli.svg?label=CLI%20Version)\n![Install](https://img.shields.io/badge/brew-aws/tap/aws--sam--cli-orange)\n![pip](https://img.shields.io/badge/pip-aws--sam--cli-9cf)\n\n[Installation](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html) | [Blogs](https://serverlessland.com/blog?tag=AWS%20SAM) | [Videos](https://serverlessland.com/video?tag=AWS%20SAM) | [AWS Docs](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/what-is-sam.html) | [Roadmap](https://github.com/aws/aws-sam-cli/wiki/SAM-CLI-Roadmap) | [Try It Out](https://s12d.com/jKo46elk) | [Slack Us](https://join.slack.com/t/awsdevelopers/shared_invite/zt-yryddays-C9fkWrmguDv0h2EEDzCqvw)\n\nThe AWS Serverless Application Model (SAM) CLI is an open-source CLI tool that helps you develop serverless applications containing [Lambda functions](https://aws.amazon.com/lambda/), [Step Functions](https://aws.amazon.com/step-functions/), [API Gateway](https://aws.amazon.com/api-gateway/), [EventBridge](https://aws.amazon.com/eventbridge/), [SQS](https://aws.amazon.com/sqs/), [SNS](https://aws.amazon.com/sns/) and more. Some of the features it provides are:\n\n* **Initialize serverless applications** in minutes with AWS-provided infrastructure templates with `sam init`\n* **Compile, build, and package** Lambda functions with provided runtimes and with custom Makefile workflows, for zip and image types of Lambda functions with `sam build`\n* **Locally test** a Lambda function and API Gateway easily in a Docker container with `sam local` commands on SAM and CDK applications\n* **Sync and test your changes in the cloud** with `sam sync` in your developer environments\n* **Deploy** your SAM and CloudFormation templates using `sam deploy`\n* Quickly **create pipelines** with prebuilt templates with popular CI/CD systems using `sam pipeline init`\n* **Tail CloudWatch logs and X-Ray traces** with `sam logs` and `sam traces`\n\n## Recent blogposts and workshops\n\n* **Speeding up incremental changes with AWS SAM Accelerate and Nested Stacks** - [Read blogpost here](https://s12d.com/wt1ajjwB).\n\n* **Develop Node projects with SAM CLI using esbuild** - and use SAM Accelerate on Typescript projects. [Read blogpost here](https://s12d.com/5Aa6u0o7).\n\n* **Speed up development with SAM Accelerate** - quickly test your changes in the cloud. [Read docs here](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/accelerate.html).\n\n* **AWS Serverless Developer Experience Workshop: A day in a life of a developer** - [This advanced workshop](https://s12d.com/aws-sde-workshop) provides you with an immersive experience as a serverless developer, with hands-on experience building a serverless solution using AWS SAM and SAM CLI.\n\n* **The Complete SAM Workshop** - [This workshop](https://s12d.com/jKo46elk) is a great way to experience the power of SAM and SAM CLI.\n\n* **Getting started with CI/CD? SAM pipelines can help you get started** - [This workshop](https://s12d.com/_JQ48d5T) walks you through the basics.\n\n* **Get started with Serverless Application development using SAM CLI** - [This workshop](https://s12d.com/Tq9ZE-Br) walks you through the basics.\n\n## Get Started\n\nTo get started with building SAM-based applications, use the SAM CLI. SAM CLI provides a Lambda-like execution\nenvironment that lets you locally build, test, debug, and deploy [AWS serverless](https://aws.amazon.com/serverless/) applications.\n\n* [Install SAM CLI](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html)\n* [Build \u0026 Deploy a \"Hello World\" Web App](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-quick-start.html)\n* [Install AWS Toolkit](https://aws.amazon.com/getting-started/tools-sdks/#IDE_and_IDE_Toolkits) to use SAM with your favorite IDEs\n* [Tutorials and Workshops](https://serverlessland.com/learn)\n* **Powertools for AWS Lambda** is a developer toolkit to implement Serverless best practices and increase developer velocity. Available for [Python](https://awslabs.github.io/aws-lambda-powertools-python), [Java](https://github.com/awslabs/aws-lambda-powertools-java), [TypeScript](https://github.com/awslabs/aws-lambda-powertools-typescript) and [.NET](https://github.com/awslabs/aws-lambda-powertools-dotnet).\n\n**Next Steps:** Learn to build a more complex serverless application.\n\n* [Extract text from images and store it in a database](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-example-s3.html) using Amazon S3 and Amazon Rekognition services.\n* [Detect when records are added to a database](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-example-ddb.html) using Amazon DynamoDB database and asynchronous stream processing.\n* [Explore popular patterns](https://serverlessland.com/patterns)\n\n## What is this Github repository? 💻\n\nThis Github repository contains source code for SAM CLI. Here is the development team talking about this code:\n\n\u003e SAM CLI code is written in Python. Source code is well documented, very modular, with 95% unit test coverage.\nIt uses this awesome Python library called Click to manage the command line interaction and uses Docker to run Lambda functions locally.\nWe think you'll like the code base. Clone it and run `make pr` or `./Make -pr` on Windows!\n\n## Related Repositories and Resources\n\n* **SAM Transform** [Open source template specification](https://github.com/aws/serverless-application-model/) that provides shorthand syntax for CloudFormation\n* **SAM CLI application templates** Get started quickly with [predefined application templates](https://github.com/aws/aws-sam-cli-app-templates/blob/master/README.md) for all supported runtimes and languages, used by `sam init`\n* **Lambda Builders** [Lambda builder tools](https://github.com/aws/aws-lambda-builders) for supported runtimes and custom build workflows, used by `sam build`\n* **Build and local emulation images for CI/CD tools** [Build container images](https://gallery.ecr.aws/sam/) to use with CI/CD tasks\n\n## Contribute to SAM\n\nWe love our contributors ❤️ We have over 100 contributors who have built various parts of the product.\nRead this [testimonial from @ndobryanskyy](https://www.awsadvent.com/2018/12/10/aws-sam-my-exciting-first-open-source-experience/) to learn\nmore about what it was like contributing to SAM.\n\nDepending on your interest and skill, you can help build the different parts of the SAM project;\n\n**Enhance the SAM Specification**\n\nMake pull requests, report bugs, and share ideas to improve the full SAM template specification.\nSource code is located on Github at [aws/serverless-application-model](https://github.com/aws/serverless-application-model).\nRead the [SAM Specification Contributing Guide](https://github.com/aws/serverless-application-model/blob/master/CONTRIBUTING.md)\nto get started.\n\n**Strengthen SAM CLI**\n\nAdd new commands, enhance existing ones, report bugs, or request new features for the SAM CLI.\nSource code is located on Github at [aws/aws-sam-cli](https://github.com/aws/aws-sam-cli). Read the [SAM CLI Contributing Guide](https://github.com/aws/aws-sam-cli/blob/develop/CONTRIBUTING.md) to\nget started.\n\n**Update SAM Developer Guide**\n\n[SAM Developer Guide](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/index.html) provides a comprehensive getting started guide and reference documentation.\nSource code is located on Github at [awsdocs/aws-sam-developer-guide](https://github.com/awsdocs/aws-sam-developer-guide).\nRead the [SAM Documentation Contribution Guide](https://github.com/awsdocs/aws-sam-developer-guide/blob/master/CONTRIBUTING.md) to get\nstarted.\n\n### Join the SAM Community on Slack\n\n[Join the SAM developers channel (#samdev)](https://join.slack.com/t/awsdevelopers/shared_invite/zt-yryddays-C9fkWrmguDv0h2EEDzCqvw) on Slack to collaborate with fellow community members and the AWS SAM team.\n","funding_links":[],"categories":["Python","AWS Tools","后端开发框架及项目","Infrastructure Tooling","aws","Tools"],"sub_categories":["管理面板","Mesh networks"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faws%2Faws-sam-cli","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faws%2Faws-sam-cli","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faws%2Faws-sam-cli/lists"}