{"id":15108797,"url":"https://github.com/azure/aks-engine","last_synced_at":"2025-09-27T09:32:08.026Z","repository":{"id":38009530,"uuid":"155447233","full_name":"Azure/aks-engine","owner":"Azure","description":"AKS Engine: legacy tool for Kubernetes on Azure (see status)","archived":true,"fork":false,"pushed_at":"2023-10-24T15:29:22.000Z","size":108518,"stargazers_count":1023,"open_issues_count":0,"forks_count":516,"subscribers_count":72,"default_branch":"master","last_synced_at":"2025-09-19T01:07:47.157Z","etag":null,"topics":["azure","containers","docker","golang","kubernetes","orchestration"],"latest_commit_sha":null,"homepage":"https://github.com/Azure/aks-engine","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Azure.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":"SECURITY.md","support":"SUPPORT.md","governance":null,"roadmap":null,"authors":null}},"created_at":"2018-10-30T19:50:54.000Z","updated_at":"2025-07-27T09:41:33.000Z","dependencies_parsed_at":"2022-07-20T01:02:44.643Z","dependency_job_id":"1d2c9813-52cd-4632-923f-aa9ed7efd7c7","html_url":"https://github.com/Azure/aks-engine","commit_stats":{"total_commits":5264,"total_committers":390,"mean_commits":"13.497435897435897","dds":0.7496200607902735,"last_synced_commit":"278164e2b3414b7b0fe0689014926047798f4718"},"previous_names":[],"tags_count":238,"template":false,"template_full_name":null,"purl":"pkg:github/Azure/aks-engine","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Faks-engine","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Faks-engine/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Faks-engine/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Faks-engine/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Azure","download_url":"https://codeload.github.com/Azure/aks-engine/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Faks-engine/sbom","scorecard":{"id":18794,"data":{"date":"2025-08-11","repo":{"name":"github.com/Azure/aks-engine","commit":"f634f52ff4f6295876b2d5391fc3af1f5bb3ad3e"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.5,"checks":[{"name":"Code-Review","score":9,"reason":"Found 25/26 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Maintained","score":0,"reason":"project is archived","details":["Warn: Repository is archived."],"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"CII-Best-Practices","score":2,"reason":"badge detected: InProgress","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/create-release-branch.yaml:1","Warn: no topLevel permission defined: .github/workflows/generate-azure-consts.yaml:1","Warn: no topLevel permission defined: .github/workflows/large-cluster-test.yaml:1","Warn: no topLevel permission defined: .github/workflows/nightly-build.yaml:1","Warn: no topLevel permission defined: .github/workflows/release.yaml:1","Warn: no topLevel permission defined: .github/workflows/test-cluster-config.yaml:1","Warn: no topLevel permission defined: .github/workflows/update-go-mod-vendor.yaml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":9,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'master'","Info: 'force pushes' disabled on branch 'master'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'master'","Warn: 'stale review dismissal' is disabled on branch 'master'","Info: required approving review count is 2 on branch 'master'","Info: codeowner review is required on branch 'master'","Info: 'last push approval' is required to merge on branch 'master'","Info: status check found to merge onto on branch 'master'","Info: PRs are required in order to make changes on branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v0.79.0 not signed: https://api.github.com/repos/Azure/aks-engine/releases/119493015","Warn: release artifact v0.78.0 not signed: https://api.github.com/repos/Azure/aks-engine/releases/100885602","Warn: release artifact v0.77.0 not signed: https://api.github.com/repos/Azure/aks-engine/releases/94991358","Warn: release artifact nightly not signed: https://api.github.com/repos/Azure/aks-engine/releases/32291143","Warn: release artifact v0.76.0 not signed: https://api.github.com/repos/Azure/aks-engine/releases/92096623","Warn: release artifact v0.79.0 does not have provenance: https://api.github.com/repos/Azure/aks-engine/releases/119493015","Warn: release artifact v0.78.0 does not have provenance: https://api.github.com/repos/Azure/aks-engine/releases/100885602","Warn: release artifact v0.77.0 does not have provenance: https://api.github.com/repos/Azure/aks-engine/releases/94991358","Warn: release artifact nightly does not have provenance: https://api.github.com/repos/Azure/aks-engine/releases/32291143","Warn: release artifact v0.76.0 does not have provenance: https://api.github.com/repos/Azure/aks-engine/releases/92096623"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered (: parts/k8s/cloud-init/artifacts/cse_config.sh:0","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release-branch.yaml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/create-release-branch.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release-branch.yaml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/create-release-branch.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release-branch.yaml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/create-release-branch.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release-branch.yaml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/create-release-branch.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-release-branch.yaml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/create-release-branch.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generate-azure-consts.yaml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/generate-azure-consts.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generate-azure-consts.yaml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/generate-azure-consts.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/generate-azure-consts.yaml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/generate-azure-consts.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/large-cluster-test.yaml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/large-cluster-test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/large-cluster-test.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/large-cluster-test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/large-cluster-test.yaml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/large-cluster-test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/large-cluster-test.yaml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/large-cluster-test.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nightly-build.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/nightly-build.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/nightly-build.yaml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/nightly-build.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/release.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yaml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/release.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yaml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/release.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-cluster-config.yaml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/test-cluster-config.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-cluster-config.yaml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/test-cluster-config.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-go-mod-vendor.yaml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/update-go-mod-vendor.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-go-mod-vendor.yaml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/update-go-mod-vendor.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-go-mod-vendor.yaml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/Azure/aks-engine/update-go-mod-vendor.yaml/master?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:7","Warn: containerImage not pinned by hash: examples/hpa-example/Dockerfile:1: pin your Docker image by updating php:5-apache to php:5-apache@sha256:0a40fd273961b99d8afe69a61a68c73c04bc0caa9de384d3b2dd9e7986eec86d","Warn: containerImage not pinned by hash: releases/Dockerfile.linux:1: pin your Docker image by updating alpine:3.9 to alpine:3.9@sha256:414e0518bb9228d35e4cd5165567fb91d26c6a214e9c95899e1e056fcd349011","Warn: downloadThenRun not pinned by hash: scripts/ginkgo.coverage.sh:34","Warn: goCommand not pinned by hash: vendor/github.com/json-iterator/go/build.sh:10","Info:   0 out of  17 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   5 third-party GitHubAction dependencies pinned","Info:   1 out of   2 goCommand dependencies pinned","Info:   0 out of   3 containerImage dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"12 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GO-2023-1988 / GHSA-2wrh-6pvc-2jm9","Warn: Project is vulnerable to: GO-2023-2102 / GHSA-4374-p667-p6c8","Warn: Project is vulnerable to: GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GO-2024-2687 / GHSA-4v7x-pqxf-cx7m","Warn: Project is vulnerable to: GO-2024-3333","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-14T16:21:15.584Z","repository_id":38009530,"created_at":"2025-08-14T16:21:15.584Z","updated_at":"2025-08-14T16:21:15.584Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":276164320,"owners_count":25596021,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-20T02:00:10.207Z","response_time":63,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["azure","containers","docker","golang","kubernetes","orchestration"],"created_at":"2024-09-25T22:40:36.279Z","updated_at":"2025-09-27T09:32:04.117Z","avatar_url":"https://github.com/Azure.png","language":"Go","readme":"# AKS Engine - Deprecated tool for self-managed Kubernetes on Azure\n\n## Project status\n\nThis project is deprecated for Azure public cloud customers. Please use [Azure Kubernetes Service (AKS)](https://azure.microsoft.com/en-us/services/kubernetes-service/#overview) for managed Kubernetes or [Cluster API Provider Azure](https://github.com/kubernetes-sigs/cluster-api-provider-azure) for self-managed Kubernetes. There are no further releases planned; Kubernetes 1.24 was the final version to receive updates.\n\nFor use on the [Azure Stack Hub product](https://docs.microsoft.com/en-us/azure-stack/user/azure-stack-kubernetes-aks-engine-overview) this project is fully supported and will continue to be supported by the Hub team throughout the lifespan of Azure Stack Hub. Development is already moved to a new Azure Stack Hub specific repository ([Azure/aks-engine-azurestack](https://github.com/Azure/aks-engine-azurestack)). This new repository is where new [releases](https://github.com/Azure/aks-engine-azurestack/releases) for Azure Stack Hub clouds, starting at v0.75.3, will be published and where [issues](https://github.com/Azure/aks-engine-azurestack/issues/new) concerning Azure Stack Hub should be created.\n\n\n## Support\n\nPlease see our [support policy][support-policy].\n\n## Code of conduct\n\nThis project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/). For more information, see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq) or contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.\n\n## Data Collection\nThe software may collect information about you and your use of the software and send it to Microsoft. Microsoft may use this information to provide services and improve our products and services. You may turn off the telemetry [as described in the repository][telemetry-config]. There are also some features in the software that may enable you and Microsoft to collect data from users of your applications. If you use these features, you must comply with applicable law, including providing appropriate notices to users of your applications together with a copy of Microsoft's privacy statement. Our privacy statement is located at https://go.microsoft.com/fwlink/?LinkID=824704. You can learn more about data collection and use in the help documentation and our privacy statement. Your use of the software operates as your consent to these practices.\n\nFor more information, please see the [telemetry documentation][telemetry].\n\n[support-policy]: SUPPORT.md\n[telemetry]: docs/topics/telemetry.md\n[telemetry-config]: docs/topics/telemetry.md#configuration\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Faks-engine","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fazure%2Faks-engine","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Faks-engine/lists"}