{"id":13461739,"url":"https://github.com/bytecodealliance/wasmtime","last_synced_at":"2026-04-09T17:14:29.147Z","repository":{"id":37445361,"uuid":"101767772","full_name":"bytecodealliance/wasmtime","owner":"bytecodealliance","description":"A lightweight WebAssembly runtime that is fast, secure, and standards-compliant","archived":false,"fork":false,"pushed_at":"2026-01-14T23:16:49.000Z","size":138243,"stargazers_count":17447,"open_issues_count":827,"forks_count":1595,"subscribers_count":171,"default_branch":"main","last_synced_at":"2026-01-14T23:38:13.865Z","etag":null,"topics":["aot","cranelift","jit","lightweight","portable","runtime","rust","sandbox","standalone","wasi","wasm","wasmtime","webassembly"],"latest_commit_sha":null,"homepage":"https://wasmtime.dev/","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/bytecodealliance.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2017-08-29T14:01:55.000Z","updated_at":"2026-01-14T22:51:56.000Z","dependencies_parsed_at":"2023-10-16T22:04:04.375Z","dependency_job_id":"8605ef51-d5c7-4fc6-8287-b3afba51f758","html_url":"https://github.com/bytecodealliance/wasmtime","commit_stats":{"total_commits":11773,"total_committers":514,"mean_commits":"22.904669260700388","dds":0.8477873099464878,"last_synced_commit":"27d3ef2ff5652f7dd6c5af07e6d9ee1587762030"},"previous_names":["cranestation/wasmtime"],"tags_count":192,"template":false,"template_full_name":null,"purl":"pkg:github/bytecodealliance/wasmtime","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bytecodealliance%2Fwasmtime","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bytecodealliance%2Fwasmtime/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bytecodealliance%2Fwasmtime/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bytecodealliance%2Fwasmtime/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/bytecodealliance","download_url":"https://codeload.github.com/bytecodealliance/wasmtime/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bytecodealliance%2Fwasmtime/sbom","scorecard":{"id":260284,"data":{"date":"2025-08-11","repo":{"name":"github.com/bytecodealliance/wasmtime","commit":"eced7c7eb59487f824dbb00ddabcf44e90215296"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.8,"checks":[{"name":"Maintained","score":10,"reason":"30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Dangerous-Workflow","score":0,"reason":"dangerous workflow patterns detected","details":["Warn: script injection with untrusted input ' github.event.head_commit.message ': .github/workflows/performance.yml:68","Warn: script injection with untrusted input ' github.event.head_commit.message ': .github/workflows/performance.yml:129"],"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: jobLevel 'deployments' permission set to 'write': .github/workflows/main.yml:895","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/main.yml:896","Warn: no topLevel permission defined: .github/workflows/cargo-audit.yml:1","Warn: topLevel 'actions' permission set to 'write': .github/workflows/ci-cron-trigger.yml:27","Warn: no topLevel permission defined: .github/workflows/main.yml:1","Warn: no topLevel permission defined: .github/workflows/performance.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/publish-artifacts.yml:8","Warn: no topLevel permission defined: .github/workflows/publish-to-cratesio.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/release-process.yml:36","Warn: no topLevel permission defined: .github/workflows/triage.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact dev not signed: https://api.github.com/repos/bytecodealliance/wasmtime/releases/78500676","Warn: release artifact v35.0.0 not signed: https://api.github.com/repos/bytecodealliance/wasmtime/releases/234305055","Warn: release artifact v34.0.2 not signed: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233582950","Warn: release artifact v33.0.2 not signed: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233586191","Warn: release artifact v24.0.4 not signed: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233582528","Warn: release artifact dev does not have provenance: https://api.github.com/repos/bytecodealliance/wasmtime/releases/78500676","Warn: release artifact v35.0.0 does not have provenance: https://api.github.com/repos/bytecodealliance/wasmtime/releases/234305055","Warn: release artifact v34.0.2 does not have provenance: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233582950","Warn: release artifact v33.0.2 does not have provenance: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233586191","Warn: release artifact v24.0.4 does not have provenance: https://api.github.com/repos/bytecodealliance/wasmtime/releases/233582528"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/publish-to-cratesio.yml:13"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Fuzzing","score":10,"reason":"project is fuzzed","details":["Info: OSSFuzz integration found","Info: RustCargoFuzzer integration found: cranelift/assembler-x64/fuzz/fuzz_targets/roundtrip.rs:4","Info: RustCargoFuzzer integration found: cranelift/isle/fuzz/fuzz_targets/compile.rs:6","Info: RustCargoFuzzer integration found: crates/environ/fuzz/fuzz_targets/fact-valid-module.rs:13","Info: RustCargoFuzzer integration found: crates/fuzzing/src/mutators.rs:4","Info: RustCargoFuzzer integration found: crates/fuzzing/src/mutators.rs:6","Info: RustCargoFuzzer integration found: crates/fuzzing/src/single_module_fuzzer.rs:63","Info: RustCargoFuzzer integration found: crates/fuzzing/src/single_module_fuzzer.rs:70","Info: RustCargoFuzzer integration found: crates/fuzzing/src/single_module_fuzzer.rs:76","Info: RustCargoFuzzer integration found: fuzz/build.rs:142","Info: RustCargoFuzzer integration found: fuzz/build.rs:146","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/call_async.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/call_async.rs:4","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/compile.rs:8","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/compile.rs:46","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/compile.rs:53","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/component_api.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/cranelift-fuzzgen.rs:9","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/cranelift-fuzzgen.rs:10","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/cranelift-fuzzgen.rs:11","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/cranelift-fuzzgen.rs:12","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/cranelift-icache.rs:13","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/differential.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/differential.rs:4","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/instantiate-many.rs:6","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/instantiate-many.rs:7","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/instantiate.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/misc.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/misc.rs:4","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/table_ops.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/table_ops.rs:4","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/wast_tests.rs:3","Info: RustCargoFuzzer integration found: fuzz/fuzz_targets/wast_tests.rs:4"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:669","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:670","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:674","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:678","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:684","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:686","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:704","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:738","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:748","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:751","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:762","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:1086","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:1092","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:1100","Info: Possibly incomplete results: error parsing job operating system: .github/workflows/main.yml:1104","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cargo-audit.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/cargo-audit.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/cargo-audit.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/cargo-audit.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-cron-trigger.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/ci-cron-trigger.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:258: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:272: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:305: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:661: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:699: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:775: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:837: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1195: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:560: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:584: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:852: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:868: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:898: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:913: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:976: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1044: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1051: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:444: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:461: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:630: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:923: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1002: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:411: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:430: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:938: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:965: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:990: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:802: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:808: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:815: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1078: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1106: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:1243: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:176: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/performance.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/performance.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/performance.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/performance.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-artifacts.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-artifacts.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-artifacts.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-artifacts.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-artifacts.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-to-cratesio.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/publish-to-cratesio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-process.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/release-process.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/triage.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/triage.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/triage.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/triage.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/triage.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/bytecodealliance/wasmtime/triage.yml/main?enable=pin","Warn: containerImage not pinned by hash: ci/docker/aarch64-linux/Dockerfile:1: pin your Docker image by updating ubuntu:16.04 to ubuntu:16.04@sha256:1f1a2d56de1d604801a9671f301190704c25d604a416f59e03c04f5c6ffee0d6","Warn: containerImage not pinned by hash: ci/docker/aarch64-musl/Dockerfile:1: pin your Docker image by updating ghcr.io/cross-rs/aarch64-unknown-linux-musl to ghcr.io/cross-rs/aarch64-unknown-linux-musl@sha256:702154f52b2d8091671aa2c84d5582d849f949977228c735ff8462f93cc0e1e4","Warn: containerImage not pinned by hash: ci/docker/armv7-linux/Dockerfile:1: pin your Docker image by updating ubuntu:16.04 to ubuntu:16.04@sha256:1f1a2d56de1d604801a9671f301190704c25d604a416f59e03c04f5c6ffee0d6","Warn: containerImage not pinned by hash: ci/docker/i686-linux/Dockerfile:1: pin your Docker image by updating almalinux:8 to almalinux:8@sha256:2d4abdee2caecd851d2d6591dfb2205ba18549bc080ad5377875c990331e41c4","Warn: containerImage not pinned by hash: ci/docker/riscv64gc-linux/Dockerfile:1: pin your Docker image by updating ubuntu:22.04 to ubuntu:22.04@sha256:1aa979d85661c488ce030ac292876cf6ed04535d3a237e49f61542d8e5de5ae0","Warn: containerImage not pinned by hash: ci/docker/s390x-linux/Dockerfile:1: pin your Docker image by updating ubuntu:16.04 to ubuntu:16.04@sha256:1f1a2d56de1d604801a9671f301190704c25d604a416f59e03c04f5c6ffee0d6","Warn: containerImage not pinned by hash: ci/docker/x86_64-linux/Dockerfile:1: pin your Docker image by updating almalinux:8 to almalinux:8@sha256:2d4abdee2caecd851d2d6591dfb2205ba18549bc080ad5377875c990331e41c4","Warn: containerImage not pinned by hash: ci/docker/x86_64-musl/Dockerfile:3","Warn: containerImage not pinned by hash: ci/docker/x86_64-musl/Dockerfile:8: pin your Docker image by updating ubuntu:24.04 to ubuntu:24.04@sha256:7c06e91f61fa88c08cc74f7e1b7c69ae24910d745357e0dfe1d2c0322aaf20f9","Warn: npmCommand not pinned by hash: .github/workflows/main.yml:58","Warn: downloadThenRun not pinned by hash: .github/workflows/main.yml:567","Warn: npmCommand not pinned by hash: .github/workflows/publish-artifacts.yml:44","Info:   0 out of  47 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   7 third-party GitHubAction dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned","Info:   0 out of   9 containerImage dependencies pinned","Info:   0 out of   2 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":1,"reason":"9 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q","Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38","Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: RUSTSEC-2024-0384","Warn: Project is vulnerable to: RUSTSEC-2024-0436","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-wwq9-3cpr-mm53","Warn: Project is vulnerable to: RUSTSEC-2024-0402"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T10:41:31.396Z","repository_id":37445361,"created_at":"2025-08-17T10:41:31.396Z","updated_at":"2025-08-17T10:41:31.396Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28612157,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-20T18:56:40.769Z","status":"ssl_error","status_checked_at":"2026-01-20T18:54:26.653Z","response_time":117,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aot","cranelift","jit","lightweight","portable","runtime","rust","sandbox","standalone","wasi","wasm","wasmtime","webassembly"],"created_at":"2024-07-31T11:00:55.590Z","updated_at":"2026-01-20T20:02:41.754Z","avatar_url":"https://github.com/bytecodealliance.png","language":"Rust","readme":"\u003cdiv align=\"center\"\u003e\n  \u003ch1\u003e\u003ccode\u003ewasmtime\u003c/code\u003e\u003c/h1\u003e\n\n  \u003cp\u003e\n    \u003cstrong\u003eA standalone runtime for\n    \u003ca href=\"https://webassembly.org/\"\u003eWebAssembly\u003c/a\u003e\u003c/strong\u003e\n  \u003c/p\u003e\n\n  \u003cstrong\u003eA \u003ca href=\"https://bytecodealliance.org/\"\u003eBytecode Alliance\u003c/a\u003e project\u003c/strong\u003e\n\n  \u003cp\u003e\n    \u003ca href=\"https://github.com/bytecodealliance/wasmtime/actions?query=workflow%3ACI\"\u003e\u003cimg src=\"https://github.com/bytecodealliance/wasmtime/workflows/CI/badge.svg\" alt=\"build status\" /\u003e\u003c/a\u003e\n    \u003ca href=\"https://bytecodealliance.zulipchat.com/#narrow/stream/217126-wasmtime\"\u003e\u003cimg src=\"https://img.shields.io/badge/zulip-join_chat-brightgreen.svg\" alt=\"zulip chat\" /\u003e\u003c/a\u003e\n    \u003cimg src=\"https://img.shields.io/badge/rustc-stable+-green.svg\" alt=\"supported rustc stable\" /\u003e\n    \u003ca href=\"https://docs.rs/wasmtime\"\u003e\u003cimg src=\"https://docs.rs/wasmtime/badge.svg\" alt=\"Documentation Status\" /\u003e\u003c/a\u003e\n  \u003c/p\u003e\n\n  \u003ch3\u003e\n    \u003ca href=\"https://bytecodealliance.github.io/wasmtime/\"\u003eGuide\u003c/a\u003e\n    \u003cspan\u003e | \u003c/span\u003e\n    \u003ca href=\"https://bytecodealliance.github.io/wasmtime/contributing.html\"\u003eContributing\u003c/a\u003e\n    \u003cspan\u003e | \u003c/span\u003e\n    \u003ca href=\"https://wasmtime.dev/\"\u003eWebsite\u003c/a\u003e\n    \u003cspan\u003e | \u003c/span\u003e\n    \u003ca href=\"https://bytecodealliance.zulipchat.com/#narrow/stream/217126-wasmtime\"\u003eChat\u003c/a\u003e\n  \u003c/h3\u003e\n\u003c/div\u003e\n\n## Installation\n\nThe Wasmtime CLI can be installed on Linux and macOS (locally) with a small install\nscript:\n\n```console\ncurl https://wasmtime.dev/install.sh -sSf | bash\n```\nThis script installs into `$WASMTIME_HOME` (defaults to `$HOME/.wasmtime`), and executable is placed in `$WASMTIME_HOME/bin`.\n\nAfter running the install script above, follow the on-screen instructions.\n\nWindows or otherwise interested users can download installers and\nbinaries directly from the [GitHub\nReleases](https://github.com/bytecodealliance/wasmtime/releases) page.\n\nFor additional installation options, refer to the [online book CLI installation page](https://docs.wasmtime.dev/cli-install.html).\n\nDocumentation on Wasmtime's currently supported versions can be found [in the\nonline book\ndocumentation](https://docs.wasmtime.dev/stability-release.html#current-versions).\n\n## Example\n\nIf you've got the [Rust compiler\ninstalled](https://www.rust-lang.org/tools/install) then you can take some Rust\nsource code:\n\n```rust\nfn main() {\n    println!(\"Hello, world!\");\n}\n```\n\nand compile it into a WebAssembly component with:\n\n```console\nrustup target add wasm32-wasip2\nrustc hello.rs --target wasm32-wasip2\n```\n\nOnce compiled, you can run your component:\n\n```console\nwasmtime hello.wasm\n```\n\nYou should see the following output:\n\n```text\nHello, world!\n```\n\n(Note: make sure you installed Rust using the [`rustup`][rustup] method in the official\ninstructions above, and do not have a copy of the Rust toolchain installed on\nyour system in some other way as well (e.g. the system package manager). Otherwise, the `rustup target add...`\ncommand may not install the target for the correct copy of Rust.)\n\n[rustup]: https://rustup.rs\n\n## Features\n\n* **Fast**. Wasmtime is built on the optimizing [Cranelift] code generator to\n  quickly generate high-quality machine code either at runtime or\n  ahead-of-time. Wasmtime is optimized for efficient instantiation, low-overhead\n  calls between the embedder and wasm, and scalability of concurrent instances.\n\n* **[Secure]**. Wasmtime's development is strongly focused on correctness and\n  security. Building on top of Rust's runtime safety guarantees, each Wasmtime\n  feature goes through careful review and consideration via an [RFC\n  process]. Once features are designed and implemented, they undergo 24/7\n  fuzzing donated by [Google's OSS Fuzz]. As features stabilize they become part\n  of a [release][release policy], and when things go wrong we have a\n  well-defined [security policy] in place to quickly mitigate and patch any\n  issues. We follow best practices for defense-in-depth and integrate\n  protections and mitigations for issues like Spectre. Finally, we're working to\n  push the state-of-the-art by collaborating with academic researchers to\n  formally verify critical parts of Wasmtime and Cranelift.\n\n* **[Configurable]**. Wasmtime uses sensible defaults, but can also be\n  configured to provide more fine-grained control over things like CPU and\n  memory consumption. Whether you want to run Wasmtime in a tiny environment or\n  on massive servers with many concurrent instances, we've got you covered.\n\n* **[WASI]**. Wasmtime supports a rich set of APIs for interacting with the host\n  environment through the [WASI standard](https://wasi.dev).\n\n* **[Standards Compliant]**. Wasmtime passes the [official WebAssembly test\n  suite](https://github.com/WebAssembly/testsuite), implements the [official C\n  API of wasm](https://github.com/WebAssembly/wasm-c-api), and implements\n  [future proposals to WebAssembly](https://github.com/WebAssembly/proposals) as\n  well. Wasmtime developers are intimately engaged with the WebAssembly\n  standards process all along the way too.\n\n[Wasmtime]: https://github.com/bytecodealliance/wasmtime\n[Cranelift]: https://cranelift.dev/\n[Google's OSS Fuzz]: https://google.github.io/oss-fuzz/\n[security policy]: https://bytecodealliance.org/security\n[RFC process]: https://github.com/bytecodealliance/rfcs\n[release policy]: https://docs.wasmtime.dev/stability-release.html\n[Secure]: https://docs.wasmtime.dev/security.html\n[Configurable]: https://docs.rs/wasmtime/latest/wasmtime/struct.Config.html\n[WASI]: https://docs.rs/wasmtime-wasi/latest/wasmtime_wasi/\n[Standards Compliant]: https://docs.wasmtime.dev/stability-tiers.html\n\n## Language Support\n\nYou can use Wasmtime from a variety of different languages through embeddings of\nthe implementation.\n\nLanguages supported by the Bytecode Alliance:\n\n* **[Rust]** - the [`wasmtime` crate]\n* **[C]** - the [`wasm.h`, `wasi.h`, and `wasmtime.h` headers][c-headers], [CMake](crates/c-api/CMakeLists.txt)\n* **C++** - the [`wasmtime.hh` header][c-headers]\n* **[Python]** - the [`wasmtime` PyPI package]\n* **[.NET]** - the [`Wasmtime` NuGet package]\n* **[Go]** - the [`wasmtime-go` repository]\n* **[Ruby]** - the [`wasmtime` gem]\n\nLanguages supported by the community:\n\n* **[Elixir]** - the [`wasmex` hex package]\n* **Perl** - the [`Wasm` Perl package's `Wasm::Wasmtime`]\n\n[Rust]: https://bytecodealliance.github.io/wasmtime/lang-rust.html\n[C]: https://bytecodealliance.github.io/wasmtime/lang-c.html\n[`wasmtime` crate]: https://crates.io/crates/wasmtime\n[c-headers]: https://bytecodealliance.github.io/wasmtime/c-api/\n[Python]: https://bytecodealliance.github.io/wasmtime/lang-python.html\n[`wasmtime` PyPI package]: https://pypi.org/project/wasmtime/\n[.NET]: https://bytecodealliance.github.io/wasmtime/lang-dotnet.html\n[`Wasmtime` NuGet package]: https://www.nuget.org/packages/Wasmtime\n[Go]: https://bytecodealliance.github.io/wasmtime/lang-go.html\n[`wasmtime-go` repository]: https://pkg.go.dev/github.com/bytecodealliance/wasmtime-go\n[Ruby]: https://bytecodealliance.github.io/wasmtime/lang-ruby.html\n[`wasmtime` gem]: https://rubygems.org/gems/wasmtime\n[Elixir]: https://docs.wasmtime.dev/lang-elixir.html\n[`wasmex` hex package]: https://hex.pm/packages/wasmex\n[`Wasm` Perl package's `Wasm::Wasmtime`]: https://metacpan.org/pod/Wasm::Wasmtime\n\n## Documentation\n\n[📚 Read the Wasmtime guide here! 📚][guide]\n\nThe [wasmtime guide][guide] is the best starting point to learn about what\nWasmtime can do for you or help answer your questions about Wasmtime. If you're\ncurious in contributing to Wasmtime, [it can also help you do\nthat][contributing]!\n\n[contributing]: https://bytecodealliance.github.io/wasmtime/contributing.html\n[guide]: https://bytecodealliance.github.io/wasmtime\n\n---\n\nIt's Wasmtime.\n","funding_links":[],"categories":["Rust","库","rust","Libraries","库 Libraries","JavaScript框架","未来会研究的","HarmonyOS","webassembly","WebAssembly","\u003ca name=\"Rust\"\u003e\u003c/a\u003eRust"],"sub_categories":["Virtualization","虚拟化 Virtualization","其他_文本生成、文本对话","Windows Manager"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbytecodealliance%2Fwasmtime","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbytecodealliance%2Fwasmtime","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbytecodealliance%2Fwasmtime/lists"}