{"id":39136742,"url":"https://github.com/cloudboss/unobin","last_synced_at":"2026-01-17T21:26:06.109Z","repository":{"id":57544583,"uuid":"233125931","full_name":"cloudboss/unobin","owner":"cloudboss","description":"Playbooks in One Binary","archived":false,"fork":false,"pushed_at":"2021-09-26T06:35:59.000Z","size":7213,"stargazers_count":5,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2026-01-14T17:38:46.349Z","etag":null,"topics":["automation","cloud","configuration-management","playbook"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cloudboss.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-01-10T20:34:01.000Z","updated_at":"2024-01-18T22:00:05.000Z","dependencies_parsed_at":"2022-08-27T05:13:23.120Z","dependency_job_id":null,"html_url":"https://github.com/cloudboss/unobin","commit_stats":null,"previous_names":["cloudboss/go-player"],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/cloudboss/unobin","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudboss%2Funobin","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudboss%2Funobin/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudboss%2Funobin/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudboss%2Funobin/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cloudboss","download_url":"https://codeload.github.com/cloudboss/unobin/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudboss%2Funobin/sbom","scorecard":{"id":292380,"data":{"date":"2025-08-11","repo":{"name":"github.com/cloudboss/unobin","commit":"73ffe71e05d30fa9c28f784e82f4d67d5c527814"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.3,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":-1,"reason":"no dependencies found","details":null,"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":4,"reason":"6 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0391 / GHSA-6jvc-q2x7-pchv / GHSA-76wf-9vgp-pj7w","Warn: Project is vulnerable to: GO-2022-0635 / GHSA-7f33-f4f5-xwgw","Warn: Project is vulnerable to: GO-2022-0646 / GHSA-f5pg-7wfw-84q9","Warn: Project is vulnerable to: GO-2021-0061 / GHSA-r88r-gmrh-7j83","Warn: Project is vulnerable to: GO-2022-0956 / GHSA-6q6q-88xp-6f2r","Warn: Project is vulnerable to: GO-2020-0036 / GHSA-wxc4-f4m6-wwqv"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T18:36:12.099Z","repository_id":57544583,"created_at":"2025-08-17T18:36:12.100Z","updated_at":"2025-08-17T18:36:12.100Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28518625,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-17T18:55:29.170Z","status":"ssl_error","status_checked_at":"2026-01-17T18:55:03.375Z","response_time":85,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["automation","cloud","configuration-management","playbook"],"created_at":"2026-01-17T21:26:05.416Z","updated_at":"2026-01-17T21:26:06.099Z","avatar_url":"https://github.com/cloudboss.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Unobin\n\nUnobin means _one binary_. It's a tool for cloud automation inspired by [Ansible](https://github.com/ansible/ansible), but unlike Ansible, an unobin playbook compiles to a standalone binary.\n\n## Quickstart\n\nFirst get unobin:\n\n```\nGO111MODULE=on go get -u github.com/cloudboss/unobin/unobin\n```\n\nTo start a new playbook project, you will use the `unobin init` command. Unobin playbooks compile to go, so in addition to giving the project a name, you will also need to give it a Go import path. This is usually the name of the Git repository where you will host the project.\n\nStart the project, giving it the project name with `-p` and Go import path with `-i`:\n\n```\nunobin init -p myplaybook -i github.com/cloudboss/myplaybook\n```\n\nNow you will have a directory created with the project name, containing an example playbook `playbook.ub`, a Go module definition `go.mod`, and a `resources` directory containing a template. Change to the project directory and compile:\n\n```\ncd myplaybook\nunobin compile -p playbook.ub\n```\n\nNow there will be an executable called `playbook` with the contents of `resources` compiled into it. To run the playbook, you need some input variables. These are written in JSON. For the example playbook you only need one variable called `name`:\n\n```\necho '{\"name\": \"MyName\"}' \u003e vars.json\n./playbook apply -v vars.json\n```\n\n## Benefits of Unobin\n\n### No Dependencies\n\nAn unobin playbook includes the runtime. It's like having Python, Ansible, and all dependencies included in the playbook itself.\n\n### Consistent Interface\n\nAll playbooks have the same command line arguments with automatically generated help. If you know how to run one, you know how to run all of them.\n\n### Reproducible\n\nThe goal is: if it works on my machine, then it works on your machine. You don't need to do extra steps or install anything before you can run a playbook. Just download the binary and run it.\n\n### Serverless\n\nNo, not _that_ kind of serverless. It means unobin playbooks don't need to connect to a server or run from a control node. You run a playbook where you need it, whether from CI/CD or an individual machine that runs it to configure itself. The only \"server\" you need is for storage to host the playbook binary; use [Artifactory](https://jfrog.com/artifactory/), [Nexus](https://www.sonatype.com/nexus/repository-oss), a cloud storage bucket, or bake it into an image so it's already there when your machines boot.\n\n### Predictable\n\nThere is one source for input variables: they are passed in as an argument to the playbook. Unlike Ansible, there are no levels of [precedence for variables](https://docs.ansible.com/ansible/latest/user_guide/playbooks_variables.html#understanding-variable-precedence).\n\nThere is only one pass through the playbook. There are no lookup plugins to run at a different time from the task where they are called. In unobin, \"lookups\" are just ordinary tasks that produce output. The templating language is minimal, may only be used for task arguments, and is evaluated at the beginning of each task's execution.\n\n### Input Validation\n\nAll playbooks validate their input variables against a [schema](https://json-schema.org/). The playbook will only run if the inputs pass validation.\n\n## Comparison with Other Tools\n\n|                      | Unobin | Ansible    | Chef   |\n|:--------------------:|:------:|:----------:|:------:|\n|No server             |\u0026check; |            |        |\n|Local mode            |\u0026check; |optional    |\u0026check; |\n|Syntax                |Unobin  |YAML+Jinja2 |Ruby    |\n|Works on my machine   |\u0026check; |maybe       |maybe   |\n|Works on your machine |\u0026check; |maybe       |maybe   |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudboss%2Funobin","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcloudboss%2Funobin","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudboss%2Funobin/lists"}