{"id":19040964,"url":"https://github.com/cloudfoundry/loggregator-release","last_synced_at":"2026-05-02T20:01:15.864Z","repository":{"id":9038470,"uuid":"10800667","full_name":"cloudfoundry/loggregator-release","owner":"cloudfoundry","description":"Cloud Native Logging","archived":false,"fork":false,"pushed_at":"2026-04-10T14:47:46.000Z","size":64420,"stargazers_count":217,"open_issues_count":0,"forks_count":148,"subscribers_count":81,"default_branch":"main","last_synced_at":"2026-04-10T16:27:45.626Z","etag":null,"topics":["cff-wg-app-runtime-platform"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"vmeretail/multi-tenancy-bundle","license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cloudfoundry.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":"NOTICE","maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2013-06-19T17:14:38.000Z","updated_at":"2026-04-10T14:47:43.000Z","dependencies_parsed_at":"2023-10-13T09:24:22.132Z","dependency_job_id":"6c1b0908-3dfd-42c3-8f71-e6fc05cb1d72","html_url":"https://github.com/cloudfoundry/loggregator-release","commit_stats":{"total_commits":4976,"total_committers":190,"mean_commits":"26.189473684210526","dds":0.832395498392283,"last_synced_commit":"9d8f92396b2e9736ceb2ba2d088f645a73337101"},"previous_names":[],"tags_count":216,"template":false,"template_full_name":null,"purl":"pkg:github/cloudfoundry/loggregator-release","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudfoundry%2Floggregator-release","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudfoundry%2Floggregator-release/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudfoundry%2Floggregator-release/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudfoundry%2Floggregator-release/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cloudfoundry","download_url":"https://codeload.github.com/cloudfoundry/loggregator-release/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudfoundry%2Floggregator-release/sbom","scorecard":{"id":292833,"data":{"date":"2025-08-11","repo":{"name":"github.com/cloudfoundry/loggregator-release","commit":"433357222f607bea6b1a0177160b2812c296ae48"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.6,"checks":[{"name":"Maintained","score":10,"reason":"16 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Code-Review","score":0,"reason":"Found 0/19 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:19","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:20","Warn: no topLevel permission defined: .github/workflows/codeql.yml:1","Warn: no topLevel permission defined: .github/workflows/scripts.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v107.0.21 not signed: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/211133750","Warn: release artifact v107.0.20 not signed: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/202421479","Warn: release artifact v107.0.19 not signed: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/193402813","Warn: release artifact v107.0.18 not signed: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/185531140","Warn: release artifact v107.0.17 not signed: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/175013481","Warn: release artifact v107.0.21 does not have provenance: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/211133750","Warn: release artifact v107.0.20 does not have provenance: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/202421479","Warn: release artifact v107.0.19 does not have provenance: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/193402813","Warn: release artifact v107.0.18 does not have provenance: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/185531140","Warn: release artifact v107.0.17 does not have provenance: https://api.github.com/repos/cloudfoundry/loggregator-release/releases/175013481"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/cloudfoundry/.github/SECURITY.md:1","Info: Found linked content: github.com/cloudfoundry/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/cloudfoundry/.github/SECURITY.md:1","Info: Found text in security policy: github.com/cloudfoundry/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/codeql.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/codeql.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/codeql.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/codeql.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/scripts.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/scripts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/scripts.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/scripts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/scripts.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/scripts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/scripts.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/cloudfoundry/loggregator-release/scripts.yml/main?enable=pin","Warn: goCommand not pinned by hash: scripts/subtests/lint:12","Warn: goCommand not pinned by hash: src/router/internal/server/v2/generate.sh:3","Warn: goCommand not pinned by hash: src/vendor/code.cloudfoundry.org/go-loggregator/v10/rpc/loggregator_v2/generate.sh:7","Warn: goCommand not pinned by hash: src/vendor/code.cloudfoundry.org/go-loggregator/v10/rpc/loggregator_v2/generate.sh:8","Info:   0 out of   8 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   4 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":10,"reason":"SAST tool is run on all commits","details":["Info: SAST configuration detected: CodeQL","Info: all commits (11) are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T18:44:05.683Z","repository_id":9038470,"created_at":"2025-08-17T18:44:05.683Z","updated_at":"2025-08-17T18:44:05.683Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32547651,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-02T19:18:06.202Z","status":"ssl_error","status_checked_at":"2026-05-02T19:16:21.335Z","response_time":132,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cff-wg-app-runtime-platform"],"created_at":"2024-11-08T22:26:18.426Z","updated_at":"2026-05-02T20:01:15.838Z","avatar_url":"https://github.com/cloudfoundry.png","language":"Go","funding_links":[],"categories":["Deployment"],"sub_categories":[],"readme":"# Loggregator Release\n\nLoggregator is a [BOSH][bosh] release deployed as a part of\n[cf-deployment][cf-deployment]. Loggregator provides\na highly-available (HA) and secure stream of logs and metrics for all\napplications and components on Cloud Foundry. It does so while not disrupting\nthe behavior of the the applications and components on the platform (i.e.\n\"backpressure\").\n\nThe [Loggregator Design Notes](docs/loggregator-design.md) presents an\noverview of Loggregator components and architecture.\n\nIf you have any questions, or want to get attention for a PR or issue please reach out on the [#logging-and-metrics channel in the cloudfoundry slack](https://cloudfoundry.slack.com/archives/CUW93AF3M)\n\n## Table of Contents\n\n* [Streaming Application Logs](#streaming-application-logs)\n  * [Using the CF CLI](#using-the-cf-cli)\n  * [Forwarding to a Log Drain](#forwarding-to-a-log-drain)\n  * [Log Ordering](#log-ordering)\n* [Consuming the Firehose](#consuming-the-firehose)\n  * [User Account and Authentication Scope](#user-account-and-authentication-scope)\n  * [Nozzle Development](#nozzle-development)\n  * [Metrics](#metrics)\n* [Emitting Logs and Metrics into Loggregator](#emitting-logs-and-metrics-into-loggregator)\n  * [Loggregator API](#loggregator-api)\n  * [Loggregator Agents](#loggregator-agents)\n  * [Statsd-injector](#statsd-injector)\n  * [Syslog-release](#syslog-release)\n* [Tools for Testing and Monitoring Loggregator](#tools-for-testing-and-monitoring-loggregator)\n* [Troubleshooting Reliability](#troubleshooting-reliability)\n  * [Scaling](#scaling)\n  * [Noise](#noise)\n\n\n## Streaming Application Logs\n\nAny user of Cloud Foundry can experience Loggregator by using two simple\ninterfaces for streaming application specific logs. These do not require any\nspecial [User Account and Authentication(UAA)][uaa] Scope.\n\n### Using the CF CLI\n\nThe fastest way to see your logs is by running the `cf logs` command using the\n[CF CLI][cli]. Check the [Cloud Foundry CLI docs][cli-docs] for more details.\n\n### Forwarding to a Log Drain\n\nIf you’d like to save all logs for an application in a third party or custom\ntool that expects the syslog format, a log drain allows you to do so. Check\nthe [Cloud Foundry docs][cf-docs] for more details.\n\n### Log Ordering\n\nLoggregator does not provide any guarantees around the order of delivery\nof logs in streams. That said, there is enough precision in the timestamp provided\nby diego that streaming clients can batch and order streams as they receive them.\nThis is done by the cf cli and most other streaming clients.\n\n## Consuming the Firehose\n\nThe firehose is an aggregated stream of all application logs and component\nmetrics on the platform. This allows operators to ensure they capture all logs\nwithin a microservice architecture as well as monitor the health of their\nplatform. See the [Firehose README](docs/firehose.md).\n\n### User Account and Authentication Scope\n\nIn order to consume the firehose you’ll need the `doppler.firehose` scope from\nUAA. For more details see the [Firehose README](docs/firehose.md).\n\n### Nozzle Development\n\nOnce you have configured appropriate authentication scope you are ready to\nstart developing a nozzle for the firehose. See our [Nozzle community\npage](docs/community-nozzles.md) for more details about existing nozzles and\nhow to get started.\n\n### Metrics\n\nLoggregator and other Cloud Foundry components emit regular messages through\nthe Firehose that monitor the health, throughput, and details of a component's\noperations. For more detials about Loggregator’s metrics see our [Loggregator\nMetrics README](docs/metric_descriptions.md).\n\n## Emitting Logs and Metrics into Loggregator\n\nFor components of Cloud Foundry or standalone BOSH deployments, Loggregator\nprovides a set of tools for emitting Logs and Metrics.\n\n## Reverse Log Proxy (RLP)\n\nThe RLP is the v2 implementation of the [Loggregator API][api-readme]. This\ncomponent is intended to be a replacement for traffic controller.\n\n### RLP Gateway\n\nBy default, the RLP communicates with clients via gRPC over mutual TLS. To enable HTTP access to the Reverse Log\nProxy, deploy the RLP Gateway.\n\n### Loggregator API\n\nThe Loggregator API is a replacement of the [Dropsonde\nProtocol][dropsonde-protocol]. Loggregator API defines an envelope structure\nwhich packages logs and metrics in a common format for distribution throughout\nLoggregator. See the [Loggregator API README][api-readme] for more details.\n\n### Loggregator Agents\n\nLoggregator Agents receive logs and metrics on VMs, and forward them onto the\nFirehose. For more info see the [loggregator-agent release][loggregator-agent-release].\n\n### Statsd-injector\n\nThe statsd-injector receives metrics from components in the\n[statsd metric aggregator format][statsd-format]. For more info see the\n[statsd-injector README][statsd-injector-readme].\n\n### Syslog Release\n\nFor some components (such as UAA) it makes sense to route logs separate from\nthe Firehose. The syslog release uses rsyslog to accomplish this. For more\ninformation see the [syslog-release README][syslog-release-readme].\n\n## Tools for Testing and Monitoring Loggregator\n\nLoggregator provides a set of tools for testing the\nperformance and reliability of your loggregator installation.\nSee the [loggregator tools](http://code.cloudfoundry.org/loggregator-tools)\nrepo for more details.\n\n## Troubleshooting Reliability\n\n### Scaling\n\nIn addition to the scaling recommendations above, it is important that\nthe resources for Loggregator are dedicate VM’s with similar footprints\nto those used in our capacity tests. Even if you are within the bounds of\nthe scaling recommendations it may be useful to scale Loggregator and\nNozzle components aggressively to rule out scaling as a major cause log loss.\n\n### Noise\n\nAnother common reason for log loss is due to an application producing a\nlarge amount of logs that drown out the logs from other application on\nthe cell it is running on. To identify and monitor for this behavior the\nLoggregator team has created a Noisy Neighbor Nozzle and CLI Tool. This\ntool will help operators quickly identify and take action on noise\nproducing applications.  Instruction for deploying and using this nozzle\nare in the repo.\n\n[bosh]:                      https://bosh.io/\n[cf-deployment]:             https://github.com/cloudfoundry/cf-deployment\n[uaa]:                       https://github.com/cloudfoundry/uaa\n[cli]:                       https://github.com/cloudfoundry/cli\n[cli-docs]:                  https://cli.cloudfoundry.org/en-US/cf/logs.html\n[cf-docs]:                   https://docs.cloudfoundry.org/devguide/services/log-management.html\n[dropsonde-protocol]:        https://github.com/cloudfoundry/dropsonde-protocol\n[api-readme]:                https://github.com/cloudfoundry/loggregator-api/blob/master/README.md\n[statsd-format]:             https://codeascraft.com/2011/02/15/measure-anything-measure-everything/\n[statsd-injector-readme]:    https://github.com/cloudfoundry/statsd-injector/blob/master/README.md\n[syslog-release-readme]:     https://github.com/cloudfoundry/syslog-release/blob/master/README.md\n[loggregator-agent-release]: https://github.com/cloudfoundry/loggregator-agent-release\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudfoundry%2Floggregator-release","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcloudfoundry%2Floggregator-release","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudfoundry%2Floggregator-release/lists"}