{"id":13746637,"url":"https://github.com/crypto-org-chain/cronos","last_synced_at":"2026-04-17T14:02:24.518Z","repository":{"id":37037563,"uuid":"388427168","full_name":"crypto-org-chain/cronos","owner":"crypto-org-chain","description":"Cronos is the first Ethereum-compatible blockchain network built on Cosmos SDK technology. Cronos aims to massively scale the DeFi, GameFi, and overall Web3 user community by providing builders with the ability to instantly port apps and crypto assets from other chains while benefiting from low transaction fees, high throughput, and fast finality.","archived":false,"fork":false,"pushed_at":"2026-03-27T02:39:55.000Z","size":39862,"stargazers_count":327,"open_issues_count":118,"forks_count":284,"subscribers_count":25,"default_branch":"main","last_synced_at":"2026-03-27T15:08:44.449Z","etag":null,"topics":["blockchain","cosmos-sdk","ethermint","evm"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/crypto-org-chain.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2021-07-22T10:48:01.000Z","updated_at":"2026-03-27T08:12:32.000Z","dependencies_parsed_at":"2024-01-22T02:26:43.219Z","dependency_job_id":"6ed7381b-5668-4392-87e2-5c36a2b80db1","html_url":"https://github.com/crypto-org-chain/cronos","commit_stats":{"total_commits":682,"total_committers":29,"mean_commits":"23.517241379310345","dds":0.5557184750733137,"last_synced_commit":"d41d67096dfe36ab5fa2020718f42f387a7c61ed"},"previous_names":[],"tags_count":132,"template":false,"template_full_name":null,"purl":"pkg:github/crypto-org-chain/cronos","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crypto-org-chain%2Fcronos","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crypto-org-chain%2Fcronos/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crypto-org-chain%2Fcronos/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crypto-org-chain%2Fcronos/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/crypto-org-chain","download_url":"https://codeload.github.com/crypto-org-chain/cronos/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crypto-org-chain%2Fcronos/sbom","scorecard":{"id":310155,"data":{"date":"2025-08-11","repo":{"name":"github.com/crypto-org-chain/cronos","commit":"842c681cbd2d0d6248ef8177db5c0d123c901334"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":6.1,"checks":[{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Maintained","score":10,"reason":"26 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:33","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:34","Info: jobLevel 'contents' permission set to 'read': .github/workflows/container.yml:20","Info: jobLevel 'actions' permission set to 'read': .github/workflows/gosec.yml:13","Info: jobLevel 'contents' permission set to 'read': .github/workflows/gosec.yml:14","Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/lint-pr.yml:17","Info: jobLevel 'contents' permission set to 'read': .github/workflows/pr_labeler.yml:8","Warn: no topLevel permission defined: .github/workflows/build.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/changelog-reminder.yml:13","Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/container.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/dependabot-update-all.yml:5","Info: topLevel 'contents' permission set to 'read': .github/workflows/dependencies-review.yml:7","Warn: no topLevel permission defined: .github/workflows/gosec.yml:1","Warn: no topLevel permission defined: .github/workflows/issue_labeler.yml:1","Warn: no topLevel permission defined: .github/workflows/linkchecker.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint-pr.yml:11","Warn: no topLevel permission defined: .github/workflows/lint.yml:1","Warn: no topLevel permission defined: .github/workflows/pr_labeler.yml:1","Warn: no topLevel permission defined: .github/workflows/proto.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:9","Warn: no topLevel permission defined: .github/workflows/semgrep.yml:1","Warn: no topLevel permission defined: .github/workflows/sims.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Pinned-Dependencies","score":6,"reason":"dependency not pinned by hash detected -- score normalized to 6","details":["Info: Possibly incomplete results: error parsing shell code: invalid parameter name: .github/workflows/dependabot-update-all.yml:49","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog-reminder.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/changelog-reminder.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/changelog-reminder.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/changelog-reminder.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/container.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/container.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependabot-update-all.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependabot-update-all.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependabot-update-all.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gosec.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/gosec.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gosec.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/gosec.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue_labeler.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/issue_labeler.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/linkchecker.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/linkchecker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint-pr.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint-pr.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint-pr.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr_labeler.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/pr_labeler.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr_labeler.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/pr_labeler.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/proto.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/proto.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/proto.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/semgrep.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/semgrep.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:171: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:205: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:215: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:227: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:235: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:242: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:261: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:271: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:275: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:283: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:291: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:298: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:317: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:327: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:331: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:339: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:347: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:354: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:373: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:386: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:391: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:396: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:401: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:406: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:411: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:426: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:437: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:139: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/crypto-org-chain/cronos/test.yml/main?enable=pin","Warn: npmCommand not pinned by hash: scripts/run-integration-tests:10","Info:   1 out of  73 GitHub-owned GitHubAction dependencies pinned","Info:  47 out of  60 third-party GitHubAction dependencies pinned","Info:   2 out of   2 goCommand dependencies pinned","Info:   0 out of   1 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v1.4.9 not signed: https://api.github.com/repos/crypto-org-chain/cronos/releases/230638134","Warn: release artifact v1.4.8 not signed: https://api.github.com/repos/crypto-org-chain/cronos/releases/226623449","Warn: release artifact v1.4.7 not signed: https://api.github.com/repos/crypto-org-chain/cronos/releases/214437701","Warn: release artifact v1.4.6 not signed: https://api.github.com/repos/crypto-org-chain/cronos/releases/211192037","Warn: release artifact v1.4.5 not signed: https://api.github.com/repos/crypto-org-chain/cronos/releases/205364887","Warn: release artifact v1.4.9 does not have provenance: https://api.github.com/repos/crypto-org-chain/cronos/releases/230638134","Warn: release artifact v1.4.8 does not have provenance: https://api.github.com/repos/crypto-org-chain/cronos/releases/226623449","Warn: release artifact v1.4.7 does not have provenance: https://api.github.com/repos/crypto-org-chain/cronos/releases/214437701","Warn: release artifact v1.4.6 does not have provenance: https://api.github.com/repos/crypto-org-chain/cronos/releases/211192037","Warn: release artifact v1.4.5 does not have provenance: https://api.github.com/repos/crypto-org-chain/cronos/releases/205364887"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/container.yml:16"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Vulnerabilities","score":0,"reason":"10 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x","Warn: Project is vulnerable to: GHSA-52f5-9888-hmc6","Warn: Project is vulnerable to: GHSA-8495-4g3g-x7pr","Warn: Project is vulnerable to: GHSA-9548-qrrj-x5pj","Warn: Project is vulnerable to: GHSA-48p4-8xcf-vxj5","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: GO-2025-3442"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"SAST","score":9,"reason":"SAST tool detected but not run on all commits","details":["Info: SAST configuration detected: CodeQL","Warn: 29 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-17T23:02:43.427Z","repository_id":37037563,"created_at":"2025-08-17T23:02:43.427Z","updated_at":"2025-08-17T23:02:43.427Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31312744,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-02T12:59:32.332Z","status":"ssl_error","status_checked_at":"2026-04-02T12:54:48.875Z","response_time":89,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["blockchain","cosmos-sdk","ethermint","evm"],"created_at":"2024-08-03T06:00:57.485Z","updated_at":"2026-04-02T17:51:14.248Z","avatar_url":"https://github.com/crypto-org-chain.png","language":"Go","funding_links":[],"categories":["Exchange-based Tokens"],"sub_categories":[],"readme":"\u003c!--\nparent:\n  order: false\n--\u003e\n\n\n\u003cdiv align=\"center\"\u003e\n  \u003ch1\u003e \u003cimg src=\"./assets/cronos.svg\" alt=\"Cronos Logo\" width=\"300px\" /\u003e \u003c/h1\u003e\n\u003c/div\u003e\n\u003cbr /\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://github.com/crypto-org-chain/cronos/actions/workflows/build.yml\"\u003e\u003cimg label=\"Build Status\" src=\"https://github.com/crypto-org-chain/cronos/actions/workflows/build.yml/badge.svg\" /\u003e\u003c/a\u003e\n  \u003ca href=\"https://codecov.io/gh/crypto-org-chain/cronos\"\u003e\u003cimg label=\"Code Coverage\" src=\"https://codecov.io/gh/crypto-org-chain/cronos/branch/main/graph/badge.svg\" /\u003e\u003c/a\u003e\n  \u003ca href=\"https://discord.gg/pahqHz26q4\"\u003e\u003cimg label=\"Discord\" src=\"https://img.shields.io/discord/783264383978569728.svg?color=7289da\u0026label=Cronos\u0026logo=discord\u0026style=flat-square\" /\u003e\u003c/a\u003e\n\u003c/p\u003e\n\n## Table of Contents\n\n- [Table of Contents](#table-of-contents)\n- [1. Description](#1-description)\n- [2. Contributing](#2-contributing)\n- [3. License](#3-license)\n- [4. Documentation](#4-documentation)\n- [5. Build full node](#5-build-full-node)\n- [6. Start a local Development Network and Node](#6-start-a-local-development-network-and-node)\n- [7. Send Your First Transaction](#7-send-your-first-transaction)\n- [8. Testing](#8-testing)\n- [9. Pystarport Quick Start](#9-pystarport-quick-start)\n  - [install latest python (for linux)](#install-latest-python-for-linux)\n  - [set path (for linux or for mac)](#set-path-for-linux-or-for-mac)\n  - [install pystarport](#install-pystarport)\n  - [quick start](#quick-start)\n  - [get status](#get-status)\n  - [stop all](#stop-all)\n- [10. Useful links](#10-useful-links)\n\n\u003ca id=\"description\" /\u003e\n\n## 1. Description\n\n**Cronos** is the Crypto.org EVM chain that aims to massively scale the DeFi ecosystem.\n\n\u003ca id=\"contributing\" /\u003e\n\n## 2. Contributing\n\nPlease abide by the [Code of Conduct](CODE_OF_CONDUCT.md) in all interactions,\nand the [contributing guidelines](CONTRIBUTING.md) when submitting code.\n\n\u003ca id=\"license\" /\u003e\n\n## 3. License\n\n[Apache 2.0](./LICENSE)\n\n\u003ca id=\"documentation\" /\u003e\n\n## 4. Documentation\n\n[Technical documentation](http://cronos.org/docs).\n\n\u003ca id=\"build\" /\u003e\n\n## 5. Build full node\n\n```bash\n# COSMOS_BUILD_OPTIONS=rocksdb make install\nmake build\n```\n\n\u003ca id=\"start-local-full-node\" /\u003e\n\n## 6. Start a local Development Network and Node\n\nPlease follow this [documentation](https://cronos.org/docs/getting-started/local-devnet.html#devnet-running-latest-development-node) to run a local devnet.\n\n\u003ca id=\"send-first-transaction\" /\u003e\n\n## 7. Send Your First Transaction\n\nAfter setting the local devnet, you may interact with the your local blockchain by following this [documentation](https://cronos.org/docs/getting-started/local-devnet.html#interact-with-the-chain).\n\n\u003ca id=\"testing\" /\u003e\n\n## 8. Testing\n\nThere are different tests that can be executed in the following ways:\n\n- unit tests: `make test`\n- [integration tests](./docs/integration-test.md)\n\n### CI Testing\nwe use `Nix` as our CI testing environment and use `gomod2nix` to convert go modules into nix packages.\nTherefore, to install `gomod2nix` is required:\n```\ngo install github.com/nix-community/gomod2nix@latest\n```\nAnd then, you can run:\n```\ngomod2nix generate\n```\nto update `gomod2nix.toml` if any go package has changed.\n\n\u003ca id=\"pystarport\" /\u003e\n\n## 9. Pystarport Quick Start\n\nyou can install pystarport to manage nodes for development.\n\n### install latest python (for linux)\n\npython version should be 3.8 or above.\nyou can install python like this.\n\n```\ngit clone git@github.com:python/cpython.git\ncd cpython\ngit checkout tags/v3.9.5\n./configure\nmake\nsudo make install\n```\n\n### set path (for linux or for mac)\nin some cases, if there are multiple python versions, pystarport cannot be found.\nthen adjust python path.\nalso `$HOME/.local/bin` should be included to the PATH.\n\n```\nexport PATH=/usr/local/bin:$HOME/.local/bin:$PATH\n```\n\n### install pystarport\n\n```\npython3 -m pip install pystarport\n```\n\n### quick start\n\nrun two nodes devnet\n\n```\npystarport serve --config ./scripts/cronos-devnet.yaml\n```\n\n### get status\n\n```\npystarport supervisorctl status\n```\n\n### stop all\n\n```\npystarport supervisorctl stop all\n```\n\n---\n\n\u003ca id=\"useful-links\" /\u003e\n\n## 10. Useful links\n\n- [Project Website](http://cronos.org/)\n- [Technical Documentation](http://cronos.org/docs)\n- Community chatrooms (non-technical): [Discord](https://discord.gg/nsp9JTC) [Telegram](https://t.me/CryptoComOfficial)\n- Developer community channel (technical): [![Support Server](https://img.shields.io/discord/783264383978569728.svg?color=7289da\u0026label=Cronos\u0026logo=discord\u0026style=flat-square)](https://discord.gg/pahqHz26q4)\n- [Ethermint](https://github.com/evmos/ethermint) by Tharsis\n- [Cosmos SDK documentation](https://docs.cosmos.network)\n- [Cosmos Discord](https://discord.gg/W8trcGV)\n- [Pystarport](https://github.com/crypto-com/pystarport/blob/main/README.md)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcrypto-org-chain%2Fcronos","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcrypto-org-chain%2Fcronos","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcrypto-org-chain%2Fcronos/lists"}