{"id":15130001,"url":"https://github.com/dekorateio/dekorate","last_synced_at":"2026-04-07T19:31:50.833Z","repository":{"id":37444170,"uuid":"157569792","full_name":"dekorateio/dekorate","owner":"dekorateio","description":"Tools for generating Kubernetes related manifests.","archived":false,"fork":false,"pushed_at":"2026-03-08T09:43:55.000Z","size":18865,"stargazers_count":490,"open_issues_count":77,"forks_count":108,"subscribers_count":8,"default_branch":"main","last_synced_at":"2026-03-11T06:59:32.428Z","etag":null,"topics":["java","knative","kubernetes","openshift","tekton"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/dekorateio.png","metadata":{"files":{"readme":"docs/README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"license.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2018-11-14T15:30:03.000Z","updated_at":"2026-03-08T09:44:02.000Z","dependencies_parsed_at":"2022-07-12T13:34:41.708Z","dependency_job_id":"da86f993-e0fc-4aa2-b5b1-40f5683a9449","html_url":"https://github.com/dekorateio/dekorate","commit_stats":null,"previous_names":["ap4k/ap4k"],"tags_count":177,"template":false,"template_full_name":null,"purl":"pkg:github/dekorateio/dekorate","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dekorateio%2Fdekorate","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dekorateio%2Fdekorate/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dekorateio%2Fdekorate/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dekorateio%2Fdekorate/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dekorateio","download_url":"https://codeload.github.com/dekorateio/dekorate/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dekorateio%2Fdekorate/sbom","scorecard":{"id":201218,"data":{"date":"2025-08-11","repo":{"name":"github.com/dekorateio/dekorate","commit":"68f69a16fc8cfca0dea85cd74ceac67c0da87c2d"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.2,"checks":[{"name":"Code-Review","score":2,"reason":"Found 6/29 approved changesets -- score normalized to 2","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":5,"reason":"5 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: license.txt:0","Info: FSF or OSI recognized license: Apache License 2.0: license.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/build.yml:1","Warn: no topLevel permission defined: .github/workflows/checks.yml:1","Warn: no topLevel permission defined: .github/workflows/downstream-projects-check.yml:1","Warn: no topLevel permission defined: .github/workflows/integration-tests-with-dockerio.yml:1","Warn: no topLevel permission defined: .github/workflows/integration-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":9,"reason":"binaries present in source code","details":["Warn: binary detected: tests/feat-243-spring-boot-with-webflux/.mvn/wrapper/maven-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":3,"reason":"SAST tool is not run on all commits -- score normalized to 3","details":["Warn: 4 commits out of 11 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/checks.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/checks.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/checks.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/checks.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/downstream-projects-check.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/downstream-projects-check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:172: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:231: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests-with-dockerio.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:133: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:148: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:170: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:176: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:270: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/dekorateio/dekorate/release.yml/main?enable=pin","Warn: containerImage not pinned by hash: examples/frameworkless-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8-jdk-alpine to openjdk:8-jdk-alpine@sha256:94792824df2df33402f201713f932b58cb9de94a0cd524164a0f2283343547b3","Warn: containerImage not pinned by hash: examples/helm-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/helm-on-openshift-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/kind-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/knative-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/kubernetes-with-configmap-volume-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/kubernetes-with-custom-image-name-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/kubernetes-with-hostaliases-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/kubernetes-with-nodeselectors-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/minikube-example-with-properties/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/minikube-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/multimodule-projects-on-kubernetes-example/multimodule-project-a-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/multimodule-projects-on-kubernetes-example/multimodule-project-b-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-knative-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-kubernetes-with-certmanager-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-kubernetes-with-sbo-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-kubernetes-without-annotations/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-openshift-with-certmanager-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-on-openshift-with-docker-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-with-gradle-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8-alpine to openjdk:8-alpine@sha256:94792824df2df33402f201713f932b58cb9de94a0cd524164a0f2283343547b3","Warn: containerImage not pinned by hash: examples/spring-boot-with-jaeger-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-with-prometheus-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-with-tekton-and-m2-pvc-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/spring-boot-with-tekton-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: examples/thorntail-on-kubernetes-example/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/feat-216-annotationless-yml/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/feat-429-container-resources/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/feat-553-ingress-annotations/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-369-probe-properties/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-409-image-customization/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-420-docker-registry/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-421-kebabcase-in-yml/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-446-secret-volumes/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: containerImage not pinned by hash: tests/issue-963-docker-system-properties/Dockerfile:1: pin your Docker image by updating openjdk:8u171-alpine3.7 to openjdk:8u171-alpine3.7@sha256:12e19d0dffa75ded3ab909e8c1966682b097f155ca0c2c88577445c64d6776d5","Warn: downloadThenRun not pinned by hash: .github/workflows/build.yml:43","Warn: downloadThenRun not pinned by hash: .github/workflows/integration-tests-with-dockerio.yml:77","Warn: downloadThenRun not pinned by hash: .github/workflows/integration-tests.yml:83","Info:   0 out of  42 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  14 third-party GitHubAction dependencies pinned","Info:   0 out of  35 containerImage dependencies pinned","Info:   0 out of   3 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"25 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-h46c-h94j-95f3","Warn: Project is vulnerable to: GHSA-w33c-445m-f8w7","Warn: Project is vulnerable to: GHSA-4265-ccf5-phj5","Warn: Project is vulnerable to: GHSA-4g9r-vxhx-9pgx","Warn: Project is vulnerable to: GHSA-mjmj-j48q-9wg2","Warn: Project is vulnerable to: GHSA-cr5q-6q9f-rq6q","Warn: Project is vulnerable to: GHSA-j6gc-792m-qgm2","Warn: Project is vulnerable to: GHSA-pj73-v5mw-pm9j","Warn: Project is vulnerable to: GHSA-48wp-p9qv-4j64","Warn: Project is vulnerable to: GHSA-636f-xm5j-pj9m","Warn: Project is vulnerable to: GHSA-7vh7-fw88-wj87","Warn: Project is vulnerable to: GHSA-2qc6-mcvw-92cw","Warn: Project is vulnerable to: GHSA-353f-x4gh-cqq8","Warn: Project is vulnerable to: GHSA-5w6v-399v-w3cc","Warn: Project is vulnerable to: GHSA-mrxw-mxhj-p664","Warn: Project is vulnerable to: GHSA-pxvg-2qj5-37jq","Warn: Project is vulnerable to: GHSA-r95h-9x8f-r3f7","Warn: Project is vulnerable to: GHSA-vvfq-8hwr-qm4m","Warn: Project is vulnerable to: GHSA-xc9x-jj77-9p9j","Warn: Project is vulnerable to: GHSA-2rxp-v6pw-ch6m","Warn: Project is vulnerable to: GHSA-4xqq-m2hx-25v8","Warn: Project is vulnerable to: GHSA-5866-49gr-22v4","Warn: Project is vulnerable to: GHSA-r55c-59qm-vjw6","Warn: Project is vulnerable to: GHSA-vg3r-rm7w-2xgh","Warn: Project is vulnerable to: GHSA-vmwr-mc7x-5vc3"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T22:52:59.265Z","repository_id":37444170,"created_at":"2025-08-16T22:52:59.265Z","updated_at":"2025-08-16T22:52:59.265Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31526665,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-07T16:28:08.000Z","status":"ssl_error","status_checked_at":"2026-04-07T16:28:06.951Z","response_time":105,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["java","knative","kubernetes","openshift","tekton"],"created_at":"2024-09-26T02:26:25.848Z","updated_at":"2026-04-07T19:31:50.817Z","avatar_url":"https://github.com/dekorateio.png","language":"Java","funding_links":[],"categories":["容器化工具","Configuration Management"],"sub_categories":[],"readme":"# Upstream Community Theme\n\nThe Upstream Community Theme is a ready-to-use [Jekyll](https://jekyllrb.com/) theme to help you create a basic static site for your project. It was designed with the Red Hat Upstream Community in mind, but can be used by anyone looking to create a simple, lightweight site.\n\n## Getting Started\n\nThese instructions will get you a copy of the project up and running on your local machine for development purposes. See deployment for notes on how to deploy the project on [GitHub Pages](https://pages.github.com/).\n\n### Prerequisites\n\n - Install a full [Ruby development environment](https://www.ruby-lang.org/en/downloads/). Ruby version 2.4.0 or above is required, including all development headers. You can run `ruby -v` to check your current Ruby version.\n - [RubyGems](https://rubygems.org/pages/download). You can run `gem -v` to check if you have RubyGems installed.\n - [GCC](https://gcc.gnu.org/install/) and [Make](https://www.gnu.org/software/make/). You can run `gcc -v`,`g++ -v` and `make -v` to see if your system already has them installed.\n\n### Installing the theme\n\n*[Jekyll documentation pages](https://jekyllrb.com/docs/)*\n\n1. The Jekyll site provides detailed installation instructions for each operating system:\n \n  - [Mac](https://jekyllrb.com/docs/installation/macos/)\n  - [Linux distributions including Red Hat Linux](https://jekyllrb.com/docs/installation/other-linux)\n  - [Ubuntu Linux](https://jekyllrb.com/docs/installation/ubuntu/)\n  - [Windows](https://jekyllrb.com/docs/installation/windows/)\n    \n2. Fork this repository by clicking the _Fork_ button at the top right corner of this page.\n3. Clone your fork (please ensure you have current version of git installed) by running: \n  `git clone git@github.com:YOUR_USER_NAME/dekorate.git`\n4. Change into the project directory\n  `cd dekorate/docs`\n5. Build the site and make it available on a local server\n  `bundle exec jekyll serve`\n6. To preview your site, browse to http://localhost:4000\n\n\u003e If you encounter any unexpected errors during the above, please refer to the [troubleshooting](https://jekyllrb.com/docs/troubleshooting/#configuration-problems) page or the [requirements](https://jekyllrb.com/docs/installation/#requirements) page, as you might be missing development headers or other prerequisites.\n\n_For more information regarding the use of Jekyll, please refer to the [Jekyll Step by Step Tutorial](https://jekyllrb.com/docs/step-by-step/01-setup/)._\n\n### Installing the theme using Docker\n\nAlternatively, you can build the site and make it available on a local server using Docker without needing to install any tools in your local machine:\n\n```\ncd docs\ndocker run -p 4000:4000 -v $(pwd):/site bretfisher/jekyll-serve\n```\n\nThe site will be up and running in `localhost:4000`.\n\nOr you can just use docker compose:\n\n```\ndocker compose up\n```\n\n\n## Deployment on GitHub Pages\n\nTo deploy your site using GitHub Pages you will need to add the [github-pages gem](https://github.com/github/pages-gem).\n\nTo use the github-pages gem, you'll need to add the following on your `Gemfile`:\n\n```\nsource \"https://rubygems.org\"\ngem \"github-pages\", group: :jekyll_plugins\n```\nAnd then run `bundle update`.\n\nTo deploy a project page that is kept in the same repository as the project they are for, please refer to the *Project Pages* section in [Deploying Jekyll to GitHub Pages](https://jekyllrb.com/docs/github-pages/#deploying-jekyll-to-github-pages).\n\n\n## Contributing\n\nPlease read [CONTRIBUTING.md](https://gist.github.com/PurpleBooth/b24679402957c63ec426) for details on the process for submitting pull requests to us.\n\n## Authors\n\n* [**Adela Sofia A.**](https://github.com/adelasofia) - *Initial theme implementation*\n* [**Jason Brock**](https://github.com/jkbrock) - *Visual Designer*\n\n## License\n\nThis project is licensed under the MIT License - see the [LICENSE.txt](../license.txt) file for details.\n\n## Navigation\n\nThe side navigation bars make use of the `/_data/sidebar.yml` file, here you can write down the title and url where you want to page to be reached at. It will automatically be added to the website.\nPlease make sure the `url` here is the same as the `permalink` inside the page front matter.\n\nFor example:\n\n`sidebar.yml` -\n```\n title: Getting Started\n url: /docs/getting-started\n```\n`docs/getting-started.md` -\n```---\ntitle: Getting Started\ndescription: Getting Started\nlayout: docs\npermalink: /docs/getting-started\n---\n```\n\nIn order to create a navigation dropdown follow the following example:\n```- title: Usage\n    url: /docs/usage\n    dropdown:\n      - title: Kubernetes\n        url: /docs/kubernetes\n      - title: Container Resources\n        url: /docs/container-resources\n```\n\n## Page Layouts\n\nThere are a few page layouts:\n\n[comment]: \u003c\u003e (// TO DO: review the layouts part)\n\n[comment]: \u003c\u003e (* `homepage` this is very specific to the homepage and shouldn't be used for other pages)\n\n[comment]: \u003c\u003e (* `docs` this is specific to all the pages that are related to documentation files.)\n\n[comment]: \u003c\u003e (* `default` this can be reused for any other pages. Mention the title in the Front Matter and omit it in the content of your page.)\n\n## Documetation pages\n\nAll documentation files should be added to the `documentation/` folder and for the navigation to have `/docs/page-name` in the url.\n\n\n## Github api\n\nThe website uses the [jekyll-github-metadata](https://github.com/jekyll/github-metadata) plugin in order to display new releases automatically,\nthis can be use for other purposes if need arises\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdekorateio%2Fdekorate","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdekorateio%2Fdekorate","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdekorateio%2Fdekorate/lists"}