{"id":15036223,"url":"https://github.com/freeradius/freeradius-server","last_synced_at":"2026-06-04T01:00:40.580Z","repository":{"id":37270879,"uuid":"35649","full_name":"FreeRADIUS/freeradius-server","owner":"FreeRADIUS","description":"FreeRADIUS - A multi-protocol policy server.","archived":false,"fork":false,"pushed_at":"2026-06-02T13:00:26.000Z","size":173287,"stargazers_count":2532,"open_issues_count":80,"forks_count":1195,"subscribers_count":124,"default_branch":"master","last_synced_at":"2026-06-02T13:25:55.291Z","etag":null,"topics":["aaa","arp","authentication","bfd","c","daemon","dhcp","dot1x","eap","freeradius-server","otp","policy","posix","radius","vmps"],"latest_commit_sha":null,"homepage":"http://freeradius.org","language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/FreeRADIUS.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":".github/contributing.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":"COPYRIGHT","agents":"AGENTS.md","dco":null,"cla":null}},"created_at":"2008-07-20T18:04:09.000Z","updated_at":"2026-06-01T20:19:20.000Z","dependencies_parsed_at":"2026-01-19T17:01:44.145Z","dependency_job_id":"be4ff91c-032a-464e-bc36-8364a26f4b58","html_url":"https://github.com/FreeRADIUS/freeradius-server","commit_stats":{"total_commits":44393,"total_committers":260,"mean_commits":170.7423076923077,"dds":0.6096006127092108,"last_synced_commit":"791f6873d67b7a905022802fd4ac9c3abfbd92e2"},"previous_names":[],"tags_count":117,"template":false,"template_full_name":null,"purl":"pkg:github/FreeRADIUS/freeradius-server","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/FreeRADIUS%2Ffreeradius-server","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/FreeRADIUS%2Ffreeradius-server/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/FreeRADIUS%2Ffreeradius-server/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/FreeRADIUS%2Ffreeradius-server/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/FreeRADIUS","download_url":"https://codeload.github.com/FreeRADIUS/freeradius-server/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/FreeRADIUS%2Ffreeradius-server/sbom","scorecard":{"id":52857,"data":{"date":"2025-08-11","repo":{"name":"github.com/FreeRADIUS/freeradius-server","commit":"d2c688f9286501f868ffdc272cb8ce6bd0fb03d4"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.1,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: GNU General Public License v2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/documentation.yml:87","Warn: no topLevel permission defined: .github/workflows/ci-deb.yml:1","Warn: no topLevel permission defined: .github/workflows/ci-freebsd.yml:1","Warn: no topLevel permission defined: .github/workflows/ci-macos.yml:1","Warn: no topLevel permission defined: .github/workflows/ci-rpm.yml:1","Warn: no topLevel permission defined: .github/workflows/ci-sanitizers.yml:1","Warn: no topLevel permission defined: .github/workflows/ci-scheduled-fuzzing.yml:1","Warn: no topLevel permission defined: .github/workflows/ci.yml:1","Warn: no topLevel permission defined: .github/workflows/close.yml:1","Warn: no topLevel permission defined: .github/workflows/coverity.yml:1","Warn: no topLevel permission defined: .github/workflows/crossbuild.yml:1","Warn: no topLevel permission defined: .github/workflows/docker-refresh.yml:1","Warn: no topLevel permission defined: .github/workflows/docker.yml:1","Warn: no topLevel permission defined: .github/workflows/documentation.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Signed-Releases","score":8,"reason":"5 out of the last 5 releases have a total of 5 signed artifacts.","details":["Info: signed release artifact: freeradius-server-3.2.7.tar.bz2.sig: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_2_7","Info: signed release artifact: freeradius-server-3.2.6.tar.bz2.sig: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_2_6","Info: signed release artifact: freeradius-server-3.2.5.tar.bz2.sig: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_2_5","Info: signed release artifact: freeradius-server-3.0.27.tar.bz2.sig: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_0_27","Info: signed release artifact: freeradius-server-3.2.4.tar.bz2.sig: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_2_4","Warn: release artifact release_3_2_7 does not have provenance: https://api.github.com/repos/FreeRADIUS/freeradius-server/releases/197774699","Warn: release artifact release_3_2_6 does not have provenance: https://api.github.com/repos/FreeRADIUS/freeradius-server/releases/171786921","Warn: release artifact release_3_2_5 does not have provenance: https://api.github.com/repos/FreeRADIUS/freeradius-server/releases/164603509","Warn: release artifact release_3_0_27 does not have provenance: https://api.github.com/repos/FreeRADIUS/freeradius-server/releases/164603869","Warn: release artifact release_3_2_4 does not have provenance: https://api.github.com/repos/FreeRADIUS/freeradius-server/releases/158050387"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Fuzzing","score":10,"reason":"project is fuzzed","details":["Info: OSSFuzz integration found","Info: CLibFuzzer integration found: src/bin/fuzzer.c:52","Info: CLibFuzzer integration found: src/bin/fuzzer.c:257"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during GetBranch(v3.0.x): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/docker-refresh.yml:18"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Vulnerabilities","score":0,"reason":"11 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2020-211 / GHSA-q4v3-wmm6-hcrx","Warn: Project is vulnerable to: PYSEC-2019-154 / GHSA-w4px-9pgm-p2f3","Warn: Project is vulnerable to: PYSEC-2021-142 / GHSA-8q59-q68h-6hv4","Warn: Project is vulnerable to: PYSEC-2018-49 / GHSA-rprw-h62v-c2w7","Warn: Project is vulnerable to: GHSA-496j-2rq6-j6cc","Warn: Project is vulnerable to: GHSA-6628-q6j9-w8vg","Warn: Project is vulnerable to: GHSA-9hxf-ppjv-w6rq","Warn: Project is vulnerable to: GHSA-cfgp-2977-2fmm","Warn: Project is vulnerable to: PYSEC-2017-101","Warn: Project is vulnerable to: GHSA-qfr5-wjpw-q4c4","Warn: Project is vulnerable to: GHSA-r8wq-qrxc-hmcm"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing shell code: || can only immediately follow a statement: scripts/ci/build.sh:0","Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered ): scripts/radsniff.init:0","Info: Possibly incomplete results: error parsing shell code: ; can only immediately follow a statement: scripts/util/archive.sh:0","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:266: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:281: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-deb.yml:298: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-deb.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-freebsd.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-freebsd.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-freebsd.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-freebsd.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-freebsd.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-freebsd.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-freebsd.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-freebsd.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-freebsd.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-freebsd.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:197: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-macos.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-macos.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:208: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:230: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:245: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-rpm.yml:263: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-rpm.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-sanitizers.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-sanitizers.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-sanitizers.yml:210: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-sanitizers.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-sanitizers.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-sanitizers.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-scheduled-fuzzing.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-scheduled-fuzzing.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-scheduled-fuzzing.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:247: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-scheduled-fuzzing.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:326: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci-scheduled-fuzzing.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:251: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:220: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/close.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/close.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverity.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/coverity.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverity.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/coverity.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/crossbuild.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/crossbuild.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/crossbuild.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/crossbuild.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/crossbuild.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/crossbuild.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker-refresh.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker-refresh.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-refresh.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker-refresh.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-refresh.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker-refresh.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/docker.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/documentation.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:147: update your workflow using https://app.stepsecurity.io/secureworkflow/FreeRADIUS/freeradius-server/documentation.yml/master?enable=pin","Warn: containerImage not pinned by hash: scripts/ci/Dockerfile:1: pin your Docker image by updating ubuntu:24.04 to ubuntu:24.04@sha256:a08e551cb33850e4740772b38217fc1796a66da2506d312abe51acda354ff061","Warn: containerImage not pinned by hash: scripts/docker/build/debian12/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/debian12/Dockerfile:59","Warn: containerImage not pinned by hash: scripts/docker/build/debian12/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/debian13/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/debian13/Dockerfile:59","Warn: containerImage not pinned by hash: scripts/docker/build/debian13/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/debiansid/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/debiansid/Dockerfile:59","Warn: containerImage not pinned by hash: scripts/docker/build/debiansid/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/rocky10/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/rocky10/Dockerfile:86","Warn: containerImage not pinned by hash: scripts/docker/build/rocky10/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/rocky9/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/rocky9/Dockerfile:86","Warn: containerImage not pinned by hash: scripts/docker/build/rocky9/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu22/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu22/Dockerfile:59","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu22/Dockerfile.cb:7","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu24/Dockerfile:7","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu24/Dockerfile:59","Warn: containerImage not pinned by hash: scripts/docker/build/ubuntu24/Dockerfile.cb:7","Warn: pipCommand not pinned by hash: scripts/ci/Dockerfile:77","Warn: npmCommand not pinned by hash: scripts/docker/build/debian12/Dockerfile.cb:82-84","Warn: npmCommand not pinned by hash: scripts/docker/build/debian13/Dockerfile.cb:81-83","Warn: npmCommand not pinned by hash: scripts/docker/build/debiansid/Dockerfile.cb:86-88","Warn: downloadThenRun not pinned by hash: scripts/docker/build/rocky10/Dockerfile.cb:26","Warn: npmCommand not pinned by hash: scripts/docker/build/rocky10/Dockerfile.cb:28","Warn: downloadThenRun not pinned by hash: scripts/docker/build/rocky9/Dockerfile.cb:26","Warn: npmCommand not pinned by hash: scripts/docker/build/rocky9/Dockerfile.cb:28","Warn: npmCommand not pinned by hash: scripts/docker/build/ubuntu22/Dockerfile.cb:82-84","Warn: npmCommand not pinned by hash: scripts/docker/build/ubuntu24/Dockerfile.cb:82-84","Warn: pipCommand not pinned by hash: .github/workflows/ci-macos.yml:115","Warn: pipCommand not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:279","Warn: pipCommand not pinned by hash: .github/workflows/ci-scheduled-fuzzing.yml:280","Warn: npmCommand not pinned by hash: .github/workflows/documentation.yml:44","Info:   0 out of  40 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  19 third-party GitHubAction dependencies pinned","Info:   0 out of  22 containerImage dependencies pinned","Info:   0 out of   4 pipCommand dependencies pinned","Info:   0 out of   8 npmCommand dependencies pinned","Info:   0 out of   2 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}}]},"last_synced_at":"2025-08-15T00:03:17.652Z","repository_id":37270879,"created_at":"2025-08-15T00:03:17.652Z","updated_at":"2025-08-15T00:03:17.652Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33886153,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-03T02:00:06.370Z","response_time":59,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aaa","arp","authentication","bfd","c","daemon","dhcp","dot1x","eap","freeradius-server","otp","policy","posix","radius","vmps"],"created_at":"2024-09-24T20:30:33.230Z","updated_at":"2026-06-04T01:00:40.573Z","avatar_url":"https://github.com/FreeRADIUS.png","language":"C","funding_links":[],"categories":[],"sub_categories":[],"readme":"# The FreeRADIUS server\n\n[![CI build status](https://github.com/FreeRADIUS/freeradius-server/actions/workflows/ci.yml/badge.svg)][BuildStatusLink] [![Coverity status][CoverityStatus]][CoverityStatusLink] [![OSS-Fuzz status][OssFuzz]][OssFuzzLink]\n\n## Introduction\n\nThe FreeRADIUS Server Project is a high performance and highly\nconfigurable multi-protocol policy server, supporting RADIUS, DHCPv4\nDHCPv6, DNS, TACACS+ and VMPS. It is available under the terms of the GNU GPLv2.\nUsing RADIUS allows authentication and authorization for a network\nto be centralized, and minimizes the number of changes that have to\nbe done when adding or deleting new users to a network.\n\nFreeRADIUS can authenticate users on systems such as 802.1x (WiFi),\ndialup, PPPoE, VPN's, VoIP, and many others.  It supports back-end\ndatabases such as MySQL, MariaDB, PostgreSQL, Oracle, Microsoft Active\nDirectory, Apache Cassandra, Redis, OpenLDAP, and many more.  It is\nused daily to authenticate the Internet access for hundreds of millions\nof people, in sites ranging from 10 to 10 million+ users.\n\n## Documentation\n\nPlease see the [documentation](doc/) directory, which has full\ndocumentation for version 4.\n\nPlease also see \u003chttps://freeradius.org\u003e and \u003chttps://www.freeradius.org/documentation/freeradius-server/4.0.0/\u003e\nfor additional documentation.\n\n### Use of AI\n\nWe do _not_ recommend using AI tools to generate FreeRADIUS\nconfigurations.  Experience has shown that these configurations are\nlargely wrong.\n\nWe _do_ recommend using AI tools to analyze your configuration, and\nsuggest optimizations or improvements.  However, these suuggestions\nshould be viewed with great suspicion.\n\nThe benefit of AI is not in creating new content.  The benefit of AI\nis in analyzing large amounts of existing content.  Computers remember\nthings better than people, and are better at cross-checking\nconfigurations for consistency, errors, or things which were missed.\nAs such, AI can sometimes be helpful.\n\n## Installation\n\nTo install the server, please see the [installation\ninstructions](doc/antora/modules/installation/pages/index.adoc) document.\n\n## Configuring the server\n\nWe understand that the server may be difficult to configure,\ninstall, or administer.  It is, after all, a complex system with many\ndifferent configuration possibilities.\n\nThe most common problem is that people change large amounts of the\nconfiguration without understanding what they're doing, and without\ntesting their changes.  The preferred method of operation is the\nfollowing:\n\n1. Start off with the default configuration files.\n2. Save a copy of the default configuration: It WORKS.  Don't change it!\n3. Verify that the server starts - in debugging mode (`radiusd -X`).\n4. Send it test packets using \"radclient\", or a NAS or AP.\n5. Verify that the server does what you expect\n   - If it does not work, change the configuration, and go to step (3)\n   - If you're stuck, revert to using the \"last working\" configuration.\n   - If it works, proceed to step (6).\n6. Save a copy of the working configuration, along with a note of what\n   you changed, and why.\n7. Make a SMALL change to the configuration.\n8. Repeat from step (3).\n\nThis method will ensure that you have a working configuration that\nis customized to your site as quickly as possible.  While it may seem\nfrustrating to proceed via a series of small steps, the alternative\nwill always take more time.  The \"fast and loose\" way will be MORE\nfrustrating than quickly making forward progress!\n\n## Debugging the Server\n\nRun the server in debugging mode, (`radiusd -X`) and READ the output.\nWe cannot emphasize this point strongly enough.  The vast majority of\nproblems can be solved by carefully reading the debugging output,\nwhich includes WARNINGs about common issues, and suggestions for how\nthey may be fixed.\n\nThe debug output is explained in detail in the\n[radiusd-X](https://www.freeradius.org/documentation/freeradius-server/4.0.0/debugging/radiusd_X.html)\npage.\n\nRead the configuration files.  Many parts of the server are\ndocumented only with extensive comments in the configuration files.\n\nSearch the mailing lists. For example, using Google, searching\n\"site:lists.freeradius.org \u003csearch term\u003e\" will return results from\nthe FreeRADIUS mailing lists.\n\n[Additional\nhelp](https://www.freeradius.org/documentation/freeradius-server/4.0.0/gethelp.html)\nis available via the mailing lists, including commercial support.\n\nWhen posting to the mailing list, we recommend posting the output of\n`radiusd -X`.  That information shows what the server is doing when it\nreceives packets, and how it processes those packets.\n\nDo NOT post the configuration files to the mailing list.  They're not\nuseful.  Instead, post the output of `radiusd -X`.  We really cannot\nemphasize that enough.\n\nDO post a clear description of what the problem is.  Empty questions\nwill not make you friends.  e.g. \"I changed things and now it doesn't\nwork.  What do I do to fix it?\"\n\n## Feedback, Defects, and Community Support\n\nIf you have any comments, or are having difficulty getting FreeRADIUS\nto do what you want, please post to the 'freeradius-users' list (see\nthe URL above). The FreeRADIUS mailing list is operated, and\ncontributed to, by the FreeRADIUS community. Users of the list will be\nmore than happy to answer your questions, with the caveat that you\nhave read the documentation relevant to your issue first.\n\nIf you suspect a defect in the server, would like to request a feature,\nor submit a code patch, please use the GitHub issue tracker for the\nfreeradius-server\n[repository](https://github.com/FreeRADIUS/freeradius-server).\nHowever, it is nearly always best to raise the issue on the\nmailing lists first to determine whether it really is a defect or\nmissing feature.\n\nInstructions for gathering data for defect reports can be found in\n[here](doc/antora/modules/developers/pages/bugs.adoc) and online at\n\u003chttps://www.freeradius.org/documentation/freeradius-server/4.0.0/developers/bugs.html\u003e\n\nUnder no circumstances should the issue tracker be used for support\nrequests, those questions belong on the user's mailing list.  If you\npost questions related to the server in the issue tracker, the issue\nwill be closed and locked.  If you persist in posting questions to\nthe issue tracker you will be banned from all FreeRADIUS project\nrepositories on GitHub.\n\nPlease do _not_ complain that the developers aren't answering your\nquestions quickly enough, or aren't fixing the problems quickly\nenough.  Please do _not_ complain if you're told to go read\ndocumentation.  We recognize that the documentation isn't perfect, but\nit *does* exist, and reading it can solve most common questions.\n\nFreeRADIUS is the cumulative effort of many years of work by many\npeople, and you have gotten it for free.  No one is getting paid to\nanswer your questions.  This is free software, and the only way it\ngets better is if you make a contribution back to the project ($$,\ncode, or documentation).\n\n## Commercial support\n\nTechnical support, managed systems support, custom deployments,\nsponsored feature development and many other commercial services\nare available from [InkBridge Networks](https://www.inkbridgenetworks.com).\n\n[BuildStatus]: https://github.com/FreeRADIUS/freeradius-server/workflows/CI/badge.svg?branch=master \"CI status\"\n[BuildStatusLink]: https://github.com/FreeRADIUS/freeradius-server/actions?query=workflow%3ACI\n[OssFuzz]: https://oss-fuzz-build-logs.storage.googleapis.com/badges/freeradius.svg \"OSS-Fuzz status\"\n[OssFuzzLink]: https://bugs.chromium.org/p/oss-fuzz/issues/list?sort=-opened\u0026can=1\u0026q=proj:freeradius\n[CoverityStatus]: https://scan.coverity.com/projects/58/badge.svg?flat=1 \"Coverity Status\"\n[CoverityStatusLink]: https://scan.coverity.com/projects/58\n[LGTMStatus]: https://img.shields.io/lgtm/alerts/g/FreeRADIUS/freeradius-server.svg?logo=lgtm\u0026logoWidth=18\n[LGTMStatusLink]: https://lgtm.com/projects/g/FreeRADIUS/freeradius-server/alerts/\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreeradius%2Ffreeradius-server","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffreeradius%2Ffreeradius-server","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreeradius%2Ffreeradius-server/lists"}