{"id":16242835,"url":"https://github.com/jakowenko/watchtower","last_synced_at":"2025-10-09T12:10:47.955Z","repository":{"id":38359874,"uuid":"267590771","full_name":"jakowenko/watchtower","owner":"jakowenko","description":"Watch docker containers and check for image updates on Docker Hub.","archived":false,"fork":false,"pushed_at":"2023-01-25T11:01:39.000Z","size":92,"stargazers_count":20,"open_issues_count":6,"forks_count":1,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-08-25T08:38:42.507Z","etag":null,"topics":["docker","dockerhub","kubernetes","monitoring","nodejs","notifications","npm","npm-package","watchtower"],"latest_commit_sha":null,"homepage":"https://npmjs.com/package/@jakowenko/watchtower","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jakowenko.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-05-28T12:59:28.000Z","updated_at":"2024-12-28T17:55:35.000Z","dependencies_parsed_at":"2023-02-01T02:31:30.240Z","dependency_job_id":null,"html_url":"https://github.com/jakowenko/watchtower","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/jakowenko/watchtower","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jakowenko%2Fwatchtower","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jakowenko%2Fwatchtower/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jakowenko%2Fwatchtower/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jakowenko%2Fwatchtower/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jakowenko","download_url":"https://codeload.github.com/jakowenko/watchtower/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jakowenko%2Fwatchtower/sbom","scorecard":{"id":502941,"data":{"date":"2025-08-11","repo":{"name":"github.com/jakowenko/watchtower","commit":"d896eeb60072420db783962456df936cb4d33a25"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.4,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 0/11 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/buildx-feature.yml:1","Warn: no topLevel permission defined: .github/workflows/publish-build-beta.yml:1","Warn: no topLevel permission defined: .github/workflows/publish-build.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":0,"reason":"license file not detected","details":["Warn: project does not have a license file"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildx-feature.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/buildx-feature.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildx-feature.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/buildx-feature.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build-beta.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build-beta.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build-beta.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build-beta.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build-beta.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build-beta.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-build-beta.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build-beta.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-build.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-build.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/jakowenko/watchtower/publish-build.yml/master?enable=pin","Warn: containerImage not pinned by hash: docker/Dockerfile:1: pin your Docker image by updating node:12-alpine to node:12-alpine@sha256:d4b15b3d48f42059a15bd659be60afe21762aae9d6cbea6f124440895c27db68","Warn: containerImage not pinned by hash: docker/Dockerfile.beta:1: pin your Docker image by updating node:12-alpine to node:12-alpine@sha256:d4b15b3d48f42059a15bd659be60afe21762aae9d6cbea6f124440895c27db68","Warn: npmCommand not pinned by hash: docker/Dockerfile:5-7","Warn: npmCommand not pinned by hash: docker/Dockerfile.beta:5-7","Warn: npmCommand not pinned by hash: .github/workflows/publish-build-beta.yml:21","Warn: npmCommand not pinned by hash: .github/workflows/publish-build.yml:26","Info: 0 out of 7 GitHub-owned GitHubAction dependencies pinned","Info: 0 out of 3 third-party GitHubAction dependencies pinned","Info: 0 out of 2 containerImage dependencies pinned","Info: 0 out of 4 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 21 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-19T22:27:26.123Z","repository_id":38359874,"created_at":"2025-08-19T22:27:26.123Z","updated_at":"2025-08-19T22:27:26.123Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279001439,"owners_count":26083078,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-09T02:00:07.460Z","response_time":59,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","dockerhub","kubernetes","monitoring","nodejs","notifications","npm","npm-package","watchtower"],"created_at":"2024-10-10T14:12:57.488Z","updated_at":"2025-10-09T12:10:47.918Z","avatar_url":"https://github.com/jakowenko.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![NPM Version](https://flat.badgen.net/npm/v/@jakowenko/watchtower)](https://www.npmjs.com/package/@jakowenko/watchtower)\n[![NPM Downloads](https://flat.badgen.net/npm/dt/@jakowenko/watchtower)](https://www.npmjs.com/package/@jakowenko/watchtower)\n[![Docker Pulls](https://flat.badgen.net/docker/pulls/jakowenko/watchtower)](https://hub.docker.com/r/jakowenko/watchtower)\n\n# Watchtower\n\nWatch Docker containers and check for image updates on Docker Hub. Watchtower can be used to monitor for updates or automatically update existing containers with the new image.\n\nThis project was inspired by https://github.com/containrrr/watchtower and is not affiliated with it.\n\n```shell\n------------------------------------------------\nwatching 10 containers @ 06/09/2020 01:02:01 EDT\n------------------------------------------------\n2 updates found\ngrafana/grafana:latest | 3 hours ago\nportainer/portainer:latest | 15 minutes ago\n------------------------------------------------\ndownloading 2 images\ngrafana/grafana:latest\nportainer/portainer:latest\ndownloads complete in 13.28 seconds\n------------------------------------------------\nrecreating 2 containers\ngrafana\nportainer\nrecreations complete in 4.57 seconds\n------------------------------------------------\npruning images \u0026 volumes\n2 images | 54.50 MB\n0 volumes\npruning complete in 1.02 seconds\n-----------------------------------------------\nrun complete in 19.46 seconds\n```\n\n## Install\n\n**Node.js**\n`npm install @jakowenko/watchtower`\n\n**Docker**\n`docker pull jakowenko/watchtower`\n\n## Usage\n\n**Node.js**\n\n```js\nconst watchtower = require('@jakowenko/watchtower');\n\nwatchtower.run();\n```\n\n**Docker**\n\n```shell\ndocker run -d \\\n --name=watchtower \\\n -v /var/run/docker.sock:/var/run/docker.sock:ro \\\n jakowenko/watchtower\n```\n\n```yaml\nversion: '3.7'\n\nservices:\n watchtower:\n container_name: watchtower\n image: jakowenko/watchtower\n restart: unless-stopped\n volumes:\n - /var/run/docker.sock:/var/run/docker.sock:ro\n```\n\n## How are updates detected?\n\nThere are currently two ways Watchtower checks for image updates.\n\n- If the `last_updated` value on Docker Hub is newer than your containers `createdAt` value.\n- If the `last_updated` value on Docker Hub changes while Watchtower is running.\n\n```json\n/* Docker Hub API v2 Sample Response Snippet */\n{\n \"last_updated\": \"2020-05-28T13:50:21.956701Z\",\n \"last_updater_username\": \"jakowenko\",\n \"name\": \"latest\",\n \"images\": [\n {\n \"architecture\": \"amd64\",\n \"features\": \"\",\n \"variant\": null,\n \"os\": \"linux\",\n \"os_features\": \"\",\n \"os_version\": null,\n \"size\": 380405997\n }\n ],\n \"repository\": 9138104,\n \"full_size\": 380405997,\n \"v2\": true\n}\n```\n\nSetting a valid `NOTIFY_TYPE` will result in a notification if either of the above conditions are met.\n\nIf `NOTIFY_TYPE` is set to `http` then notifications will be POSTed to `NOTIFY_HTTP_URL` with the following payload:\n\n```json\n{\n \"title\": \"Watchtower\",\n \"text\": \"Sample notification message\"\n}\n```\n\n## Options\n\n| Name | Default | Description |\n| ----------------------- | --------------------- | ------------------------------------------------------------------------------------------------------------------------ |\n| WATCH_ALL | `true` | Watch all running containers |\n| AUTO_UPDATE | `false` | When an update is detected, Watchtower will pull the newest image and recreate the container with the same configuration |\n| AUTO_UPDATE_WATCHTOWER | `true` | Creates a helper container to aid in updating the Watchtower container |\n| UPDATE_ON_START | `false` | Automatically pull new images and recreate all containers when Watchtower starts |\n| TIMER | `30` | Time in minutes before rechecking containers. If set to `0`, Watchtower will only run once |\n| DB_MEMORY | `true` | Whether to store the database in memory or on disk |\n| PRUNE_IMAGES | `false` | Remove all unused images |\n| PRUNE_VOLUMES | `false` | Remove all unused local volumes |\n| TZ | `UTC` | Timezone used in logs |\n| TIME_FORMAT | `MM/DD/YYYY hh:mm:ss` | Format of time used in logging and notifications |\n| TELEMETRY | `true` | Pass telemetry data to help improve Watchtower |\n| EXTRA_IMAGES | | Comma separated list of Docker Hub images to watch (`cdr/code-server, esphome/esphome:dev`) |\n| NOTIFY_TYPE | | Type of notification: `http`, `email` |\n| NOTIFY_SUBJECT | `Watchtower` | Subject value passed in notification |\n| NOTIFY_HTTP_URL | | URL POST request is sent to for notifications |\n| NOTIFY_EMAIL_HOST | | SMTP server to send emails |\n| NOTIFY_EMAIL_PORT | `587` | Port used to connect to the SMTP server |\n| NOTIFY_EMAIL_IGNORE_TLS | `false` | Ignore TLS with the SMTP server |\n| NOTIFY_EMAIL_USERNAME | | Username to authenticate with the SMTP server |\n| NOTIFY_EMAIL_PASSWORD | | Password to authenticate with the SMTP server |\n| NOTIFY_EMAIL_FROM_NAME | `Notify` | Sender name for the email notifications |\n| NOTIFY_EMAIL_TO | | Email address to which notifications will be sent |\n\n## Option Usage\n\nOptions are passed to Watchtower with environment variables or by using a `.env` file in the root directory of your project.\n\n**Node.js**\n\n```js\nconst watchtower = require('@jakowenko/watchtower');\n\nwatchtower.run({\n TZ: 'America/Detroit',\n PRUNE_IMAGES: true,\n PRUNE_VOLUMES: true,\n});\n```\n\n**Docker**\n\n```shell\ndocker run -d \\\n --name=watchtower \\\n -e TZ=America/Detroit \\\n -e PRUNE_IMAGES=true \\\n -e PRUNE_VOLUMES=true \\\n -v /var/run/docker.sock:/var/run/docker.sock:ro \\\n jakowenko/watchtower\n```\n\n```yaml\nversion: '3.7'\n\nservices:\n watchtower:\n container_name: watchtower\n image: jakowenko/watchtower\n restart: unless-stopped\n environment:\n TZ: America/Detroit\n PRUNE_IMAGES: 'true'\n PRUNE_VOLUMES: 'true'\n volumes:\n - /var/run/docker.sock:/var/run/docker.sock:ro\n```\n\n## Labels\n\nLabels can used to:\n\n- Include or exclude specific containers from being watched\n- Automatically pull the newest image and recreate the container when Watchtower starts\n\n**Enable**\n\n```yaml\nversion: '3.7'\n\nservices:\n example:\n image: example/example-watch\n labels:\n - 'watchtower.enable=true'\n```\n\n**Disable**\n\n```yaml\nversion: '3.7'\n\nservices:\n example:\n image: example/example-dont-watch\n labels:\n - 'watchtower.enable=false'\n```\n\n**Update on Start**\n\n```yaml\nversion: '3.7'\n\nservices:\n example:\n image: example/example-watch\n labels:\n - 'watchtower.update-on-start=true'\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjakowenko%2Fwatchtower","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjakowenko%2Fwatchtower","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjakowenko%2Fwatchtower/lists"}