{"id":15046151,"url":"https://github.com/jrcichra/karmen","last_synced_at":"2026-03-10T07:03:58.952Z","repository":{"id":38329226,"uuid":"244261433","full_name":"jrcichra/karmen","owner":"jrcichra","description":"Message Broker for coordinated microservices","archived":false,"fork":false,"pushed_at":"2025-12-01T23:51:47.000Z","size":763,"stargazers_count":3,"open_issues_count":1,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-12-03T21:15:39.026Z","etag":null,"topics":["golang","hacktoberfest","karmen","microservices","operator","pubsub","yml"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jrcichra.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2020-03-02T02:23:49.000Z","updated_at":"2025-12-01T23:51:31.000Z","dependencies_parsed_at":"2023-12-13T23:29:43.228Z","dependency_job_id":"5fe76cf7-55f3-42d9-8c8d-c6a9eac0aa70","html_url":"https://github.com/jrcichra/karmen","commit_stats":{"total_commits":644,"total_committers":2,"mean_commits":322.0,"dds":"0.32608695652173914","last_synced_commit":"8c5d439167ae80a3b516777049ce5232d63d3a3a"},"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/jrcichra/karmen","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jrcichra%2Fkarmen","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jrcichra%2Fkarmen/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jrcichra%2Fkarmen/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jrcichra%2Fkarmen/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jrcichra","download_url":"https://codeload.github.com/jrcichra/karmen/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jrcichra%2Fkarmen/sbom","scorecard":{"id":536565,"data":{"date":"2025-08-11","repo":{"name":"github.com/jrcichra/karmen","commit":"85502da2dc668e5ba8960c1b28b840fbc053e441"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.1,"checks":[{"name":"Maintained","score":10,"reason":"15 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 0/1 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/karmen.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/karmen.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/karmen.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/karmen.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/karmen.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/karmen.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/karmen.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/karmen.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/jrcichra/karmen/karmen.yml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1","Warn: containerImage not pinned by hash: Dockerfile:5: pin your Docker image by updating gcr.io/distroless/static-debian11 to gcr.io/distroless/static-debian11@sha256:1dbe426d60caed5d19597532a2d74c8056cd7b1674042b88f7328690b5ead8ed","Info:   0 out of   7 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   4 third-party GitHubAction dependencies pinned","Info:   0 out of   2 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/karmen.yml:10"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":7,"reason":"SAST tool detected but not run on all commits","details":["Info: SAST configuration detected: CodeQL","Warn: 0 commits out of 29 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-20T07:08:58.877Z","repository_id":38329226,"created_at":"2025-08-20T07:08:58.878Z","updated_at":"2025-08-20T07:08:58.878Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30326893,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-10T05:25:20.737Z","status":"ssl_error","status_checked_at":"2026-03-10T05:25:17.430Z","response_time":106,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["golang","hacktoberfest","karmen","microservices","operator","pubsub","yml"],"created_at":"2024-09-24T20:52:46.625Z","updated_at":"2026-03-10T07:03:58.914Z","avatar_url":"https://github.com/jrcichra.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\u003cimg alt=\"kind\" src=\"https://raw.githubusercontent.com/jrcichra/karmen/master/karmen.png\" width=\"300x\" /\u003e\u003c/p\u003e\n\n# Karmen ![Actions Status](https://github.com/jrcichra/karmen/workflows/Karmen/badge.svg) [![Docker Hub](https://img.shields.io/badge/docker-hub-blue.svg)](https://hub.docker.com/r/jrcichra/) [![Go Report Card](https://goreportcard.com/badge/github.com/jrcichra/karmen)](https://goreportcard.com/report/github.com/jrcichra/karmen)\n\nCentralized Pub/Sub for microservices\n\n\n# 2.0 release\n+ I rewrote Karmen from the ground up in July 2021. It is incompatible with version 1.0.\n## Enhancements\n+ Karmen now runs off of gRPC, which cuts down lots of nasty bugs\n+ `if:` as a key under an action is now a reserved word for conditional expressions\n+ `parallel` and `serial` blocks should perform how you expect...each block is done serially\n+ Context variables - actions can return parameters that are injected into a block-level state. These can be referenced in conditionals with `{hostname-action-variablename}`\n    + I'll be converting the dashes to dots once I add that feature to the condition parser I used\n    + For each action, the `{hostname-action-pass}` boolean is set automatically so you can conditionally run actions based on the result of previous actions without managing a parameter. Code 200 is defined as a `pass`\n+ Action error handling is improved, currently returning HTTP-like codes. I may downgrade this to a boolean\n\n## Get Started\n### Using Karmen (Server):\n1. See [Docker Hub](https://github.com/jrcichra/karmen/releases) for releases\n2. See [an example config](./example.yml) to start declaring your workflow\n3. Run Karmen as part of your docker-compose.yml. see my [ example docker-compose.yml](./example_docker-compose.yml)\n### Clients with examples:\n+ [Python](./pythonclient) - example in `karmen.py` when executed as script\n+ [Golang](./goclient)     - example in `main.go`\n+ [Rust](./rustclient)     - example in `example/src/main.rs` [Crates.io](https://crates.io/crates/karmen)\n+ Or write your own! Karmen runs on gRPC. See existing implementations for reference\n### Powered by\n+ [gRPC](https://grpc.io/)\n+ [Golang](https://golang.org/)\n+ [Docker](https://www.docker.com/)\n### Projects using Karmen\n1. https://github.com/jrcichra/smartcar\n\n### Similar projects\n1. https://netflix.github.io/conductor/\n\n### More docs to come!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjrcichra%2Fkarmen","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjrcichra%2Fkarmen","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjrcichra%2Fkarmen/lists"}