{"id":15036110,"url":"https://github.com/juce-framework/juce","last_synced_at":"2025-12-17T18:04:16.029Z","repository":{"id":2878732,"uuid":"3884981","full_name":"juce-framework/JUCE","owner":"juce-framework","description":"JUCE is an open-source cross-platform C++ application framework for desktop and mobile applications, including VST, VST3, AU, AUv3, LV2 and AAX audio plug-ins.","archived":false,"fork":false,"pushed_at":"2025-11-27T18:30:03.000Z","size":276461,"stargazers_count":7774,"open_issues_count":435,"forks_count":1931,"subscribers_count":267,"default_branch":"master","last_synced_at":"2025-11-30T10:17:15.766Z","etag":null,"topics":["aax","au","audio","audiounit","auv3","c-plus-plus","cpp","framework","juce","plugin","vst","vst3"],"latest_commit_sha":null,"homepage":"https://juce.com","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/juce-framework.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGE_LIST.md","contributing":".github/contributing.md","funding":null,"license":"LICENSE.md","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2012-03-31T11:19:43.000Z","updated_at":"2025-11-29T22:29:52.000Z","dependencies_parsed_at":"2024-01-17T18:20:45.697Z","dependency_job_id":"dba5a441-f952-46a7-b822-4e59cf281566","html_url":"https://github.com/juce-framework/JUCE","commit_stats":{"total_commits":13431,"total_committers":56,"mean_commits":"239.83928571428572","dds":0.672250763159854,"last_synced_commit":"69795dc8e589a9eb5df251b6dd994859bf7b3fab"},"previous_names":["julianstorer/juce","weareroli/juce"],"tags_count":106,"template":false,"template_full_name":null,"purl":"pkg:github/juce-framework/JUCE","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/juce-framework%2FJUCE","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/juce-framework%2FJUCE/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/juce-framework%2FJUCE/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/juce-framework%2FJUCE/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/juce-framework","download_url":"https://codeload.github.com/juce-framework/JUCE/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/juce-framework%2FJUCE/sbom","scorecard":{"id":390051,"data":{"date":"2025-08-11","repo":{"name":"github.com/juce-framework/JUCE","commit":"d6181bde38d858c283c3b7bf699ce6340c050b5d"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.9,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Maintained","score":10,"reason":"29 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/check-cla.yml:1","Warn: no topLevel permission defined: .github/workflows/juce_private_build.yml:1","Warn: no topLevel permission defined: .github/workflows/juce_private_github_publish.yml:1","Warn: no topLevel permission defined: .github/workflows/juce_private_nightly_trigger.yml:1","Warn: no topLevel permission defined: .github/workflows/juce_private_push_trigger.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE.md:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":3,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'master'","Info: 'force pushes' disabled on branch 'master'","Info: 'branch protection settings apply to administrators' is required to merge on branch 'master'","Warn: branch 'master' does not require approvers","Warn: codeowners review is not required on branch 'master'","Warn: no status checks found to merge onto branch 'master'","Warn: PRs are not required to make changes on branch 'master'; or we don't have data to detect it.If you think it might be the latter, make sure to run Scorecard with a PAT or use Repo Rules (that are always public) instead of Branch Protection settings"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 8.0.8 not signed: https://api.github.com/repos/juce-framework/JUCE/releases/222386756","Warn: release artifact 8.0.7 not signed: https://api.github.com/repos/juce-framework/JUCE/releases/210983263","Warn: release artifact 8.0.6 not signed: https://api.github.com/repos/juce-framework/JUCE/releases/194081179","Warn: release artifact 8.0.5 not signed: https://api.github.com/repos/juce-framework/JUCE/releases/193724533","Warn: release artifact 8.0.4 not signed: https://api.github.com/repos/juce-framework/JUCE/releases/185937143","Warn: release artifact 8.0.8 does not have provenance: https://api.github.com/repos/juce-framework/JUCE/releases/222386756","Warn: release artifact 8.0.7 does not have provenance: https://api.github.com/repos/juce-framework/JUCE/releases/210983263","Warn: release artifact 8.0.6 does not have provenance: https://api.github.com/repos/juce-framework/JUCE/releases/194081179","Warn: release artifact 8.0.5 does not have provenance: https://api.github.com/repos/juce-framework/JUCE/releases/193724533","Warn: release artifact 8.0.4 does not have provenance: https://api.github.com/repos/juce-framework/JUCE/releases/185937143"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Binary-Artifacts","score":5,"reason":"binaries present in source code","details":["Warn: binary detected: examples/DemoRunner/Builds/Android/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: extras/AudioPerformanceTest/Builds/Android/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: extras/AudioPluginHost/Builds/Android/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: extras/NetworkGraphicsDemo/Builds/Android/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: extras/Projucer/Source/BinaryData/gradle/gradle-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_build.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/juce_private_github_publish.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_github_publish.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/juce_private_nightly_trigger.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_nightly_trigger.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/juce_private_push_trigger.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/juce-framework/JUCE/juce_private_push_trigger.yml/master?enable=pin","Info:   0 out of   2 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   7 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"36 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-hpx4-r86g-5jrg","Warn: Project is vulnerable to: GHSA-prr3-c3m5-p7q2","Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-ghr5-ch3p-vcr6","Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc","Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx","Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc","Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-c7qv-q95q-8v27","Warn: Project is vulnerable to: GHSA-4www-5p9h-95mh","Warn: Project is vulnerable to: GHSA-9gqv-wp59-fq42","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55","Warn: Project is vulnerable to: GHSA-rp65-9cf3-cjxr","Warn: Project is vulnerable to: GHSA-76c9-3jph-rj3q","Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j","Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w","Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j","Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg","Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5","Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p","Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986","Warn: Project is vulnerable to: GHSA-wr3j-pwj9-hqq6","Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v","Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h","Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7","Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-18T17:35:33.664Z","repository_id":2878732,"created_at":"2025-08-18T17:35:33.664Z","updated_at":"2025-08-18T17:35:33.664Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":27785324,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-12-17T02:00:08.291Z","response_time":55,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aax","au","audio","audiounit","auv3","c-plus-plus","cpp","framework","juce","plugin","vst","vst3"],"created_at":"2024-09-24T20:30:10.297Z","updated_at":"2025-12-17T18:04:11.744Z","avatar_url":"https://github.com/juce-framework.png","language":"C++","readme":"![alt text](https://assets.juce.com/juce/JUCE_banner_github.png \"JUCE\")\n\nJUCE is an open-source cross-platform C++ application framework for creating\ndesktop and mobile applications, including VST, VST3, AU, AUv3, AAX and LV2\naudio plug-ins and plug-in hosts. JUCE can be easily integrated with existing\nprojects via CMake, or can be used as a project generation tool via the\n[Projucer](#the-projucer), which supports exporting projects for Xcode (macOS\nand iOS), Visual Studio, Android Studio, and Linux Makefiles as well as\ncontaining a source code editor.\n\n## Getting Started\n\nThe JUCE repository contains a\n[master](https://github.com/juce-framework/JUCE/tree/master) and\n[develop](https://github.com/juce-framework/JUCE/tree/develop) branch. The\ndevelop branch contains the latest bug fixes and features and is periodically\nmerged into the master branch in stable [tagged\nreleases](https://github.com/juce-framework/JUCE/releases) (the latest release\ncontaining pre-built binaries can be also downloaded from the [JUCE\nwebsite](https://juce.com/get-juce)).\n\nJUCE projects can be managed with either the Projucer (JUCE's own\nproject-configuration tool) or with CMake.\n\n### The Projucer\n\nThe repository doesn't contain a pre-built Projucer so you will need to build it\nfor your platform - Xcode, Visual Studio and Linux Makefile projects are located\nin [extras/Projucer/Builds](/extras/Projucer/Builds) (the minimum system\nrequirements are listed in the [minimum system\nrequirements](#minimum-system-requirements) section below). The Projucer can\nthen be used to create new JUCE projects, view tutorials and run examples. It is\nalso possible to include the JUCE modules source code in an existing project\ndirectly, or build them into a static or dynamic library which can be linked\ninto a project.\n\nFor further help getting started, please refer to the JUCE\n[documentation](https://juce.com/learn/documentation) and\n[tutorials](https://juce.com/learn/tutorials).\n\n### CMake\n\nVersion 3.22 or higher is required. To use CMake, you will need to install it,\neither from your system package manager or from the [official download\npage](https://cmake.org/download/). For comprehensive documentation on JUCE's\nCMake API, see the [JUCE CMake documentation](/docs/CMake%20API.md). For\nexamples which may be useful as starting points for new CMake projects, see the\n[CMake examples directory](/examples/CMake).\n\n#### Building Examples\n\nTo use CMake to build the examples and extras bundled with JUCE, simply clone\nJUCE and then run the following commands, replacing \"DemoRunner\" with the name\nof the target you wish to build.\n\n    cd /path/to/JUCE\n    cmake . -B cmake-build -DJUCE_BUILD_EXAMPLES=ON -DJUCE_BUILD_EXTRAS=ON\n    cmake --build cmake-build --target DemoRunner\n\n## Minimum System Requirements\n\n#### Building JUCE Projects\n\n- __C++ Standard__: 17\n- __macOS/iOS__: Xcode 12.4 (Intel macOS 10.15.4, Apple Silicon macOS 11.0)\n- __Windows__: Visual Studio 2019 (Windows 10)\n- __Linux__: g++ 7.0 or Clang 6.0 (for a full list of dependencies, see\n[here](/docs/Linux%20Dependencies.md)).\n- __Android__: Android Studio (NDK 26) on Windows, macOS or Linux\n\n#### Deployment Targets\n\n- __macOS__: macOS 10.11 (x86_64, Arm64)\n- __Windows__: Windows 10 (x86_64, x86, Arm64, Arm64EC)\n- __Linux__: Mainstream Linux distributions (x86_64, Arm64/aarch64, (32 bit Arm systems like armv7 should work but are not regularly tested))\n- __iOS__: iOS 12 (Arm64, Arm64e, x86_64 (Simulator))\n- __Android__: Android 7 - Nougat (API Level 24) (arm64-v8a, armeabi-v7a, x86_64, x86)\n\n## Contributing\n\nPlease see our [contribution guidelines](.github/contributing.md).\n\n## Licensing\n\nSee [LICENSE.md](LICENSE.md) for licensing and dependency information.\n\n## AAX Plug-Ins\n\nAAX plug-ins need to be digitally signed using PACE Anti-Piracy's signing tools\nbefore they will run in commercially available versions of Pro Tools. These\ntools are provided free of charge by Avid. Before obtaining the signing tools,\nyou will need to use a special build of Pro Tools, called Pro Tools Developer,\nto test your unsigned plug-ins. The steps to obtain Pro Tools Developer are:\n\n1. Sign up as an AAX Developer [here](https://developer.avid.com/aax/).\n2. Request a Pro Tools Developer Bundle activation code by sending an email to\n   [devauth@avid.com](mailto:devauth@avid.com).\n3. Download the latest Pro Tools Developer build from your Avid Developer\n   account.\n\nWhen your plug-ins have been tested and debugged in Pro Tools Developer, and you\nare ready to digitally sign them, please send an email to\n[audiosdk@avid.com](mailto:audiosdk@avid.com) with the subject \"PACE Eden\nSigning Tools Request\". You need to include an overview of each plug-in along\nwith a screen recording showing the plug-in running in Pro Tools Developer, with\naudio if possible.\n\nPlease also include the following information:\n\n- Company name\n- Admin full name\n- Telephone number\n\nOnce the request is submitted, PACE Anti-Piracy will contact you directly with\ninformation about signing your plug-ins. When the plug-ins have been signed, you\nare free to sell and distribute them. If you are interested in selling your\nplug-ins on the Avid Marketplace, please send an email to\n[audiosdk@avid.com](mailto:audiosdk@avid.com).\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjuce-framework%2Fjuce","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjuce-framework%2Fjuce","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjuce-framework%2Fjuce/lists"}