{"id":19002299,"url":"https://github.com/linkerd/linkerd2-ci-metrics","last_synced_at":"2026-06-28T07:31:49.278Z","repository":{"id":57529489,"uuid":"259971158","full_name":"linkerd/linkerd2-ci-metrics","owner":"linkerd","description":"CI reports","archived":false,"fork":false,"pushed_at":"2021-04-29T13:51:00.000Z","size":460,"stargazers_count":3,"open_issues_count":0,"forks_count":0,"subscribers_count":5,"default_branch":"master","last_synced_at":"2026-06-12T19:42:06.908Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/linkerd.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-04-29T15:53:21.000Z","updated_at":"2024-08-01T12:29:39.000Z","dependencies_parsed_at":"2022-08-26T03:33:00.102Z","dependency_job_id":null,"html_url":"https://github.com/linkerd/linkerd2-ci-metrics","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/linkerd/linkerd2-ci-metrics","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/linkerd%2Flinkerd2-ci-metrics","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/linkerd%2Flinkerd2-ci-metrics/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/linkerd%2Flinkerd2-ci-metrics/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/linkerd%2Flinkerd2-ci-metrics/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/linkerd","download_url":"https://codeload.github.com/linkerd/linkerd2-ci-metrics/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/linkerd%2Flinkerd2-ci-metrics/sbom","scorecard":{"id":591002,"data":{"date":"2025-08-11","repo":{"name":"github.com/linkerd/linkerd2-ci-metrics","commit":"16021fc746d1a18d287e96788143e455a6ac31ac"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.9,"checks":[{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/build-report.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":3,"reason":"Found 2/6 approved changesets -- score normalized to 3","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Pinned-Dependencies","score":10,"reason":"all dependencies are pinned","details":["Info:   2 out of   2 GitHub-owned GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":0,"reason":"license file not detected","details":["Warn: project does not have a license file"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 2 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":9,"reason":"1 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-20T21:53:05.387Z","repository_id":57529489,"created_at":"2025-08-20T21:53:05.387Z","updated_at":"2025-08-20T21:53:05.387Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34881384,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-28T02:00:05.809Z","response_time":54,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-08T18:14:34.304Z","updated_at":"2026-06-28T07:31:49.260Z","avatar_url":"https://github.com/linkerd.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# linkerd2-ci-metrics\n\nThis project generates a report for the CI builds at the [Linkerd2\nrepo](https://github.com/linkerd/linkerd2). \n\nEach day a cronjob (as defined in `.github/workflows/build-report.yml`) will\ntrigger the creation of the report, which is uploaded as an artifact to the\nworkflow, under the Actions tab.\n\nThe report is a zip file containing a single file `report.html` that is\nself-contained, i.e. it doesn't depend on fetching external js libraries or any\nother kind of asset.\n\n### Reports\n\n![top screenshot](https://github.com/linkerd/linkerd2-ci-metrics/blob/master/screenshots/top.png)\n![bottom screenshot](https://github.com/linkerd/linkerd2-ci-metrics/blob/master/screenshots/bottom.png)\n\nThe first pane shows the global success of all the CI runs in the repo,\naggregating over all the workflow runs whose jobs weren't cancelled. Below\nthat rate is segregated per workflow.\n\nThe second plane shows the success rates per job, from less to more successful.\n\nThe bottom panes show the list of error messages captured through Github\nannotations from more to less frequent. These are shown just for the workflows\nthat run integration tests: Kind integration, Cloud integration and Release.\n\n### API Requests\n\nThe program makes use of Google's\n[go-github](https://github.com/google/go-github) library, to hit the following\nGithub APIs:\n\n```\n# This gives us a list of check suite IDs, for a given workflow name:\nGET /repos/linkerd/linkerd2/actions/workflows/:workflow_name/runs\n\n# For each check suite ID, this gives us the check run ID, job name,\n# completion status and timestamps:\nGET /repos/linkerd/linkerd2/check-suites/:check_suite_id/check-runs\n\n# For each check run ID, we invoke the annotations API which gives us the file\n# name and error message\nGET repos/linkerd/linkerd2/check-runs/:check_run_id/annotations\n```\n\nPlease note the report takes about an hour to generate, due to having imposed\nthrottling on the Github API requests to avoid hitting the rate limit.\n\n### Authentication\n\nThe Github API requests are authenticated using the `REPORTS_TOKEN` secret, containing\na Personal Access Token belonging to l5d-bot.\n\n### Testing\n\n`go test ./cmd` will test that the html report is generated without errors, using\nas inputs the list of jobs and annotations found under `./cmd/testdata/jobs.json`\nand `cmd/testdata/annotations.json`.\n\nYou can view the sample report generated with that data with `go test ./cmd -v`\n\nThose sample files under `./cmd/testdata` can be updated with real data by\nsetting the `REFRESH_DATA` environment variable prior to running, e.g.:\n\n```\nREFRESH_DATA=1 GITHUB_TOKEN=xxx go run ./cmd \u003e report.html\n```\n\n## License\n\nCopyright 2020, Linkerd Authors. All rights reserved.\n\nLicensed under the Apache License, Version 2.0 (the \"License\"); you may not use\nthese files except in compliance with the License. You may obtain a copy of the\nLicense at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software distributed\nunder the License is distributed on an \"AS IS\" BASIS, WITHOUT WARRANTIES OR\nCONDITIONS OF ANY KIND, either express or implied. See the License for the\nspecific language governing permissions and limitations under the License.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flinkerd%2Flinkerd2-ci-metrics","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flinkerd%2Flinkerd2-ci-metrics","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flinkerd%2Flinkerd2-ci-metrics/lists"}