{"id":13401386,"url":"https://github.com/lxc/incus","last_synced_at":"2026-01-23T21:33:58.367Z","repository":{"id":185167464,"uuid":"669486760","full_name":"lxc/incus","owner":"lxc","description":"Powerful system container and virtual machine manager ","archived":false,"fork":false,"pushed_at":"2026-01-12T18:38:36.000Z","size":151370,"stargazers_count":4683,"open_issues_count":58,"forks_count":395,"subscribers_count":51,"default_branch":"main","last_synced_at":"2026-01-13T04:07:40.165Z","etag":null,"topics":["cloud","containers","hacktoberfest","virtual-machines"],"latest_commit_sha":null,"homepage":"https://linuxcontainers.org/incus","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/lxc.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"COPYING","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":".github/SUPPORT.md","governance":null,"roadmap":null,"authors":"AUTHORS","dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"github":["stgraber"]}},"created_at":"2023-07-22T12:43:13.000Z","updated_at":"2026-01-13T03:02:20.000Z","dependencies_parsed_at":"2026-01-13T04:08:37.553Z","dependency_job_id":null,"html_url":"https://github.com/lxc/incus","commit_stats":{"total_commits":26734,"total_committers":443,"mean_commits":"60.347629796839726","dds":0.6675020573053041,"last_synced_commit":"8a556f9d28f452aefd8f399892616eeef0f45053"},"previous_names":["cyphar/incus","lxc/incus","lxc/lxd"],"tags_count":37,"template":false,"template_full_name":null,"purl":"pkg:github/lxc/incus","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxc%2Fincus","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxc%2Fincus/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxc%2Fincus/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxc%2Fincus/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lxc","download_url":"https://codeload.github.com/lxc/incus/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxc%2Fincus/sbom","scorecard":{"id":606718,"data":{"date":"2025-08-11","repo":{"name":"github.com/lxc/incus","commit":"ee838f30e548bcc1280c66cfe3da0e7593e34a39"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":7.6,"checks":[{"name":"Code-Review","score":9,"reason":"Found 10/11 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Security-Policy","score":9,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":10,"reason":"GitHub workflow tokens follow principle of least privilege","details":["Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/commits.yml:11","Info: found token with 'none' permissions: .github/workflows/commits.yml:28","Info: jobLevel 'contents' permission set to 'read': .github/workflows/triage.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/commits.yml:6","Info: topLevel 'contents' permission set to 'read': .github/workflows/tests.yml:10","Info: topLevel 'contents' permission set to 'read': .github/workflows/triage.yml:6","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: COPYING:0","Info: FSF or OSI recognized license: Apache License 2.0: COPYING:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":8,"reason":"5 out of the last 5 releases have a total of 5 signed artifacts.","details":["Info: signed release artifact: incus-6.15.tar.xz.asc: https://github.com/lxc/incus/releases/tag/v6.15.0","Info: signed release artifact: incus-6.14.tar.xz.asc: https://github.com/lxc/incus/releases/tag/v6.14.0","Info: signed release artifact: incus-6.13.tar.xz.asc: https://github.com/lxc/incus/releases/tag/v6.13.0","Info: signed release artifact: incus-6.12.tar.xz.asc: https://github.com/lxc/incus/releases/tag/v6.12.0","Info: signed release artifact: incus-6.0.4.tar.xz.asc: https://github.com/lxc/incus/releases/tag/v6.0.4","Warn: release artifact v6.15.0 does not have provenance: https://api.github.com/repos/lxc/incus/releases/236755091","Warn: release artifact v6.14.0 does not have provenance: https://api.github.com/repos/lxc/incus/releases/228467565","Warn: release artifact v6.13.0 does not have provenance: https://api.github.com/repos/lxc/incus/releases/221989066","Warn: release artifact v6.12.0 does not have provenance: https://api.github.com/repos/lxc/incus/releases/214656894","Warn: release artifact v6.0.4 does not have provenance: https://api.github.com/repos/lxc/incus/releases/210386177"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":10,"reason":"SAST tool is run on all commits","details":["Info: all commits (30) are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: third-party GitHubAction not pinned by hash: .github/workflows/commits.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/commits.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/commits.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/commits.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:478: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:481: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:552: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:563: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:566: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:584: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:601: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:232: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:235: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:241: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/triage.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/lxc/incus/triage.yml/main?enable=pin","Warn: containerImage not pinned by hash: .devcontainer/Dockerfile:5","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: downloadThenRun not pinned by hash: .devcontainer/Dockerfile:93-100","Warn: goCommand not pinned by hash: .github/workflows/tests.yml:68","Warn: goCommand not pinned by hash: .github/workflows/tests.yml:248","Info:   0 out of  15 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   4 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   9 goCommand dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":5,"reason":"5 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2024-4 / GHSA-2mqj-m65w-jghx","Warn: Project is vulnerable to: PYSEC-2023-165 / GHSA-cwvm-v4w8-q58c","Warn: Project is vulnerable to: PYSEC-2022-42992 / GHSA-hcpj-qp55-gfph","Warn: Project is vulnerable to: PYSEC-2023-137 / GHSA-pr76-5cm5-w9cj","Warn: Project is vulnerable to: PYSEC-2023-161 / GHSA-wfm5-v35h-vwf4"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-21T01:46:33.017Z","repository_id":185167464,"created_at":"2025-08-21T01:46:33.017Z","updated_at":"2025-08-21T01:46:33.017Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28472626,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-15T22:13:38.078Z","status":"ssl_error","status_checked_at":"2026-01-15T22:12:11.737Z","response_time":62,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cloud","containers","hacktoberfest","virtual-machines"],"created_at":"2024-07-30T19:01:02.156Z","updated_at":"2026-01-15T22:19:23.882Z","avatar_url":"https://github.com/lxc.png","language":"Go","readme":"# Incus\n\nIncus is a modern, secure and powerful system container and virtual machine manager.\n\n\u003c!-- Include start Incus intro --\u003e\n\nIt provides a unified experience for running and managing full Linux systems inside containers or virtual machines. Incus supports images for a large number of Linux distributions (official Ubuntu images and images provided by the community) and is built around a very powerful, yet pretty simple, REST API. Incus scales from one instance on a single machine to a cluster in a full data center rack, making it suitable for running workloads both for development and in production.\n\nIncus allows you to easily set up a system that feels like a small private cloud. You can run any type of workload in an efficient way while keeping your resources optimized.\n\nYou should consider using Incus if you want to containerize different environments or run virtual machines, or in general run and manage your infrastructure in a cost-effective way.\n\nYou can try Incus online at: [`https://linuxcontainers.org/incus/try-it/`](https://linuxcontainers.org/incus/try-it/)\n\n\u003c!-- Include end Incus intro --\u003e\n\n## Project history\nIncus, which is named after the [Cumulonimbus incus](https://en.wikipedia.org/wiki/Cumulonimbus_incus) or anvil cloud\nstarted as a community fork of Canonical's LXD following [Canonical's takeover](https://linuxcontainers.org/lxd/) of the LXD project from the\nLinux Containers community.\n\nThe project was then adopted by the Linux Containers community, taking back the spot left empty by LXD's departure.\n\nIncus is a true open source community project, free of any [CLA](https://en.wikipedia.org/wiki/Contributor_License_Agreement) and\nremains released under the [Apache 2.0 license](https://www.apache.org/licenses/LICENSE-2.0).\nIt's maintained by the same team of developers that first created LXD.\n\nLXD users wishing to migrate to Incus can easily do so through a migration tool called [`lxd-to-incus`](https://linuxcontainers.org/incus/docs/main/howto/server_migrate_lxd/).\n\n## Get started\n\nSee [Getting started](https://linuxcontainers.org/incus/docs/main/tutorial/first_steps/) in the Incus documentation for installation instructions and first steps.\n\n- Release announcements: [`https://discuss.linuxcontainers.org/c/news/`](https://discuss.linuxcontainers.org/c/news/)\n- Release tarballs: [`https://github.com/lxc/incus/releases/`](https://github.com/lxc/incus/releases/)\n- Documentation: [`https://linuxcontainers.org/incus/docs/main/`](https://linuxcontainers.org/incus/docs/main/)\n\n## Status\n\nType                | Service               | Status\n---                 | ---                   | ---\nTests               | GitHub                | [![Build Status](https://github.com/lxc/incus/actions/workflows/tests.yml/badge.svg?branch=main)](https://github.com/lxc/incus/actions?query=event%3Apush+branch%3Amain)\nGo documentation    | Godoc                 | [![GoDoc](https://godoc.org/github.com/lxc/incus/v6/client?status.svg)](https://godoc.org/github.com/lxc/incus/v6/client)\nStatic analysis     | GoReport              | [![Go Report Card](https://goreportcard.com/badge/github.com/lxc/incus)](https://goreportcard.com/report/github.com/lxc/incus)\nTranslations        | Weblate               | [![Translation status](https://hosted.weblate.org/widget/incus/svg-badge.svg)](https://hosted.weblate.org/projects/incus/)\n\n## Security\n\n\u003c!-- Include start security --\u003e\n\nConsider the following aspects to ensure that your Incus installation is secure:\n\n- Keep your operating system up-to-date and install all available security patches.\n- Use only supported Incus versions.\n- Restrict access to the Incus daemon and the remote API.\n- Do not use privileged containers unless required. If you use privileged containers, put appropriate security measures in place. See the [LXC security page](https://linuxcontainers.org/lxc/security/) for more information.\n- Configure your network interfaces to be secure.\n\u003c!-- Include end security --\u003e\n\nSee [Security](https://github.com/lxc/incus/blob/main/doc/explanation/security.md) for detailed information.\n\n**IMPORTANT:**\n\u003c!-- Include start security note --\u003e\nLocal access to Incus through the Unix socket always grants full access to Incus.\nThis includes the ability to attach file system paths or devices to any instance as well as tweak the security features on any instance.\n\nTherefore, you should only give such access to users who you'd trust with root access to your system.\n\u003c!-- Include end security note --\u003e\n\u003c!-- Include start support --\u003e\n\n## Support and community\n\nThe following channels are available for you to interact with the Incus community.\n\n### Bug reports\n\nYou can file bug reports and feature requests at: [`https://github.com/lxc/incus/issues/new`](https://github.com/lxc/incus/issues/new)\n\n### Community support\n\nCommunity support is handled at: [`https://discuss.linuxcontainers.org`](https://discuss.linuxcontainers.org)\n\n### Commercial support\n\nCommercial support is currently available from [Zabbly](https://zabbly.com) for users of their [Debian or Ubuntu packages](https://github.com/zabbly/incus).\n\n## Documentation\n\nThe official documentation is available at: [`https://github.com/lxc/incus/tree/main/doc`](https://github.com/lxc/incus/tree/main/doc)\n\n\u003c!-- Include end support --\u003e\n\n## Contributing\n\nFixes and new features are greatly appreciated. Make sure to read our [contributing guidelines](CONTRIBUTING.md) first!\n","funding_links":["https://github.com/sponsors/stgraber"],"categories":["Official projects","Go","hacktoberfest","cloud","Container Management"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flxc%2Fincus","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flxc%2Fincus","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flxc%2Fincus/lists"}