{"id":13455881,"url":"https://github.com/odigos-io/odigos","last_synced_at":"2026-04-06T12:01:52.816Z","repository":{"id":43033331,"uuid":"501095512","full_name":"odigos-io/odigos","owner":"odigos-io","description":"Distributed tracing without code changes. 🚀 Instantly monitor any application using OpenTelemetry and eBPF","archived":false,"fork":false,"pushed_at":"2026-04-03T00:41:22.000Z","size":124559,"stargazers_count":3645,"open_issues_count":74,"forks_count":244,"subscribers_count":30,"default_branch":"main","last_synced_at":"2026-04-03T04:52:41.859Z","etag":null,"topics":["dotnet","ebpf","go","java","javascript","kubernetes","logs","metrics","monitoring","nodejs","observability","opentelemetry","otel","python","traces"],"latest_commit_sha":null,"homepage":"https://odigos.io","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/odigos-io.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":".github/CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2022-06-08T04:09:44.000Z","updated_at":"2026-04-02T17:52:08.000Z","dependencies_parsed_at":"2026-01-05T08:13:48.997Z","dependency_job_id":null,"html_url":"https://github.com/odigos-io/odigos","commit_stats":{"total_commits":1150,"total_committers":63,"mean_commits":"18.253968253968253","dds":0.7747826086956522,"last_synced_commit":"86f3e418a123e2cc0906a3045dd017c5aa308707"},"previous_names":["odigos-io/odigos","keyval-dev/odigos"],"tags_count":4257,"template":false,"template_full_name":null,"purl":"pkg:github/odigos-io/odigos","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/odigos-io%2Fodigos","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/odigos-io%2Fodigos/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/odigos-io%2Fodigos/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/odigos-io%2Fodigos/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/odigos-io","download_url":"https://codeload.github.com/odigos-io/odigos/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/odigos-io%2Fodigos/sbom","scorecard":{"id":279375,"data":{"date":"2025-08-11","repo":{"name":"github.com/odigos-io/odigos","commit":"54c5de324bc30496e6f1d26116e99b5c471ea6e9"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4,"checks":[{"name":"Maintained","score":10,"reason":"30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":9,"reason":"Found 29/30 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Dangerous-Workflow","score":0,"reason":"dangerous workflow patterns detected","details":["Warn: script injection with untrusted input ' github.event.head_commit.message ': .github/workflows/push-realease-candidate-tag.yml:24"],"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/publish-modules.yml:252","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/sync-logos-s3-bucket.yml:17","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-dev-images.yml:29","Warn: no topLevel permission defined: .github/workflows/build.yaml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/chaos-tests.yml:9","Warn: no topLevel permission defined: .github/workflows/check-links.yml:1","Warn: no topLevel permission defined: .github/workflows/check-operator-manifests.yml:1","Warn: no topLevel permission defined: .github/workflows/check-operator-rbac.yml:1","Warn: no topLevel permission defined: .github/workflows/close-stale.yml:1","Warn: no topLevel permission defined: .github/workflows/create-release-candidate.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/cross-cloud-tests.yaml:33","Warn: no topLevel permission defined: .github/workflows/e2e.yaml:1","Warn: no topLevel permission defined: .github/workflows/full-build.yaml:1","Warn: no topLevel permission defined: .github/workflows/generated-docs.yaml:1","Warn: no topLevel permission defined: .github/workflows/go-mod-tidy.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/golangci-lint.yml:6","Warn: no topLevel permission defined: .github/workflows/helm-lint.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/nightly.yml:11","Warn: topLevel 'contents' permission set to 'write': .github/workflows/openshift-preflight.yml:14","Warn: topLevel 'packages' permission set to 'write': .github/workflows/openshift-preflight.yml:15","Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-policy.yml:4","Info: topLevel 'pull-requests' permission set to 'read': .github/workflows/pr-policy.yml:5","Warn: topLevel 'statuses' permission set to 'write': .github/workflows/pr-policy.yml:6","Warn: no topLevel permission defined: .github/workflows/publish-modules.yml:1","Warn: topLevel 'packages' permission set to 'write': .github/workflows/publish-odiglet-base-builder.yaml:12","Warn: topLevel 'contents' permission set to 'write': .github/workflows/publish-odiglet-base-builder.yaml:11","Warn: topLevel 'contents' permission set to 'write': .github/workflows/push-realease-candidate-tag.yml:9","Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:14","Warn: topLevel 'packages' permission set to 'write': .github/workflows/release.yml:15","Warn: no topLevel permission defined: .github/workflows/sync-logos-s3-bucket.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/tag-patch.yaml:7","Warn: no topLevel permission defined: .github/workflows/trigger-odigos-enterprise.yaml:1","Warn: no topLevel permission defined: .github/workflows/update-otel-versions.yml:1","Warn: no topLevel permission defined: .github/workflows/verify-api-crds.yml:1","Warn: no topLevel permission defined: .github/workflows/verify-collector-ocb.yml:1","Warn: no topLevel permission defined: .github/workflows/verify-odiglet-base-builder.yaml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v1.0.219-rc2 not signed: https://api.github.com/repos/odigos-io/odigos/releases/240089043","Warn: release artifact v1.0.219-pre0 not signed: https://api.github.com/repos/odigos-io/odigos/releases/239422157","Warn: release artifact v1.0.218 not signed: https://api.github.com/repos/odigos-io/odigos/releases/238975104","Warn: release artifact v1.0.218-rc0 not signed: https://api.github.com/repos/odigos-io/odigos/releases/238488769","Warn: release artifact v1.0.217 not signed: https://api.github.com/repos/odigos-io/odigos/releases/238043179","Warn: release artifact v1.0.219-rc2 does not have provenance: https://api.github.com/repos/odigos-io/odigos/releases/240089043","Warn: release artifact v1.0.219-pre0 does not have provenance: https://api.github.com/repos/odigos-io/odigos/releases/239422157","Warn: release artifact v1.0.218 does not have provenance: https://api.github.com/repos/odigos-io/odigos/releases/238975104","Warn: release artifact v1.0.218-rc0 does not have provenance: https://api.github.com/repos/odigos-io/odigos/releases/238488769","Warn: release artifact v1.0.217 does not have provenance: https://api.github.com/repos/odigos-io/odigos/releases/238043179"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/build.yaml:30"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-dev-images.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build-dev-images.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-dev-images.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build-dev-images.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-dev-images.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build-dev-images.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-dev-images.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build-dev-images.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:192: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:194: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:198: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:156: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:158: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:206: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:207: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:230: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:231: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:131: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:133: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yaml:176: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:178: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yaml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-links.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-links.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-links.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-links.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/check-links.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-links.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-links.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-links.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-operator-manifests.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-operator-manifests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-operator-manifests.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-operator-manifests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-operator-manifests.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-operator-manifests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-operator-rbac.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-operator-rbac.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-operator-rbac.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/check-operator-rbac.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/close-stale.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/close-stale.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release-candidate.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/create-release-candidate.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cross-cloud-tests.yaml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/cross-cloud-tests.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yaml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yaml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yaml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yaml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yaml:175: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/e2e.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/full-build.yaml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/full-build.yaml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/full-build.yaml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/full-build.yaml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/full-build.yaml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/full-build.yaml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/full-build.yaml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/full-build.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/generated-docs.yaml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/generated-docs.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-mod-tidy.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/go-mod-tidy.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-mod-tidy.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/go-mod-tidy.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/golangci-lint.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/golangci-lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/golangci-lint.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/golangci-lint.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/golangci-lint.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/golangci-lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/helm-lint.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/helm-lint.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/helm-lint.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/helm-lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nightly.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nightly.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/openshift-preflight.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/openshift-preflight.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/openshift-preflight.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/openshift-preflight.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-policy.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/pr-policy.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:197: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:295: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:308: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:311: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:315: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:323: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:330: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:336: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:343: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:400: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:412: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-modules.yml:417: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-modules.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-odiglet-base-builder.yaml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-odiglet-base-builder.yaml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-odiglet-base-builder.yaml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-odiglet-base-builder.yaml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-odiglet-base-builder.yaml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/publish-odiglet-base-builder.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push-realease-candidate-tag.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/push-realease-candidate-tag.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:225: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sync-logos-s3-bucket.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/sync-logos-s3-bucket.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync-logos-s3-bucket.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/sync-logos-s3-bucket.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tag-patch.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/tag-patch.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-otel-versions.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/update-otel-versions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-otel-versions.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/update-otel-versions.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-api-crds.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-api-crds.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-api-crds.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-api-crds.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-collector-ocb.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-collector-ocb.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-collector-ocb.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-collector-ocb.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-odiglet-base-builder.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-odiglet-base-builder.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-odiglet-base-builder.yaml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-odiglet-base-builder.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-odiglet-base-builder.yaml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/odigos-io/odigos/verify-odiglet-base-builder.yaml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1","Warn: containerImage not pinned by hash: Dockerfile:31: pin your Docker image by updating gcr.io/distroless/static:nonroot to gcr.io/distroless/static:nonroot@sha256:cdf4daaf154e3e27cfffc799c16f343a384228f38646928a1513d925f473cb46","Warn: containerImage not pinned by hash: Dockerfile.rhel:1","Warn: containerImage not pinned by hash: Dockerfile.rhel:30: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: agents/Dockerfile:3","Warn: containerImage not pinned by hash: agents/Dockerfile:18","Warn: containerImage not pinned by hash: agents/Dockerfile:34","Warn: containerImage not pinned by hash: agents/Dockerfile:48","Warn: containerImage not pinned by hash: agents/Dockerfile:77","Warn: containerImage not pinned by hash: agents/Dockerfile:95","Warn: containerImage not pinned by hash: agents/Dockerfile:116","Warn: containerImage not pinned by hash: agents/Dockerfile:166: pin your Docker image by updating busybox:1.36.1 to busybox:1.36.1@sha256:303337d3d52898b33018796d760d3a01c2dcc87973dd66ec22fe78ae1e8429c9","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:3","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:18","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:34","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:48","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:77","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:95","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:116","Warn: containerImage not pinned by hash: agents/Dockerfile.rhel:160: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: collector/Dockerfile:1","Warn: containerImage not pinned by hash: collector/Dockerfile:10: pin your Docker image by updating gcr.io/distroless/base:latest to gcr.io/distroless/base:latest@sha256:4f6e739881403e7d50f52a4e574c4e3c88266031fd555303ee2f1ba262523d6a","Warn: containerImage not pinned by hash: collector/Dockerfile.rhel:1","Warn: containerImage not pinned by hash: collector/Dockerfile.rhel:11: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: frontend/Dockerfile:1","Warn: containerImage not pinned by hash: frontend/Dockerfile:6","Warn: containerImage not pinned by hash: frontend/Dockerfile:12","Warn: containerImage not pinned by hash: frontend/Dockerfile:21: pin your Docker image by updating gcr.io/distroless/static:nonroot to gcr.io/distroless/static:nonroot@sha256:cdf4daaf154e3e27cfffc799c16f343a384228f38646928a1513d925f473cb46","Warn: containerImage not pinned by hash: frontend/Dockerfile.rhel:1","Warn: containerImage not pinned by hash: frontend/Dockerfile.rhel:6","Warn: containerImage not pinned by hash: frontend/Dockerfile.rhel:12","Warn: containerImage not pinned by hash: frontend/Dockerfile.rhel:22: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: odiglet/Dockerfile:3","Warn: containerImage not pinned by hash: odiglet/Dockerfile:18","Warn: containerImage not pinned by hash: odiglet/Dockerfile:34","Warn: containerImage not pinned by hash: odiglet/Dockerfile:48","Warn: containerImage not pinned by hash: odiglet/Dockerfile:77","Warn: containerImage not pinned by hash: odiglet/Dockerfile:95","Warn: containerImage not pinned by hash: odiglet/Dockerfile:117","Warn: containerImage not pinned by hash: odiglet/Dockerfile:142","Warn: containerImage not pinned by hash: odiglet/Dockerfile:218: pin your Docker image by updating gcr.io/distroless/base:latest to gcr.io/distroless/base:latest@sha256:4f6e739881403e7d50f52a4e574c4e3c88266031fd555303ee2f1ba262523d6a","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:4","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:19","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:35","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:50","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:80","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:98","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:119","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:144","Warn: containerImage not pinned by hash: odiglet/Dockerfile.rhel:220: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: odiglet/base.Dockerfile:1","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:3","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:18","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:34","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:50","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:59","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:89","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:107","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:129","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:154","Warn: containerImage not pinned by hash: odiglet/debug.Dockerfile:208: pin your Docker image by updating registry.fedoraproject.org/fedora-minimal:38 to registry.fedoraproject.org/fedora-minimal:38@sha256:46d9dd1088e30a5ae8cf0f3907ce97c11f59d189fc2067d96264568945a2923e","Warn: containerImage not pinned by hash: operator/Dockerfile:2","Warn: containerImage not pinned by hash: operator/Dockerfile:29: pin your Docker image by updating gcr.io/distroless/static:nonroot to gcr.io/distroless/static:nonroot@sha256:cdf4daaf154e3e27cfffc799c16f343a384228f38646928a1513d925f473cb46","Warn: containerImage not pinned by hash: operator/Dockerfile.rhel:2","Warn: containerImage not pinned by hash: operator/Dockerfile.rhel:27: pin your Docker image by updating registry.access.redhat.com/ubi9/ubi-micro:latest to registry.access.redhat.com/ubi9/ubi-micro:latest@sha256:f5c5213d2969b7b11a6666fc4b849d56b48d9d7979b60a37bb853dff0255c14b","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/cpp-http-server/Dockerfile:2","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/cpp-http-server/Dockerfile:23: pin your Docker image by updating alpine:latest to alpine:latest@sha256:4bcff63911fcb4448bd4fdacec207030997caf25e9bea4045fa6c8c44de311d1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-glibc.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-glibc.Dockerfile:8: pin your Docker image by updating mcr.microsoft.com/dotnet/aspnet:6.0 to mcr.microsoft.com/dotnet/aspnet:6.0@sha256:e70c493f8af7f95bf459cb2b15c7e7a6173228929c2b7a9a6836b19377890e78","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-musl.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-musl.Dockerfile:8: pin your Docker image by updating mcr.microsoft.com/dotnet/aspnet:6.0-alpine to mcr.microsoft.com/dotnet/aspnet:6.0-alpine@sha256:02a9f6b3d99095659228667f3c88aecf4fe331935b7b861a6c17f130b3cd97a1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-glibc.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-glibc.Dockerfile:7: pin your Docker image by updating mcr.microsoft.com/dotnet/aspnet:8.0 to mcr.microsoft.com/dotnet/aspnet:8.0@sha256:6d40ae71165cb8a4427477ae3b447b05c080330cabae08b0dae672552bcd34d8","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-musl.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-musl.Dockerfile:7: pin your Docker image by updating mcr.microsoft.com/dotnet/aspnet:8.0-alpine to mcr.microsoft.com/dotnet/aspnet:8.0-alpine@sha256:d1f21f18d9a720274eef9fe68fe3cbdd2301e42628447a2ef2632d0006881628","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-azul.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-azul.Dockerfile:6: pin your Docker image by updating azul/zulu-openjdk-alpine:17.0.12-jre-headless to azul/zulu-openjdk-alpine:17.0.12-jre-headless@sha256:12e335ed6d5cb4cd55ef6b5e2e769b2a77f25ced0270df1277bc2bca3dfd209e","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-latest-version.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-latest-version.Dockerfile:6: pin your Docker image by updating eclipse-temurin:latest to eclipse-temurin:latest@sha256:1bd9ac00d3acc92a137cf9aca442a42e6f777736524b87cc376342ef5402e2d4","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-old-version.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-old-version.Dockerfile:6: pin your Docker image by updating eclipse-temurin:11-jre-jammy to eclipse-temurin:11-jre-jammy@sha256:53adb373eea3d2f6fb9173d1ab106339eaf3907176a0beaba106a40fb26faf57","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-docker-env.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-docker-env.Dockerfile:6: pin your Docker image by updating eclipse-temurin:17.0.12_7-jre-jammy to eclipse-temurin:17.0.12_7-jre-jammy@sha256:6c4c0938462c9678fe380bf01c7da7f4242dc20f54362f24ced3bb70f6e0183a","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-manifest-env.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-manifest-env.Dockerfile:6: pin your Docker image by updating eclipse-temurin:17.0.12_7-jre-jammy to eclipse-temurin:17.0.12_7-jre-jammy@sha256:6c4c0938462c9678fe380bf01c7da7f4242dc20f54362f24ced3bb70f6e0183a","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-version.Dockerfile:1","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-supported-version.Dockerfile:6: pin your Docker image by updating eclipse-temurin:17.0.12_7-jre-jammy to eclipse-temurin:17.0.12_7-jre-jammy@sha256:6c4c0938462c9678fe380bf01c7da7f4242dc20f54362f24ced3bb70f6e0183a","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-unique-exec.Dockerfile:2","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/java-http-server/java-unique-exec.Dockerfile:8: pin your Docker image by updating eclipse-temurin:21 to eclipse-temurin:21@sha256:1bd9ac00d3acc92a137cf9aca442a42e6f777736524b87cc376342ef5402e2d4","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/dockerfile-env.Dockerfile:1: pin your Docker image by updating node:20.17.0-alpine to node:20.17.0-alpine@sha256:2d07db07a2df6830718ae2a47db6fedce6745f5bcd174c398f2acdda90a11c03","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/latest-version.Dockerfile:1: pin your Docker image by updating node:current-alpine to node:current-alpine@sha256:51dbfc749ec3018c7d4bf8b9ee65299ff9a908e38918ce163b0acfcd5dd931d9","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/manifest-env.Dockerfile:1: pin your Docker image by updating node:20.17.0-alpine to node:20.17.0-alpine@sha256:2d07db07a2df6830718ae2a47db6fedce6745f5bcd174c398f2acdda90a11c03","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/minimum-version.Dockerfile:1: pin your Docker image by updating node:14.0.0-alpine to node:14.0.0-alpine@sha256:628ae0898c092799f09af3f15775b9d5f2feeafc1bb2485e68d577f3ea8f267e","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/unsupported-version.Dockerfile:1: pin your Docker image by updating node:8.17.0-alpine to node:8.17.0-alpine@sha256:38f7bf07ffd72ac612ec8c829cb20ad416518dbb679768d7733c93175453f4d4","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/nodejs-http-server/very-old-version.Dockerfile:1: pin your Docker image by updating node:8.17.0-alpine to node:8.17.0-alpine@sha256:38f7bf07ffd72ac612ec8c829cb20ad416518dbb679768d7733c93175453f4d4","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-alpine:1: pin your Docker image by updating python:3.10.15-alpine to python:3.10.15-alpine@sha256:039508c234f83314a3be8eed523f347f6f26816541be7caa4a9ef4a4bf1bfb66","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-latest:1: pin your Docker image by updating python to python@sha256:3b2f1b9c9948e9dc96e1a2f4668ba9870ff43ab834f91155697476142b3bc299","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-min-version:2: pin your Docker image by updating python:3.8.0-slim to python:3.8.0-slim@sha256:8e243f41e500238f78f7a29a81656114d3fe603d5c34079a462d090f71c4b225","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-not-supported-version:2: pin your Docker image by updating python:3.6-slim to python:3.6-slim@sha256:2cfebc27956e6a55f78606864d91fe527696f9e32a724e6f9702b5f9602d0474","Warn: containerImage not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-other-agent:1: pin your Docker image by updating python to python@sha256:3b2f1b9c9948e9dc96e1a2f4668ba9870ff43ab834f91155697476142b3bc299","Warn: pipCommand not pinned by hash: agents/Dockerfile:7","Warn: pipCommand not pinned by hash: agents/Dockerfile.rhel:7","Warn: pipCommand not pinned by hash: odiglet/Dockerfile:7","Warn: pipCommand not pinned by hash: odiglet/Dockerfile.rhel:8","Warn: pipCommand not pinned by hash: odiglet/debug.Dockerfile:7","Warn: goCommand not pinned by hash: odiglet/debug.Dockerfile:173","Warn: nugetCommand not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-glibc.Dockerfile:5: pin your dependecies by either enabling central package management (https://learn.microsoft.com/nuget/consume-packages/Central-Package-Management) or using a lockfile (https://learn.microsoft.com/nuget/consume-packages/package-references-in-project-files#locking-dependencies)","Warn: nugetCommand not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net6-musl.Dockerfile:5: pin your dependecies by either enabling central package management (https://learn.microsoft.com/nuget/consume-packages/Central-Package-Management) or using a lockfile (https://learn.microsoft.com/nuget/consume-packages/package-references-in-project-files#locking-dependencies)","Warn: nugetCommand not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-glibc.Dockerfile:4: pin your dependecies by either enabling central package management (https://learn.microsoft.com/nuget/consume-packages/Central-Package-Management) or using a lockfile (https://learn.microsoft.com/nuget/consume-packages/package-references-in-project-files#locking-dependencies)","Warn: nugetCommand not pinned by hash: tests/e2e/workload-lifecycle/services/dotnet-http-server/net8-musl.Dockerfile:4: pin your dependecies by either enabling central package management (https://learn.microsoft.com/nuget/consume-packages/Central-Package-Management) or using a lockfile (https://learn.microsoft.com/nuget/consume-packages/package-references-in-project-files#locking-dependencies)","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-alpine:28-29","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-alpine:28-29","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-latest:11","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-min-version:14","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-not-supported-version:8","Warn: pipCommand not pinned by hash: tests/e2e/workload-lifecycle/services/python-http-server/Dockerfile.python-other-agent:11","Warn: pipCommand not pinned by hash: .github/workflows/generated-docs.yaml:72","Warn: pipCommand not pinned by hash: .github/workflows/generated-docs.yaml:73","Warn: pipCommand not pinned by hash: .github/workflows/generated-docs.yaml:98","Warn: pipCommand not pinned by hash: .github/workflows/generated-docs.yaml:99","Info:   0 out of  77 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  58 third-party GitHubAction dependencies pinned","Info:   0 out of 100 containerImage dependencies pinned","Info:   0 out of  15 pipCommand dependencies pinned","Info:   0 out of   1 goCommand dependencies pinned","Info:   0 out of   4 nugetCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"74 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GO-2025-3830 / GHSA-x4rx-4gw3-53p4","Warn: Project is vulnerable to: GHSA-52f5-9888-hmc6","Warn: Project is vulnerable to: GHSA-27hp-xhwr-wr2m","Warn: Project is vulnerable to: GHSA-3p2h-wqq4-wf4h","Warn: Project is vulnerable to: GHSA-5j33-cvvr-w245","Warn: Project is vulnerable to: GHSA-7w75-32cg-r6g2","Warn: Project is vulnerable to: GHSA-83qj-6fr2-vhqg","Warn: Project is vulnerable to: GHSA-fccv-jmmp-qg76","Warn: Project is vulnerable to: GHSA-ff77-26x5-69cr","Warn: Project is vulnerable to: GHSA-g8pj-r55q-5c2v","Warn: Project is vulnerable to: GHSA-h2fw-rfh5-95r3","Warn: Project is vulnerable to: GHSA-h3gc-qfqq-6h8f","Warn: Project is vulnerable to: GHSA-q3mw-pvr8-9ggc","Warn: Project is vulnerable to: GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GHSA-r6j3-px5g-cq3x","Warn: Project is vulnerable to: GHSA-wc4r-xq3c-5cf3","Warn: Project is vulnerable to: GHSA-wm9w-rjj3-j356","Warn: Project is vulnerable to: GHSA-v682-8vv8-vpwr","Warn: Project is vulnerable to: GHSA-rc42-6c7j-7h5r","Warn: Project is vulnerable to: GHSA-4gc7-5j7h-4qph","Warn: Project is vulnerable to: GHSA-4wp7-92pw-q264","Warn: Project is vulnerable to: GHSA-2rmj-mq67-h97g","Warn: Project is vulnerable to: GHSA-2wrp-6fg6-hmc5","Warn: Project is vulnerable to: GHSA-6r3c-xf4w-jxjm","Warn: Project is vulnerable to: GHSA-ccgv-vj62-xf9h","Warn: Project is vulnerable to: GHSA-hgjh-9rj2-g67j","Warn: Project is vulnerable to: GHSA-cx7f-g6mp-7hqm","Warn: Project is vulnerable to: GHSA-g5vr-rgqm-vf78","Warn: Project is vulnerable to: GHSA-v94h-hvhg-mf9h","Warn: Project is vulnerable to: GHSA-mjmj-j48q-9wg2","Warn: Project is vulnerable to: GHSA-7xr5-9hcq-chf9","Warn: Project is vulnerable to: GHSA-rrqc-c2jx-6jgv","Warn: Project is vulnerable to: GHSA-8qvm-5x2c-j2w7","Warn: Project is vulnerable to: PYSEC-2014-5 / GHSA-296w-6qhq-gf92","Warn: Project is vulnerable to: PYSEC-2011-2 / GHSA-3jqw-crqj-w8qw","Warn: Project is vulnerable to: PYSEC-2012-3 / GHSA-59w8-4wm2-4xw8","Warn: Project is vulnerable to: PYSEC-2012-4 / GHSA-5h2q-4hrp-v9rr","Warn: Project is vulnerable to: PYSEC-2014-6 / GHSA-625g-gx8c-xcmg","Warn: Project is vulnerable to: PYSEC-2015-8 / GHSA-6565-fg86-6jcx","Warn: Project is vulnerable to: PYSEC-2021-98 / GHSA-68w8-qjq3-2gfm","Warn: Project is vulnerable to: PYSEC-2012-2 / GHSA-78vx-ggch-wghm","Warn: Project is vulnerable to: PYSEC-2015-9 / GHSA-7fq8-4pv5-5w5c","Warn: Project is vulnerable to: PYSEC-2015-4 / GHSA-7qfw-j7hp-v45g","Warn: Project is vulnerable to: PYSEC-2011-9 / GHSA-7wph-fc4w-wqp2","Warn: Project is vulnerable to: PYSEC-2014-2 / GHSA-89hj-xfx5-7q66","Warn: Project is vulnerable to: GHSA-8x94-hmjh-97hq","Warn: Project is vulnerable to: PYSEC-2016-2 / GHSA-c8c8-9472-w52h","Warn: Project is vulnerable to: PYSEC-2016-3 / GHSA-crhm-qpjc-cm64","Warn: Project is vulnerable to: PYSEC-2014-4 / GHSA-f7cm-ccfp-3q4r","Warn: Project is vulnerable to: PYSEC-2016-16 / GHSA-fp6p-5xvw-m74f","Warn: Project is vulnerable to: PYSEC-2011-8 / GHSA-fwr5-q9rx-294f","Warn: Project is vulnerable to: PYSEC-2015-5 / GHSA-gv98-g628-m9x5","Warn: Project is vulnerable to: PYSEC-2015-20 / GHSA-h582-2pch-3xv3","Warn: Project is vulnerable to: PYSEC-2011-5 / GHSA-h95j-h2rv-qrg4","Warn: Project is vulnerable to: GHSA-hmr4-m2h5-33qx","Warn: Project is vulnerable to: PYSEC-2015-6 / GHSA-jhjg-w2cp-5j44","Warn: Project is vulnerable to: PYSEC-2016-15 / GHSA-pw27-w7w4-9qc7","Warn: Project is vulnerable to: PYSEC-2015-10 / GHSA-q5qw-4364-5hhm","Warn: Project is vulnerable to: PYSEC-2011-4 / GHSA-rm2j-x595-q9cj","Warn: Project is vulnerable to: PYSEC-2014-1 / GHSA-rvq6-mrpv-m6rm","Warn: Project is vulnerable to: PYSEC-2014-7 / GHSA-rw75-m7gp-92m3","Warn: Project is vulnerable to: PYSEC-2019-16 / GHSA-vfq6-hq5r-27r6","Warn: Project is vulnerable to: PYSEC-2014-3 / GHSA-wqjj-hx84-v449","Warn: Project is vulnerable to: PYSEC-2011-3 / GHSA-wxg3-mfph-qg9w","Warn: Project is vulnerable to: PYSEC-2011-1 / GHSA-x88j-93vc-wpmp","Warn: Project is vulnerable to: PYSEC-2007-1","Warn: Project is vulnerable to: PYSEC-2008-1","Warn: Project is vulnerable to: PYSEC-2008-2","Warn: Project is vulnerable to: PYSEC-2009-3","Warn: Project is vulnerable to: PYSEC-2015-11","Warn: Project is vulnerable to: PYSEC-2015-7","Warn: Project is vulnerable to: PYSEC-2016-18"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T15:21:37.809Z","repository_id":43033331,"created_at":"2025-08-17T15:21:37.809Z","updated_at":"2025-08-17T15:21:37.809Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31471468,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-06T08:36:52.050Z","status":"ssl_error","status_checked_at":"2026-04-06T08:36:51.267Z","response_time":112,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dotnet","ebpf","go","java","javascript","kubernetes","logs","metrics","monitoring","nodejs","observability","opentelemetry","otel","python","traces"],"created_at":"2024-07-31T08:01:12.777Z","updated_at":"2026-04-06T12:01:52.787Z","avatar_url":"https://github.com/odigos-io.png","language":"Go","funding_links":[],"categories":["Go"],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\n    \u003ca href=\"https://github.com/odigos-io/odigos/actions/workflows/release.yml\" target=\"_blank\"\u003e\n        \u003cimg src=\"https://github.com/odigos-io/odigos/actions/workflows/release.yml/badge.svg\" alt=\"Release Odigos CLI\"/\u003e\n    \u003c/a\u003e\n    \u003ca href=\"https://goreportcard.com/report/github.com/odigos-io/odigos/cli\" target=\"_blank\"\u003e\n        \u003cimg src=\"https://goreportcard.com/badge/github.com/odigos-io/odigos/cli\" alt=\"Go Report Card\"/\u003e\n    \u003c/a\u003e\n    \u003ca href=\"https://godoc.org/github.com/odigos-io/odigos/cli\" target=\"_blank\"\u003e\n        \u003cimg src=\"https://godoc.org/github.com/odigos-io/odigos/cli?status.svg\" alt=\"GoDoc\"/\u003e\n    \u003c/a\u003e\n\u003c/p\u003e\n\n[![Logo Dark Mode](./docs/logo/logo_white.svg)](https://odigos.io#gh-dark-mode-only)\n[![Logo Light Mode](./docs/logo/logo_black.svg)](https://odigos.io#gh-light-mode-only)\n\n\u003cdiv align=\"center\"\u003e\n    \u003ch2\u003eGenerate distributed traces for any application without code changes.\u003c/h2\u003e\n    \u003ch4\u003eIf you find Odigos helpful, please ⭐ this repository to show your support!\u003c/h4\u003e\n    \u003ch2\u003e\n        \u003ca href=\"https://odigos.io/?demo\"\u003eDemo Video\u003c/a\u003e\n        • \u003ca href=\"https://docs.odigos.io\"\u003eDocumentation\u003c/a\u003e\n        • \u003ca href=\"https://join.slack.com/t/odigos/shared_invite/zt-1d7egaz29-Rwv2T8kyzc3mWP8qKobz~A\"\u003eJoin Slack Community\u003c/a\u003e\n    \u003c/h2\u003e\n\u003c/div\u003e\n\n## What is Odigos?\n\nOdigos is an open-source distributed tracing solution that simplifies and improves observability for Kubernetes environments and Virtual Machines. It provides instant tracing capabilities without requiring any code changes to your applications.\n\nOdigos empowers platform engineers, DevOps professionals, and SREs to enhance their observability strategies quickly and effectively. It is an ideal solution for modern cloud-native environments, combining simplicity, performance, and industry expertise.\n\n## Why choose Odigos?\n\n1. **Simplicity** : Implement distributed tracing with minimal effort and complexity.\n2. **Performance** : Separates data recording and processing to minimize runtime impact.\n3. **Community-Backed** : With 3,000+ GitHub stars and a growing contributor base.\n4. **Expertise** : Created by multiple maintainers of OpenTelemetry, ensuring deep integration and alignment with industry standards.\n\n## Key Features\n\n- **Code-Free Instrumentation** : Set up distributed tracing in minutes, eliminating manual code modifications.\n- **Multi-Language Support** : Works with [Java](https://docs.odigos.io/instrumentations/java), [Python](https://docs.odigos.io/instrumentations/python), [.NET](https://docs.odigos.io/instrumentations/dotnet), [Node.js](https://docs.odigos.io/instrumentations/nodejs), and [Go](https://docs.odigos.io/instrumentations/golang) applications.\n- **eBPF-Powered** : Utilizes eBPF technology for high-performance instrumentation.\n- **OpenTelemetry Compatible** : Generates traces in OpenTelemetry format for broad tool compatibility.\n- **Vendor Agnostic** : Integrates with various [monitoring solutions](https://docs.odigos.io/backends-overview), avoiding vendor lock-in.\n- **Automatic Scaling** : Manages and scales OpenTelemetry collectors based on data volume.\n- **Opinionated Defaults** : Supplies common defaults and best practices out-of-the-box, requiring no deep knowledge of OpenTelemetry.\n\n### ✨ Language Agnostic Auto-instrumentation\n\nOdigos supports any application written in Java, Python, .NET, Node.js, and **Go**.\nHistorically, compiled languages like Go have been difficult to instrument without code changes. Odigos solves this problem by uniquely leveraging [eBPF](https://ebpf.io).\n\n![Works on any application](./docs/images/ui_choose_apps.png)\n\n### 🤝 Keep your existing observability tools\n\nOdigos currently supports all the popular managed and open-source destinations.\nBy producing data in the [OpenTelemetry](https://opentelemetry.io) format, Odigos can be used with any observability tool that supports OTLP.\n\nFor a complete list of supported destinations, see [here](#supported-destinations).\n\n![Works with any observability tool](./docs/images/ui_choose_dest.png)\n\n### 🎛️ Collectors Management\n\nOdigos automatically scales OpenTelemetry collectors based on observability data volume.\nManage and configure collectors via a convenient web UI.\n\n![Collectors Management](./docs/images/ui_overview.png)\n\n## Installation\n\nInstalling Odigos takes less than 5 minutes and requires no code changes.\u003cbr /\u003e\nDownload our [CLI](https://docs.odigos.io/installation) and run the following command:\n\n```bash\nodigos install\n```\n\nFor more information, see our [quickstart guide](https://docs.odigos.io/quickstart/introduction).\n\n## Contributing\n\nPlease refer to the [CONTRIBUTING.md](CONTRIBUTING.md) file for information about how to get involved. We welcome issues, questions, and pull requests.\n\n## Thanks to our Contributors\n\n\u003ca href=\"https://github.com/odigos-io/odigos/graphs/contributors\"\u003e\n  \u003cimg src=\"https://contrib.rocks/image?repo=keyval-dev/odigos\" /\u003e\n\u003c/a\u003e\n\n## License\n\nThis project is licensed under the terms of the Apache 2.0 open-source license. Please refer to [LICENSE](LICENSE) for the full terms.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fodigos-io%2Fodigos","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fodigos-io%2Fodigos","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fodigos-io%2Fodigos/lists"}