{"id":37096134,"url":"https://github.com/publicarray/spksrc","last_synced_at":"2026-01-14T11:50:33.013Z","repository":{"id":39907975,"uuid":"127622931","full_name":"publicarray/spksrc","owner":"publicarray","description":"Cross compilation framework to create native packages for the Synology's NAS","archived":false,"fork":true,"pushed_at":"2024-07-22T14:59:10.000Z","size":74878,"stargazers_count":66,"open_issues_count":7,"forks_count":14,"subscribers_count":5,"default_branch":"master","last_synced_at":"2024-07-22T18:00:05.100Z","etag":null,"topics":["dnscrypt-proxy","synology"],"latest_commit_sha":null,"homepage":"https://synocommunity.com/","language":"Makefile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"SynoCommunity/spksrc","license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/publicarray.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2018-04-01T11:26:27.000Z","updated_at":"2024-07-22T14:59:25.000Z","dependencies_parsed_at":"2023-02-12T09:16:06.091Z","dependency_job_id":"a288c8dd-e8ea-4d19-820b-240d1bc6a714","html_url":"https://github.com/publicarray/spksrc","commit_stats":null,"previous_names":[],"tags_count":100,"template":false,"template_full_name":null,"purl":"pkg:github/publicarray/spksrc","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/publicarray%2Fspksrc","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/publicarray%2Fspksrc/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/publicarray%2Fspksrc/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/publicarray%2Fspksrc/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/publicarray","download_url":"https://codeload.github.com/publicarray/spksrc/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/publicarray%2Fspksrc/sbom","scorecard":{"id":749066,"data":{"date":"2025-08-11","repo":{"name":"github.com/publicarray/spksrc","commit":"b51439baac18ad29a11a94813bfc8d3d9db6df91"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.5,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/build.yml:1","Warn: no topLevel permission defined: .github/workflows/docker.yml:1","Warn: no topLevel permission defined: .github/workflows/lint.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE.md:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact dotnet-fix not signed: https://api.github.com/repos/publicarray/spksrc/releases/47192303","Warn: release artifact dnscrypt-proxy-2.0.45_1 not signed: https://api.github.com/repos/publicarray/spksrc/releases/46600038","Warn: release artifact jellyfin-10.7.6 not signed: https://api.github.com/repos/publicarray/spksrc/releases/46319393","Warn: release artifact sonarr-3.0.5.1144 not signed: https://api.github.com/repos/publicarray/spksrc/releases/40621845","Warn: release artifact dotnet-fix does not have provenance: https://api.github.com/repos/publicarray/spksrc/releases/47192303","Warn: release artifact dnscrypt-proxy-2.0.45_1 does not have provenance: https://api.github.com/repos/publicarray/spksrc/releases/46600038","Warn: release artifact jellyfin-10.7.6 does not have provenance: https://api.github.com/repos/publicarray/spksrc/releases/46319393","Warn: release artifact sonarr-3.0.5.1144 does not have provenance: https://api.github.com/repos/publicarray/spksrc/releases/40621845"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing shell code: unclosed here-document 'EOF': spk/umurmur/src/app/umurmur.cgi.sh:0","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/build.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/docker.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/docker.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/docker.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/docker.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/publicarray/spksrc/lint.yml/master?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating debian:bullseye to debian:bullseye@sha256:8ec25a9073e8cc89a184a6256e219828196d75203375a8ad4f0977f3011f2115","Warn: downloadThenRun not pinned by hash: Dockerfile:89","Warn: pipCommand not pinned by hash: Dockerfile:91","Warn: pipCommand not pinned by hash: spk/ffsync/src/service-setup.sh:75","Warn: pipCommand not pinned by hash: spk/ffsync/src/service-setup.sh:79","Warn: pipCommand not pinned by hash: spk/homeassistant/src/service-setup.sh:61","Warn: pipCommand not pinned by hash: spk/homeassistant/src/service-setup.sh:65","Warn: pipCommand not pinned by hash: spk/homeassistant/src/service-setup.sh:69","Warn: pipCommand not pinned by hash: spk/homeassistant/src/service-setup.sh:82","Warn: pipCommand not pinned by hash: spk/octoprint/src/service-setup.sh:47","Warn: pipCommand not pinned by hash: spk/octoprint/src/service-setup.sh:51","Warn: npmCommand not pinned by hash: .github/workflows/lint.yml:20","Info:   0 out of   7 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   6 third-party GitHubAction dependencies pinned","Info:   0 out of   9 pipCommand dependencies pinned","Info:   0 out of   1 npmCommand dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"131 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-3f63-hfp8-52jq","Warn: Project is vulnerable to: GHSA-44wm-f244-xhp3","Warn: Project is vulnerable to: PYSEC-2023-227 / GHSA-8ghj-p4vj-mr35","Warn: Project is vulnerable to: GHSA-j7hp-h8jx-5ppr","Warn: Project is vulnerable to: PYSEC-2023-175","Warn: Project is vulnerable to: GHSA-43qf-4rqw-9q2g","Warn: Project is vulnerable to: GHSA-7rxf-gvfg-47g4","Warn: Project is vulnerable to: GHSA-84pr-m4jr-85g5","Warn: Project is vulnerable to: GHSA-8vgw-p6qm-5gr7","Warn: Project is vulnerable to: PYSEC-2024-71 / GHSA-hxwh-jpp2-84pm","Warn: Project is vulnerable to: GHSA-vqfr-h8mv-ghfj","Warn: Project is vulnerable to: PYSEC-2024-60 / GHSA-jjg7-2v4v-x38h","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: GHSA-gmj6-6f8f-6699","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h","Warn: Project is vulnerable to: GHSA-9hjg-9r4m-mvj7","Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56","Warn: Project is vulnerable to: GHSA-34jh-p97f-mpxf","Warn: Project is vulnerable to: PYSEC-2023-212 / GHSA-g4mx-q9vg-27p4","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: PYSEC-2023-192 / GHSA-v845-jxx5-vc9f","Warn: Project is vulnerable to: GHSA-2g68-c3qc-8985","Warn: Project is vulnerable to: GHSA-f9vj-2wh5-fj8j","Warn: Project is vulnerable to: PYSEC-2023-221 / GHSA-hrfv-mqp8-q5rw","Warn: Project is vulnerable to: GHSA-q34m-jh98-gwm2","Warn: Project is vulnerable to: GHSA-c8m8-j448-xjx7","Warn: Project is vulnerable to: PYSEC-2024-75 / GHSA-cf56-g6w6-pqq2","Warn: Project is vulnerable to: PYSEC-2023-224 / GHSA-xc8x-vp79-p3wm","Warn: Project is vulnerable to: GHSA-8qvm-5x2c-j2w7","Warn: Project is vulnerable to: GHSA-wj6h-64fc-37mp","Warn: Project is vulnerable to: PYSEC-2022-258 / GHSA-wmqq-r32m-87c5","Warn: Project is vulnerable to: GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: PYSEC-2022-42969","Warn: Project is vulnerable to: PYSEC-2023-291 / GHSA-v5f6-hjmf-9mc5","Warn: Project is vulnerable to: GHSA-g7vv-2v7x-gj9p","Warn: Project is vulnerable to: GHSA-jfmj-5v4g-7637","Warn: Project is vulnerable to: GHSA-3ww4-gg4f-jr7f","Warn: Project is vulnerable to: PYSEC-2024-225 / GHSA-6vqw-3v5j-54x4","Warn: Project is vulnerable to: GHSA-9v9h-cgj8-h64p","Warn: Project is vulnerable to: GHSA-h4gh-qq45-vh27","Warn: Project is vulnerable to: PYSEC-2023-254 / GHSA-jfhm-5ghh-2f97","Warn: Project is vulnerable to: GHSA-v8gr-m533-ghj9","Warn: Project is vulnerable to: GHSA-j8g2-6fc7-q8f8","Warn: Project is vulnerable to: PYSEC-2024-188 / GHSA-mg3v-6m49-jhp3","Warn: Project is vulnerable to: GHSA-mr82-8j83-vxmv","Warn: Project is vulnerable to: PYSEC-2023-117 / GHSA-mrwq-x4v8-fh7p","Warn: Project is vulnerable to: PYSEC-2024-44 / GHSA-h5cg-53g7-gqjw","Warn: Project is vulnerable to: PYSEC-2017-15 / GHSA-8f6m-gfq9-g33v","Warn: Project is vulnerable to: PYSEC-2017-14 / GHSA-v9v9-xffq-rwr4","Warn: Project is vulnerable to: GHSA-753j-mpmx-qq6g","Warn: Project is vulnerable to: GHSA-7cx3-6m66-7c5m","Warn: Project is vulnerable to: GHSA-8w49-h785-mj3c","Warn: Project is vulnerable to: PYSEC-2023-75 / GHSA-hj3f-6gcp-jg8j","Warn: Project is vulnerable to: GHSA-qppv-j76h-2rpx","Warn: Project is vulnerable to: GHSA-w235-7p84-xx57","Warn: Project is vulnerable to: PYSEC-2018-66 / GHSA-562c-5r94-xh97","Warn: Project is vulnerable to: PYSEC-2019-179 / GHSA-5wv5-4vpf-pj6m","Warn: Project is vulnerable to: PYSEC-2023-62 / GHSA-m2qf-hxjv-5gpq","Warn: Project is vulnerable to: PYSEC-2019-217 / GHSA-462w-v97r-4m45","Warn: Project is vulnerable to: PYSEC-2014-8 / GHSA-8r7q-cvjq-x353","Warn: Project is vulnerable to: PYSEC-2014-82 / GHSA-fqh9-2qgg-h84h","Warn: Project is vulnerable to: PYSEC-2021-66 / GHSA-g3rq-g295-4j3m","Warn: Project is vulnerable to: PYSEC-2019-220 / GHSA-hj2j-77xm-mc5v","Warn: Project is vulnerable to: PYSEC-2020-157 / GHSA-3p3h-qghp-hvh2","Warn: Project is vulnerable to: PYSEC-2019-140 / GHSA-gq9m-qvpx-68hc","Warn: Project is vulnerable to: PYSEC-2017-43 / GHSA-h2fp-xgx6-xh6f","Warn: Project is vulnerable to: GHSA-j544-7q9p-6xp8","Warn: Project is vulnerable to: PYSEC-2023-57 / GHSA-px8h-6qxv-m22q","Warn: Project is vulnerable to: PYSEC-2023-58 / GHSA-xg9f-g7g7-2323","Warn: Project is vulnerable to: PYSEC-2022-203","Warn: Project is vulnerable to: GHSA-496j-2rq6-j6cc","Warn: Project is vulnerable to: GHSA-6628-q6j9-w8vg","Warn: Project is vulnerable to: PYSEC-2024-3 / GHSA-j225-cvw7-qrx7","Warn: Project is vulnerable to: PYSEC-2024-24 / GHSA-5h86-8mv2-jq9f","Warn: Project is vulnerable to: GHSA-5m98-qgg9-wh84","Warn: Project is vulnerable to: GHSA-7gpw-8wmc-pm8g","Warn: Project is vulnerable to: GHSA-8495-4g3g-x7pr","Warn: Project is vulnerable to: PYSEC-2024-26 / GHSA-8qpw-xqxj-h4r2","Warn: Project is vulnerable to: GHSA-9548-qrrj-x5pj","Warn: Project is vulnerable to: PYSEC-2023-246 / GHSA-gfw2-4jvh-wgfg","Warn: Project is vulnerable to: GHSA-pjjw-qhg8-p2p9","Warn: Project is vulnerable to: PYSEC-2023-250 / GHSA-q3qx-c6g2-7pw2","Warn: Project is vulnerable to: PYSEC-2023-251 / GHSA-qvrw-v9rv-5rjx","Warn: Project is vulnerable to: PYSEC-2024-40 / GHSA-pwr2-4v36-6qpr","Warn: Project is vulnerable to: GHSA-5qpg-rh4j-qp35","Warn: Project is vulnerable to: GHSA-3rq5-2g8h-59hc","Warn: Project is vulnerable to: GHSA-jqpc-rc7g-vf83","Warn: Project is vulnerable to: GHSA-m3pm-rpgg-5wj6","Warn: Project is vulnerable to: PYSEC-2023-214 / GHSA-qhhj-7hrc-gqj5","Warn: Project is vulnerable to: PYSEC-2024-232 / GHSA-6c5p-j8vq-pqhj","Warn: Project is vulnerable to: PYSEC-2024-233 / GHSA-cjwg-qfpm-7377","Warn: Project is vulnerable to: GHSA-9wj4-8h85-pgrw","Warn: Project is vulnerable to: PYSEC-2024-202 / GHSA-cc6x-8cc7-9953","Warn: Project is vulnerable to: GHSA-m9jh-jf9h-x3h2","Warn: Project is vulnerable to: PYSEC-2025-56 / GHSA-qw93-h6pf-226x","Warn: Project is vulnerable to: PYSEC-2024-201 / GHSA-xvxq-g8hw-fx4g","Warn: Project is vulnerable to: GHSA-g92j-qhmh-64v2","Warn: Project is vulnerable to: GHSA-48p4-8xcf-vxj5","Warn: Project is vulnerable to: PYSEC-2021-421 / GHSA-h4m5-qpfp-3mpv","Warn: Project is vulnerable to: GHSA-c33w-24p9-8m24","Warn: Project is vulnerable to: PYSEC-2018-54 / GHSA-894g-6j7q-2hx6","Warn: Project is vulnerable to: GHSA-cg8c-gc2j-2wf7","Warn: Project is vulnerable to: PYSEC-2022-260 / GHSA-v973-fxgf-6xhp","Warn: Project is vulnerable to: PYSEC-2023-74 / GHSA-j8r2-6x86-q33q","Warn: Project is vulnerable to: PYSEC-2018-28 / GHSA-x84v-xcm2-53pg","Warn: Project is vulnerable to: GHSA-m87m-mmvp-v9qm","Warn: Project is vulnerable to: PYSEC-2022-27 / GHSA-92x2-jw7w-xvvx","Warn: Project is vulnerable to: PYSEC-2022-195 / GHSA-c2jg-hw38-jrqq","Warn: Project is vulnerable to: GHSA-vg46-2rrj-3647","Warn: Project is vulnerable to: PYSEC-2021-108 / GHSA-q2q7-5pp4-w6pg","Warn: Project is vulnerable to: PYSEC-2024-187 / GHSA-rqc4-2hc7-8c8v","Warn: Project is vulnerable to: PYSEC-2023-177 / GHSA-x7m3-jprg-wc5g","Warn: Project is vulnerable to: PYSEC-2025-49 / GHSA-5rjg-fvgr-3xxf","Warn: Project is vulnerable to: GHSA-cx63-2mw6-8hw5","Warn: Project is vulnerable to: GHSA-2qw3-2wv6-p64x","Warn: Project is vulnerable to: GHSA-4277-m35q-7c9w","Warn: Project is vulnerable to: GHSA-4j59-vv55-q6h3","Warn: Project is vulnerable to: GHSA-7f3f-x5f5-79gw","Warn: Project is vulnerable to: GHSA-8pcp-r83j-fc92","Warn: Project is vulnerable to: GHSA-989c-m532-p2hv","Warn: Project is vulnerable to: GHSA-c46w-gr7f-jm2p","Warn: Project is vulnerable to: GHSA-fcr4-h6c4-rvvp","Warn: Project is vulnerable to: GHSA-jh7c-xh74-h76f","Warn: Project is vulnerable to: GHSA-q27c-j6j9-53w3","Warn: Project is vulnerable to: PYSEC-2023-169 / GHSA-qvh6-3j7x-3hq7","Warn: Project is vulnerable to: GHSA-r546-h3ff-q585","Warn: Project is vulnerable to: PYSEC-2023-166 / GHSA-vpjg-wmf8-29h9","Warn: Project is vulnerable to: GHSA-xh32-3m67-qjgf","Warn: Project is vulnerable to: GHSA-6gf2-ffq8-gcww"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-22T19:43:24.306Z","repository_id":39907975,"created_at":"2025-08-22T19:43:24.306Z","updated_at":"2025-08-22T19:43:24.306Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28419264,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-14T10:47:48.104Z","status":"ssl_error","status_checked_at":"2026-01-14T10:46:19.031Z","response_time":107,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dnscrypt-proxy","synology"],"created_at":"2026-01-14T11:50:32.376Z","updated_at":"2026-01-14T11:50:33.005Z","avatar_url":"https://github.com/publicarray.png","language":"Makefile","readme":"# Discord\nSynoCommunity is now on Discord!\n\n[![Discord](https://img.shields.io/discord/732558169863225384?color=7289DA\u0026label=Discord\u0026logo=Discord\u0026logoColor=white\u0026style=for-the-badge)](https://discord.gg/nnN9fgE7EF)\n\n# spksrc\nspksrc is a cross compilation framework intended to compile and package software for Synology NAS devices. Packages are made available via the [SynoCommunity repository].\n\n\n# DSM 7\nDSM 7 was released on June 29 2021 as Version 7.0.41890.\n\n* The main issue we had with our reposity is fixed in [spkrepo](https://github.com/SynoCommunity/spkrepo/pull/112) and online since February 2024\n  - before the repository deliverd DSM 6 packages for Systems with DSM 7, when no DSM 7 package was available\n  - this gave errors like \"invalid file format\" (or \"package requires root privileges\")\n  - you still get this error when manually installing a DSM 6 package on DSM 7\n* You find the status of the former packages in the issue [#4524] **Meta: DSM7 package status**\n* New packages support DSM 7 from initial package version (and some require at least DSM 7).\n* **ATTENTION**: As reported, package configuration settings may be lost following the upgrade to DSM 7 and the execution of a Package repair. Make sure to backup your settings and configuration for your SynoCommunity packages before installation of DSM 7 to facilitate restoration if needed.\n\n\n## Contributing\nBefore opening a new issue, check the [FAQ] and search open issues.\nIf you can't find an answer, or if you want to open a package request, read [CONTRIBUTING] to make sure you include all the information needed for contributors to handle your request.\n\n\n## Setup Development Environment\n### Docker\n*The Docker development environment supports Linux and macOS systems, but not Windows due to limitations of the underlying file system.*\n\n1. [Fork and clone] spksrc: `git clone https://github.com/YOUR-USERNAME/spksrc`\n2. Install Docker on your host OS (see [Docker installation], or use a `wget`-based alternative for linux [Install Docker with wget]).\n3. Download the spksrc Docker container: `docker pull ghcr.io/synocommunity/spksrc`\n4. Run the container with the repository mounted into the `/spksrc` directory with the appropriate command for your host Operating System:\n\n```bash\ncd spksrc # Go to the cloned repository's root folder.\n\n# If running on Linux:\ndocker run -it --platform=linux/amd64 -v $(pwd):/spksrc -w /spksrc ghcr.io/synocommunity/spksrc /bin/bash\n\n# If running on macOS:\ndocker run -it --platform=linux/amd64 -v $(pwd):/spksrc -w /spksrc -e TAR_CMD=\"fakeroot tar\" ghcr.io/synocommunity/spksrc /bin/bash\n```\n5. From there, follow the instructions in the [Developers HOW TO].\n\n\n\n### Virtual machine\nA virtual machine based on an 64-bit version of Debian 11 stable OS is recommended. Non-x86 architectures are not supported.\n\nInstall the requirements (in sync with `Dockerfile`):\n```bash\nsudo dpkg --add-architecture i386 \u0026\u0026 sudo apt-get update\nsudo apt update\nsudo apt install autoconf-archive autogen automake autopoint bash bc bison \\\n                 build-essential check cmake curl cython3 debootstrap ed expect fakeroot flex \\\n                 g++-multilib gawk gettext git gperf imagemagick intltool jq libbz2-dev libc6-i386 \\\n                 libcppunit-dev libffi-dev libgc-dev libgmp3-dev libltdl-dev libmount-dev libncurses-dev \\\n                 libpcre3-dev libssl-dev libtool libunistring-dev lzip mercurial moreutils ninja-build \\\n                 patchelf php pkg-config python2 python3 python3-distutils rename ruby-mustache rsync scons subversion \\\n                 swig texinfo unzip xmlto zip zlib1g-dev\nwget https://bootstrap.pypa.io/pip/2.7/get-pip.py -O - | sudo python2\nsudo pip2 install wheel httpie\nwget https://bootstrap.pypa.io/get-pip.py -O - | sudo python3\nsudo pip3 install meson==1.0.0\n```\nFrom there, follow the instructions in the [Developers HOW TO].\n\n* You may need to install some packages from testing like autoconf. Read about Apt-Pinning to know how to do that.\n* Some older toolchains may require 32-bit development versions of packages, e.g. `zlib1g-dev:i386`\n\n\n\n### LXC\nA container based on 64-bit version of Debian 11 stable OS is recommended. Non-x86 architectures are not supported.  The following assumes your LXD/LXC environment is already initiated (e.g. `lxc init`) and you have minimal LXD/LXC basic knowledge :\n1. Create a new container (will use x86_64/amd64 arch by default): `lxc launch images:debian/11 spksrc`\n2. Enable i386 arch: `lxc exec spksrc -- /usr/bin/dpkg --add-architecture i386`\n3. Update apt channels: `lxc exec spksrc -- /usr/bin/apt update`\n4. Install all required packages:\n```bash\nlxc exec spksrc -- /usr/bin/apt install autoconf-archive autogen automake autopoint bash bc bison \\\n                                build-essential check cmake curl cython3 debootstrap ed expect fakeroot flex \\\n                                g++-multilib gawk gettext git gperf imagemagick intltool jq libbz2-dev libc6-i386 \\\n                                libcppunit-dev libffi-dev libgc-dev libgmp3-dev libltdl-dev libmount-dev libncurses-dev \\\n                                libpcre3-dev libssl-dev libtool libunistring-dev lzip mercurial moreutils ninja-build \\\n                                patchelf php pkg-config python2 python3 python3-distutils rename rsync ruby-mustache scons subversion \\\n                                swig texinfo unzip xmlto zip zlib1g-dev\n```\n5. Install `python2` wheels:\n```bash\nlxc exec spksrc -- /bin/bash -c \"wget https://bootstrap.pypa.io/pip/2.7/get-pip.py -O - | python2\"\nlxc exec spksrc -- /bin/bash -c \"pip2 install virtualenv httpie\"\n```\n6. Install `python3` `pip`:\n```bash\nlxc exec spksrc -- /bin/bash -c \"wget https://bootstrap.pypa.io/get-pip.py -O - | python3\"\n```\n7. Install `meson`:\n```bash\nlxc exec spksrc -- /bin/bash -c \"pip3 install meson==1.0.0\"\n```\n\n\n#### LXC: `spksrc` user\n8. By default it is assumed that you will be running as `spksrc` user into the LXC container.  Such user needs to be created into the default container image:\n```bash\nlxc exec spksrc -- /usr/sbin/adduser --uid 1001 spksrc\n```\n9. Setup a default shell environment:\n```bash\nlxc exec spksrc --user 1001 -- cp /etc/skel/.profile /etc/skel/.bashrc ~spksrc/.\n```\n\nFrom there you can connect to your container as `spksrc` and follow the instructions in the [Developers HOW TO].\n```bash\nlxc exec spksrc -- su --login spksrc\nspksrc@spksrc:~$\n```\n\n#### (OPTIONAL) Install misc base tools:\n```bash\nlxc exec spksrc -- /usr/bin/apt install bash-completion man-db manpages-dev \\\n                                        mlocate ripgrep rsync tree time\nlxc exec spksrc -- /usr/bin/updatedb\n```\nInstall github client:\n```\n$ lxc exec spksrc -- su --login root\n# curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | sudo dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg\n# echo \"deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main\" | sudo tee /etc/apt/sources.list.d/github-cli.list \u003e /dev/null\n# sudo apt update\n# sudo apt install gh\n# exit\n```\n\n#### (OPTIONAL) LXC: Shared `spksrc` user\nYou can create a shared user between your Debian/Ubuntu host and the LXC Debian container which simplifies greatly file management between the two.  The following assumes you already created a user `spksrc` with uid 1001 in your Debian/Ubuntu host environment and that you which to share its `/home` userspace.\n1. Create a mapping rule between the hosts and the LXC image:\n```bash\nlxc config set spksrc raw.idmap \"both 1001 1001\"\nlxc restart spksrc\nRemapping container filesystem\n```\n2. Add `/home/spksrc` from the hsot to the LXC container:\n```bash\nlxc config device add spksrc home disk path=/home/spksrc source=/home/spksrc\nDevice home added to spksrc\n```\n3. Connect as `spksrc` user:\n```bash\nlxc exec spksrc -- su --login spksrc\nspksrc@spksrc:~$\n```\n\n#### LXC: Proxy (OPTIONAL)\nThe following assume you have a running proxy on your LAN setup at IP 192.168.1.1 listening on port 3128 that will allow caching files.\n1. Enforce using a proxy:\n```bash\nlxc config set spksrc environment.http_proxy http://192.168.1.1:3128\nlxc config set spksrc environment.https_proxy http://192.168.1.1:3128\n```\n2. Enforce using a proxy with `wget` in the spksrc container user account:\n```bash\nlxc exec spksrc --user $(id -u spksrc) -- bash -c \"cat \u003c\u003c EOF \u003e ~spksrc/.wgetrc\nuse_proxy = on\nhttp_proxy = http://192.168.1.1:3128/\nhttps_proxy = http://192.168.1.1:3128/\nftp_proxy = http://192.168.1.1:3128/\nEOF\"\n```\n\n\n## Usage\nOnce you have a development environment set up, you can start building packages, create new ones, or improve upon existing packages while making your changes available to other people.\nSee the [Developers HOW TO] for information on how to use spksrc.\n\n\n## License\nWhen not explicitly set, files are placed under a [3 clause BSD license]\n\n[3 clause BSD license]: http://www.opensource.org/licenses/BSD-3-Clause\n[#4524]: https://github.com/SynoCommunity/spksrc/issues/4524\n[bug tracker]: https://github.com/SynoCommunity/spksrc/issues\n[CONTRIBUTING]: https://github.com/SynoCommunity/spksrc/blob/master/CONTRIBUTING.md\n[Fork and clone]: https://docs.github.com/en/github/getting-started-with-github/fork-a-repo\n[Developers HOW TO]: https://github.com/SynoCommunity/spksrc/wiki/Developers-HOW-TO\n[Docker installation]: https://docs.docker.com/engine/installation\n[FAQ]: https://github.com/SynoCommunity/spksrc/wiki/Frequently-Asked-Questions\n[Install Docker with wget]: https://docs.docker.com/linux/step_one\n[SynoCommunity repository]: http://www.synocommunity.com\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpublicarray%2Fspksrc","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpublicarray%2Fspksrc","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpublicarray%2Fspksrc/lists"}