{"id":13400416,"url":"https://github.com/rancher/rancher","last_synced_at":"2026-04-02T05:37:16.505Z","repository":{"id":22986965,"uuid":"26337322","full_name":"rancher/rancher","owner":"rancher","description":"Complete container management platform","archived":false,"fork":false,"pushed_at":"2026-03-06T05:12:15.000Z","size":173652,"stargazers_count":25398,"open_issues_count":3254,"forks_count":3172,"subscribers_count":621,"default_branch":"main","last_synced_at":"2026-03-06T09:51:31.093Z","etag":null,"topics":["cattle","containers","docker","kubernetes","orchestration","rancher"],"latest_commit_sha":null,"homepage":"http://rancher.com","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rancher.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"code-of-conduct.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2014-11-07T20:49:31.000Z","updated_at":"2026-03-06T00:43:34.000Z","dependencies_parsed_at":"2025-12-17T19:05:52.480Z","dependency_job_id":null,"html_url":"https://github.com/rancher/rancher","commit_stats":{"total_commits":8468,"total_committers":347,"mean_commits":"24.403458213256485","dds":0.8566367501180916,"last_synced_commit":"01491294fbb5870288d476ef82560512ae11937b"},"previous_names":[],"tags_count":2362,"template":false,"template_full_name":null,"purl":"pkg:github/rancher/rancher","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rancher%2Francher","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rancher%2Francher/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rancher%2Francher/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rancher%2Francher/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rancher","download_url":"https://codeload.github.com/rancher/rancher/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rancher%2Francher/sbom","scorecard":{"id":485867,"data":{"date":"2025-08-11","repo":{"name":"github.com/rancher/rancher","commit":"cc7472391189c0c9eab3f03b410e79adbf508d3f"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/hotfix-release.yml:49","Info: jobLevel 'contents' permission set to 'read': .github/workflows/hotfix-release.yml:80","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/hotfix-release.yml:174","Info: jobLevel 'contents' permission set to 'read': .github/workflows/hotfix-release.yml:58","Info: jobLevel 'contents' permission set to 'read': .github/workflows/hotfix-release.yml:118","Info: jobLevel 'contents' permission set to 'read': .github/workflows/hotfix-release.yml:139","Info: jobLevel 'contents' permission set to 'read': .github/workflows/promote-to-stable.yml:20","Info: jobLevel 'contents' permission set to 'read': .github/workflows/promote-to-stable.yml:38","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/promote-to-stable.yml:78","Info: jobLevel 'contents' permission set to 'read': .github/workflows/push.yml:60","Info: jobLevel 'contents' permission set to 'read': .github/workflows/push.yml:81","Info: jobLevel 'contents' permission set to 'read': .github/workflows/push.yml:117","Info: jobLevel 'contents' permission set to 'read': .github/workflows/push.yml:137","Info: jobLevel 'contents' permission set to 'read': .github/workflows/push.yml:51","Info: jobLevel 'contents' permission set to 'read': .github/workflows/rcs-release.yml:50","Info: jobLevel 'contents' permission set to 'read': .github/workflows/rcs-release.yml:59","Info: jobLevel 'contents' permission set to 'read': .github/workflows/rcs-release.yml:119","Info: jobLevel 'contents' permission set to 'read': .github/workflows/rcs-release.yml:140","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/rcs-release.yml:175","Info: jobLevel 'contents' permission set to 'read': .github/workflows/rcs-release.yml:81","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:115","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release.yml:193","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:53","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:62","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:83","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:135","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release.yml:169","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:223","Warn: topLevel 'contents' permission set to 'write': .github/workflows/ci-testing-create-pr.yml:24","Warn: topLevel 'contents' permission set to 'write': .github/workflows/ci-testing-restart-ci.yml:11","Warn: no topLevel permission defined: .github/workflows/controller-test.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/fossa.yml:9","Warn: topLevel 'contents' permission set to 'write': .github/workflows/go-get.yml:25","Warn: no topLevel permission defined: .github/workflows/hotfix-release.yml:1","Warn: no topLevel permission defined: .github/workflows/integration-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/port-issue.yml:1","Warn: no topLevel permission defined: .github/workflows/promote-to-stable.yml:1","Warn: no topLevel permission defined: .github/workflows/provisioning-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/pull-request.yml:1","Warn: no topLevel permission defined: .github/workflows/push.yml:1","Warn: no topLevel permission defined: .github/workflows/rcs-release.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/renovate-vault.yml:20","Warn: topLevel 'contents' permission set to 'write': .github/workflows/replace-env-value.yml:15","Warn: topLevel 'contents' permission set to 'write': .github/workflows/system-agent-upgrade.yml:21","Warn: no topLevel permission defined: .github/workflows/unit-test.yml:1","Warn: no topLevel permission defined: .github/workflows/validate.yml:1","Warn: no topLevel permission defined: .github/workflows/verify-generated-code-changes.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/rancher/.github/SECURITY.md:1","Info: Found linked content: github.com/rancher/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/rancher/.github/SECURITY.md:1","Info: Found text in security policy: github.com/rancher/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v2.12.1-alpha1 not signed: https://api.github.com/repos/rancher/rancher/releases/240086167","Warn: release artifact v2.12.0 not signed: https://api.github.com/repos/rancher/rancher/releases/236444986","Warn: release artifact v2.12.1-alpha1 does not have provenance: https://api.github.com/repos/rancher/rancher/releases/240086167","Warn: release artifact v2.12.0 does not have provenance: https://api.github.com/repos/rancher/rancher/releases/236444986"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":5,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'main'","Info: 'allow deletion' disabled on branch 'release/v2.12'","Info: 'allow deletion' disabled on branch 'release/v2.11'","Info: 'allow deletion' disabled on branch 'release/v2.10'","Info: 'allow deletion' disabled on branch 'release/v2.9'","Info: 'force pushes' disabled on branch 'main'","Info: 'force pushes' disabled on branch 'release/v2.12'","Info: 'force pushes' disabled on branch 'release/v2.11'","Info: 'force pushes' disabled on branch 'release/v2.10'","Info: 'force pushes' disabled on branch 'release/v2.9'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'main'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'release/v2.12'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'release/v2.11'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'release/v2.10'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'release/v2.9'","Info: 'stale review dismissal' is required to merge on branch 'main'","Info: 'stale review dismissal' is required to merge on branch 'release/v2.12'","Info: 'stale review dismissal' is required to merge on branch 'release/v2.11'","Info: 'stale review dismissal' is required to merge on branch 'release/v2.10'","Info: 'stale review dismissal' is required to merge on branch 'release/v2.9'","Warn: required approving review count is 1 on branch 'main'","Warn: required approving review count is 1 on branch 'release/v2.12'","Warn: required approving review count is 1 on branch 'release/v2.11'","Warn: required approving review count is 1 on branch 'release/v2.10'","Warn: required approving review count is 1 on branch 'release/v2.9'","Warn: codeowners review is not required on branch 'main'","Warn: codeowners review is not required on branch 'release/v2.12'","Warn: codeowners review is not required on branch 'release/v2.11'","Warn: codeowners review is not required on branch 'release/v2.10'","Warn: codeowners review is not required on branch 'release/v2.9'","Info: 'last push approval' is required to merge on branch 'main'","Info: 'last push approval' is required to merge on branch 'release/v2.12'","Info: 'last push approval' is required to merge on branch 'release/v2.11'","Info: 'last push approval' is required to merge on branch 'release/v2.10'","Info: 'last push approval' is required to merge on branch 'release/v2.9'","Warn: 'up-to-date branches' is disabled on branch 'main'","Warn: 'up-to-date branches' is disabled on branch 'release/v2.11'","Warn: 'up-to-date branches' is disabled on branch 'release/v2.10'","Info: status check found to merge onto on branch 'main'","Warn: no status checks found to merge onto branch 'release/v2.12'","Info: status check found to merge onto on branch 'release/v2.11'","Info: status check found to merge onto on branch 'release/v2.10'","Warn: no status checks found to merge onto branch 'release/v2.9'","Info: PRs are required in order to make changes on branch 'main'","Info: PRs are required in order to make changes on branch 'release/v2.12'","Info: PRs are required in order to make changes on branch 'release/v2.11'","Info: PRs are required in order to make changes on branch 'release/v2.10'","Info: PRs are required in order to make changes on branch 'release/v2.9'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing shell code: \"foo(\" must be followed by ): Dockerfile-windows.dapper:6-13","Info: Possibly incomplete results: error parsing shell code: \"foo(\" must be followed by ): Dockerfile-windows.dapper:15-31","Info: Possibly incomplete results: error parsing shell code: \"foo(\" must be followed by ): Dockerfile-windows.dapper:34-47","Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered (: tests/validation/tests/Dockerfiles/windows/metrics/Dockerfile:5-18","Info: Possibly incomplete results: error parsing shell code: \"foo(\" must be followed by ): tests/validation/tests/Dockerfiles/windows/nginx/Dockerfile:6-10","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-testing-create-pr.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-create-pr.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-testing-create-pr.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-create-pr.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-testing-create-pr.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-create-pr.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-testing-restart-ci.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-restart-ci.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-testing-restart-ci.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-restart-ci.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-testing-restart-ci.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/ci-testing-restart-ci.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/controller-test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/controller-test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/controller-test.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/controller-test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fossa.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/fossa.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/fossa.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/fossa.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/fossa.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/fossa.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-get.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/go-get.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-get.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/go-get.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-get.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/go-get.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-get.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/go-get.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:182: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/hotfix-release.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/hotfix-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration-tests.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/integration-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote-to-stable.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/promote-to-stable.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/provisioning-tests.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/provisioning-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/provisioning-tests.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/provisioning-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pull-request.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/pull-request.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pull-request.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/pull-request.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pull-request.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/pull-request.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/push.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:183: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:187: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rcs-release.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/rcs-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:139: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:147: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:232: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:207: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/renovate-vault.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/renovate-vault.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/replace-env-value.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/replace-env-value.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/replace-env-value.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/replace-env-value.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/stale.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/system-agent-upgrade.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/system-agent-upgrade.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/system-agent-upgrade.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/system-agent-upgrade.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/system-agent-upgrade.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/system-agent-upgrade.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/system-agent-upgrade.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/system-agent-upgrade.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/unit-test.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/unit-test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/validate.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/validate.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-generated-code-changes.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/verify-generated-code-changes.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-generated-code-changes.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/verify-generated-code-changes.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-generated-code-changes.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/rancher/rancher/verify-generated-code-changes.yml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile-windows.dapper:1: pin your Docker image by updating library/golang:1.24 to library/golang:1.24@sha256:e155b5162f701b7ab2e6e7ea51cec1e5f6deffb9ab1b295cf7a697e81069b050","Warn: containerImage not pinned by hash: Dockerfile.dapper:1: pin your Docker image by updating registry.suse.com/bci/golang:1.24 to registry.suse.com/bci/golang:1.24@sha256:e66f7a31ec09f1a919e840f12398e129214e50ecb0daa126072c07fdece75558","Warn: containerImage not pinned by hash: package/Dockerfile:23","Warn: containerImage not pinned by hash: package/Dockerfile:24","Warn: containerImage not pinned by hash: package/Dockerfile:25","Warn: containerImage not pinned by hash: package/Dockerfile:26","Warn: containerImage not pinned by hash: package/Dockerfile:27","Warn: containerImage not pinned by hash: package/Dockerfile:29","Warn: containerImage not pinned by hash: package/Dockerfile:33","Warn: containerImage not pinned by hash: package/Dockerfile:45","Warn: containerImage not pinned by hash: package/Dockerfile:54","Warn: containerImage not pinned by hash: package/Dockerfile:63","Warn: containerImage not pinned by hash: package/Dockerfile:66","Warn: containerImage not pinned by hash: package/Dockerfile:72","Warn: containerImage not pinned by hash: package/Dockerfile:80","Warn: containerImage not pinned by hash: package/Dockerfile:89","Warn: containerImage not pinned by hash: package/Dockerfile:98","Warn: containerImage not pinned by hash: package/Dockerfile:104","Warn: containerImage not pinned by hash: package/Dockerfile:116","Warn: containerImage not pinned by hash: package/Dockerfile:324","Warn: containerImage not pinned by hash: package/Dockerfile:338","Warn: containerImage not pinned by hash: package/Dockerfile:360","Warn: containerImage not pinned by hash: package/Dockerfile:378","Warn: containerImage not pinned by hash: package/Dockerfile:391","Warn: containerImage not pinned by hash: package/Dockerfile:429","Warn: containerImage not pinned by hash: package/Dockerfile.installer:1","Warn: containerImage not pinned by hash: tests/scripts/custodian/Dockerfile:1: pin your Docker image by updating ubuntu:24.04 to ubuntu:24.04@sha256:7c06e91f61fa88c08cc74f7e1b7c69ae24910d745357e0dfe1d2c0322aaf20f9","Warn: containerImage not pinned by hash: tests/v2/codecoverage/Dockerfile.buildcodecoverage:1: pin your Docker image by updating registry.suse.com/bci/golang:1.24 to registry.suse.com/bci/golang:1.24@sha256:e66f7a31ec09f1a919e840f12398e129214e50ecb0daa126072c07fdece75558","Warn: containerImage not pinned by hash: tests/v2/codecoverage/Dockerfile.codecoverage:1: pin your Docker image by updating registry.suse.com/bci/golang:1.24 to registry.suse.com/bci/golang:1.24@sha256:e66f7a31ec09f1a919e840f12398e129214e50ecb0daa126072c07fdece75558","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:1","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:4","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:18","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:232","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:247","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile:272","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile.agent:8","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile.agent:30","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile.agent:32","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile.agent:34","Warn: containerImage not pinned by hash: tests/v2/codecoverage/package/Dockerfile.agent:48","Warn: containerImage not pinned by hash: tests/validation/Dockerfile.rke:1: pin your Docker image by updating python:3.11 to python:3.11@sha256:0dab67c838514eef83e6c9d2c0e53e960fc94237635e8996d08caeec98937abc","Warn: containerImage not pinned by hash: tests/validation/Dockerfile.v3api:1: pin your Docker image by updating python:3.11 to python:3.11@sha256:0dab67c838514eef83e6c9d2c0e53e960fc94237635e8996d08caeec98937abc","Warn: containerImage not pinned by hash: tests/validation/tests/Dockerfiles/testcontainer/Dockerfile:1: pin your Docker image by updating nginx to nginx@sha256:33e0bbc7ca9ecf108140af6288c7c9d1ecc77548cbfd3952fd8466a75edefe57","Warn: containerImage not pinned by hash: tests/validation/tests/Dockerfiles/unprivileged-testcontainer/Dockerfile:1","Warn: containerImage not pinned by hash: tests/validation/tests/Dockerfiles/windows/metrics/Dockerfile:3","Warn: containerImage not pinned by hash: tests/validation/tests/Dockerfiles/windows/nginx/Dockerfile:3","Warn: containerImage not pinned by hash: tests/validation/tests/Dockerfiles/windows/testcontainer/Dockerfile:3","Warn: downloadThenRun not pinned by hash: Dockerfile.dapper:22-24","Warn: downloadThenRun not pinned by hash: Dockerfile.dapper:27-29","Warn: downloadThenRun not pinned by hash: tests/scripts/custodian/Dockerfile:38","Warn: pipCommand not pinned by hash: tests/scripts/custodian/Dockerfile:42","Warn: downloadThenRun not pinned by hash: tests/v2/codecoverage/Dockerfile.buildcodecoverage:13-17","Warn: goCommand not pinned by hash: tests/v2/codecoverage/Dockerfile.codecoverage:20-24","Warn: goCommand not pinned by hash: tests/v2/codecoverage/Dockerfile.codecoverage:20-24","Warn: goCommand not pinned by hash: tests/v2/codecoverage/Dockerfile.codecoverage:20-24","Warn: pipCommand not pinned by hash: tests/validation/Dockerfile.rke:10-18","Warn: pipCommand not pinned by hash: tests/validation/Dockerfile.rke:10-18","Warn: pipCommand not pinned by hash: tests/validation/Dockerfile.v3api:19-49","Warn: pipCommand not pinned by hash: tests/validation/Dockerfile.v3api:19-49","Warn: goCommand not pinned by hash: tests/controllers/run_controller_tests.sh:5","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:76","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:80","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:82","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:89","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:93","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/install_k3s_master.sh:95","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:64","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:68","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:70","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:76","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:80","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/master/join_k3s_master.sh:82","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/worker/join_k3s_agent.sh:38","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/worker/join_k3s_agent.sh:42","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/k3s/worker/join_k3s_agent.sh:44","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/install_rke2_master.sh:57","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/install_rke2_master.sh:59","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/install_rke2_master.sh:76","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/join_rke2_master.sh:58","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/join_rke2_master.sh:60","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/master/join_rke2_master.sh:77","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/worker/join_rke2_agent.sh:55","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/worker/join_rke2_agent.sh:57","Warn: downloadThenRun not pinned by hash: tests/validation/tests/v3_api/resource/terraform/rke2/worker/join_rke2_agent.sh:72","Warn: downloadThenRun not pinned by hash: .github/workflows/integration-tests.yml:71","Warn: pipCommand not pinned by hash: .github/workflows/integration-tests.yml:81","Warn: pipCommand not pinned by hash: .github/workflows/integration-tests.yml:82","Warn: downloadThenRun not pinned by hash: .github/workflows/provisioning-tests.yml:84","Warn: pipCommand not pinned by hash: .github/workflows/validate.yml:28","Warn: pipCommand not pinned by hash: .github/workflows/validate.yml:29","Info:   0 out of  62 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  41 third-party GitHubAction dependencies pinned","Info:   0 out of   9 pipCommand dependencies pinned","Info:   3 out of   7 goCommand dependencies pinned","Info:   0 out of  47 containerImage dependencies pinned","Info:   0 out of  30 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"15 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GO-2025-3829 / GHSA-4vq8-7jfc-9cvp","Warn: Project is vulnerable to: GO-2025-3553 / GHSA-mh63-6h87-95cp","Warn: Project is vulnerable to: GO-2025-3648","Warn: Project is vulnerable to: GO-2025-3521","Warn: Project is vulnerable to: GO-2025-3547","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: PYSEC-2019-217 / GHSA-462w-v97r-4m45","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: PYSEC-2021-66 / GHSA-g3rq-g295-4j3m","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-19T17:45:56.743Z","repository_id":22986965,"created_at":"2025-08-19T17:45:56.743Z","updated_at":"2025-08-19T17:45:56.743Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30357614,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-10T21:41:54.280Z","status":"ssl_error","status_checked_at":"2026-03-10T21:40:59.357Z","response_time":106,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cattle","containers","docker","kubernetes","orchestration","rancher"],"created_at":"2024-07-30T19:00:51.795Z","updated_at":"2026-03-10T22:01:05.348Z","avatar_url":"https://github.com/rancher.png","language":"Go","readme":"# Rancher\n\n[![Docker Pulls](https://img.shields.io/docker/pulls/rancher/rancher.svg)](https://store.docker.com/community/images/rancher/rancher)\n[![Go Report Card](https://goreportcard.com/badge/github.com/rancher/rancher)](https://goreportcard.com/report/github.com/rancher/rancher)\n\nRancher is an open source container management platform built for organizations that deploy containers in production. Rancher makes it easy to run Kubernetes everywhere, meet IT requirements, and empower DevOps teams.\n\n## Stable Release\n\n\u003c!-- stable v2.13.3 DO NOT REMOVE THIS LINE --\u003e\n* v2.13.3 - `rancher/rancher:v2.13.3` / `rancher/rancher:stable` - Read the full release [notes](https://github.com/rancher/rancher/releases/tag/v2.13.3).\n  \nTo get automated notifications of our latest release, you can watch the announcements category in our [forums](http://forums.rancher.com/c/announcements), or subscribe to the RSS feed `https://forums.rancher.com/c/announcements.rss`.\n\n## Quick Start\n\n    sudo docker run -d --restart=unless-stopped -p 80:80 -p 443:443 --privileged rancher/rancher\n\nOpen your browser to https://localhost\n\n## Installation\n\nSee [Installing/Upgrading Rancher](https://ranchermanager.docs.rancher.com/v2.8/pages-for-subheaders/installation-and-upgrade) for all installation options.\n\n### Minimum Requirements\n\n* Operating Systems\n  * Please see [Support Matrix](https://rancher.com/support-matrix/) for specific OS versions for each Rancher version. Note that the link will default to the support matrix for the latest version of Rancher. Use the left navigation menu to select a different Rancher version. \n* Hardware \u0026 Software\n  * Please see [Installation Requirements](https://ranchermanager.docs.rancher.com/v2.8/pages-for-subheaders/installation-requirements) for hardware and software requirements.\n\n### Using Rancher\n\nTo learn more about using Rancher, please refer to our [Rancher Documentation](https://ranchermanager.docs.rancher.com/v2.8).\n\n## Source Code\n\nThis repo is a meta-repo used for packaging and contains the majority of Rancher codebase. For other Rancher projects and modules, [see go.mod](https://github.com/rancher/rancher/blob/release/v2.8/go.mod) for the full list.\n\nRancher also includes other open source libraries and projects, [see go.mod](https://github.com/rancher/rancher/blob/release/v2.8/go.mod) for the full list.\n\n## Build configuration\n\nRefer to the [build docs](docs/build.md) on how to customize the building and packaging of Rancher.\n\n## Support, Discussion, and Community\nIf you need any help with Rancher, please join us at either our [Rancher forums](http://forums.rancher.com/) or [Slack](https://slack.rancher.io/) where most of our team hangs out at.\n\nPlease submit any Rancher bugs, issues, and feature requests to [rancher/rancher](https://github.com/rancher/rancher/issues).\n\nFor security issues, please first check our [security policy](https://github.com/rancher/rancher/security) and email security-rancher@suse.com instead of posting a public issue in GitHub.  You may (but are not required to) use the GPG key located on [Keybase](https://keybase.io/rancher).\n\n# License\n\nCopyright (c) 2014-2025 [SUSE](http://rancher.com)\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n[http://www.apache.org/licenses/LICENSE-2.0](http://www.apache.org/licenses/LICENSE-2.0)\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n","funding_links":[],"categories":["Go","Container Operations","开源类库","Apps","Misc","Uncategorized","orchestration","Kubernetes","Open source library","Remote Container Manager / Orchestration","PaaS 平台列表","Shell","PaaS","HarmonyOS","其他__大数据","kubernetes","武器库","docker","Repos","Application Recommendation","K8S-Cluster-Manage","Rancher 1.0","Dashboards \u0026 Portals"],"sub_categories":["Orchestration","容器技术","Container","Uncategorized","Container Technology","Uptime Monitoring","Windows Manager","网络服务_其他","云原生","🛠️ DevOps","Tools 1.0"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Francher%2Francher","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Francher%2Francher","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Francher%2Francher/lists"}