{"id":13470874,"url":"https://github.com/redpanda-data/redpanda","last_synced_at":"2026-04-22T03:06:16.701Z","repository":{"id":36955199,"uuid":"309512982","full_name":"redpanda-data/redpanda","owner":"redpanda-data","description":"Redpanda is a streaming data platform for developers. Kafka API compatible. 10x faster. No ZooKeeper. No JVM!","archived":false,"fork":false,"pushed_at":"2025-12-21T09:14:52.000Z","size":139910,"stargazers_count":11469,"open_issues_count":647,"forks_count":704,"subscribers_count":136,"default_branch":"dev","last_synced_at":"2025-12-21T09:44:48.315Z","etag":null,"topics":["containers","cpp","event-driven","go","kafka","kubernetes","microservices","realtime","redpanda","seastar","storage-engine","stream-processing","streaming"],"latest_commit_sha":null,"homepage":"https://redpanda.com","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/redpanda-data.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"licenses/README.md","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2020-11-02T22:43:36.000Z","updated_at":"2025-12-21T06:23:33.000Z","dependencies_parsed_at":"2025-11-30T02:08:10.956Z","dependency_job_id":null,"html_url":"https://github.com/redpanda-data/redpanda","commit_stats":{"total_commits":29996,"total_committers":160,"mean_commits":187.475,"dds":0.869215895452727,"last_synced_commit":"50900b7dd64d366813c946b102307800413fe426"},"previous_names":["vectorizedio/redpanda"],"tags_count":827,"template":false,"template_full_name":null,"purl":"pkg:github/redpanda-data/redpanda","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/redpanda-data%2Fredpanda","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/redpanda-data%2Fredpanda/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/redpanda-data%2Fredpanda/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/redpanda-data%2Fredpanda/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/redpanda-data","download_url":"https://codeload.github.com/redpanda-data/redpanda/tar.gz/refs/heads/dev","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/redpanda-data%2Fredpanda/sbom","scorecard":{"id":113000,"data":{"date":"2025-08-04","repo":{"name":"github.com/redpanda-data/redpanda","commit":"c62bc0998b612c602d1e2835bdf36221f86ee3f1"},"scorecard":{"version":"v5.2.1-28-gc1d103a9","commit":"c1d103a9bb9f635ec7260bf9aa0699466fa4be0e"},"score":5.6,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#maintained"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#security-policy"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#cii-best-practices"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#dangerous-workflow"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: licenses/README.md:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#license"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/backport-on-merge.yml:15","Info: jobLevel 'contents' permission set to 'read': .github/workflows/buildkite-slash-commands.yml:21","Info: jobLevel 'contents' permission set to 'read': .github/workflows/close-backport-issues.yml:17","Info: jobLevel 'contents' permission set to 'read': .github/workflows/cloud-installpack-bk-trigger.yml:11","Info: jobLevel 'contents' permission set to 'read': .github/workflows/comment_added.yml:12","Info: jobLevel 'contents' permission set to 'read': .github/workflows/jira_issue_manage.yml:18","Info: jobLevel 'contents' permission set to 'read': .github/workflows/pr-labeler.yml:8","Info: jobLevel 'contents' permission set to 'read': .github/workflows/promote.yml:11","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release-rp-storage-tool.yml:20","Info: jobLevel 'contents' permission set to 'read': .github/workflows/slash-commands.yml:11","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/transform-sdk-release.yml:19","Info: jobLevel 'contents' permission set to 'read': .github/workflows/transform-sdk-release.yml:50","Info: jobLevel 'contents' permission set to 'read': .github/workflows/transform-sdk-release.yml:78","Info: topLevel 'contents' permission set to 'read': .github/workflows/backport-command.yml:17","Warn: no topLevel permission defined: .github/workflows/backport-on-merge.yml:1","Warn: no topLevel permission defined: .github/workflows/buildkite-slash-commands.yml:1","Warn: no topLevel permission defined: .github/workflows/close-backport-issues.yml:1","Warn: no topLevel permission defined: .github/workflows/cloud-installpack-bk-trigger.yml:1","Warn: no topLevel permission defined: .github/workflows/comment_added.yml:1","Warn: no topLevel permission defined: .github/workflows/jira_issue_manage.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-bazel-pkg-tool.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-cpp.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-golang.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-python.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-sh.yml:1","Warn: no topLevel permission defined: .github/workflows/lint-yaml.yml:1","Warn: no topLevel permission defined: .github/workflows/p.yml:1","Warn: no topLevel permission defined: .github/workflows/pr-labeler.yml:1","Warn: no topLevel permission defined: .github/workflows/promote.yml:1","Warn: no topLevel permission defined: .github/workflows/publish-apache-polaris-python-client.yml:1","Warn: no topLevel permission defined: .github/workflows/release-rp-storage-tool.yml:1","Warn: no topLevel permission defined: .github/workflows/render-pr-body-release-notes.yml:1","Warn: no topLevel permission defined: .github/workflows/rp-storage-tool-checks.yml:1","Warn: no topLevel permission defined: .github/workflows/rpk-build.yml:1","Warn: no topLevel permission defined: .github/workflows/slash-commands.yml:1","Warn: no topLevel permission defined: .github/workflows/stale.yml:1","Warn: no topLevel permission defined: .github/workflows/transform-sdk-build.yml:1","Warn: no topLevel permission defined: .github/workflows/transform-sdk-release.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#token-permissions"}},{"name":"Branch-Protection","score":4,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'dev'","Info: 'force pushes' disabled on branch 'dev'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'dev'","Warn: 'stale review dismissal' is disabled on branch 'dev'","Warn: required approving review count is 1 on branch 'dev'","Warn: codeowners review is not required on branch 'dev'","Warn: 'last push approval' is disabled on branch 'dev'","Warn: 'up-to-date branches' is disabled on branch 'dev'","Info: status check found to merge onto on branch 'dev'","Info: PRs are required in order to make changes on branch 'dev'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v25.2.1 not signed: https://api.github.com/repos/redpanda-data/redpanda/releases/236115207","Warn: release artifact v25.1.9 not signed: https://api.github.com/repos/redpanda-data/redpanda/releases/234664789","Warn: release artifact v24.3.18 not signed: https://api.github.com/repos/redpanda-data/redpanda/releases/232883586","Warn: release artifact v24.2.27 not signed: https://api.github.com/repos/redpanda-data/redpanda/releases/232778776","Warn: release artifact v25.1.8 not signed: https://api.github.com/repos/redpanda-data/redpanda/releases/232562927","Warn: release artifact v25.2.1 does not have provenance: https://api.github.com/repos/redpanda-data/redpanda/releases/236115207","Warn: release artifact v25.1.9 does not have provenance: https://api.github.com/repos/redpanda-data/redpanda/releases/234664789","Warn: release artifact v24.3.18 does not have provenance: https://api.github.com/repos/redpanda-data/redpanda/releases/232883586","Warn: release artifact v24.2.27 does not have provenance: https://api.github.com/repos/redpanda-data/redpanda/releases/232778776","Warn: release artifact v25.1.8 does not have provenance: https://api.github.com/repos/redpanda-data/redpanda/releases/232562927"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#signed-releases"}},{"name":"Binary-Artifacts","score":9,"reason":"binaries present in source code","details":["Warn: binary detected: tests/java/iceberg-rest-catalog/gradle/wrapper/gradle-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/lint-golang.yml:16"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#packaging"}},{"name":"Fuzzing","score":10,"reason":"project is fuzzed","details":["Info: CppLibFuzzer integration found: src/v/bytes/tests/iobuf_fuzz.cc:578","Info: CppLibFuzzer integration found: src/v/cloud_storage/tests/segment_meta_cstore_fuzz.cc:561","Info: CppLibFuzzer integration found: src/v/serde/test/fuzz.cc:251","Info: CppLibFuzzer integration found: src/v/bytes/tests/iobuf_fuzz.cc:578","Info: CppLibFuzzer integration found: src/v/cloud_storage/tests/segment_meta_cstore_fuzz.cc:561","Info: CppLibFuzzer integration found: src/v/serde/test/fuzz.cc:251"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#fuzzing"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport-command.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport-command.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport-command.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:158: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-command.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-command.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport-on-merge.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-on-merge.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-on-merge.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-on-merge.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-on-merge.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-on-merge.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport-on-merge.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/backport-on-merge.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkite-slash-commands.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/buildkite-slash-commands.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkite-slash-commands.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/buildkite-slash-commands.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkite-slash-commands.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/buildkite-slash-commands.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkite-slash-commands.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/buildkite-slash-commands.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/close-backport-issues.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/close-backport-issues.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/cloud-installpack-bk-trigger.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/cloud-installpack-bk-trigger.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/cloud-installpack-bk-trigger.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/cloud-installpack-bk-trigger.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cloud-installpack-bk-trigger.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/cloud-installpack-bk-trigger.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/comment_added.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/comment_added.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/comment_added.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/comment_added.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/comment_added.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/comment_added.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/comment_added.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/comment_added.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/jira_issue_manage.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/jira_issue_manage.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/jira_issue_manage.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/jira_issue_manage.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/jira_issue_manage.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/jira_issue_manage.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/jira_issue_manage.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/jira_issue_manage.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-bazel-pkg-tool.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-bazel-pkg-tool.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-bazel-pkg-tool.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-bazel-pkg-tool.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-bazel-pkg-tool.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-bazel-pkg-tool.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-cpp.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-cpp.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-golang.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-golang.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-golang.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-golang.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-golang.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-golang.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-golang.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-golang.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-python.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-python.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-sh.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-sh.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-yaml.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/lint-yaml.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/p.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/p.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-labeler.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/pr-labeler.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/promote.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/promote.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/promote.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/promote.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-apache-polaris-python-client.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/publish-apache-polaris-python-client.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-apache-polaris-python-client.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/publish-apache-polaris-python-client.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-apache-polaris-python-client.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/publish-apache-polaris-python-client.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-apache-polaris-python-client.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/publish-apache-polaris-python-client.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-rp-storage-tool.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/release-rp-storage-tool.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-rp-storage-tool.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/release-rp-storage-tool.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/render-pr-body-release-notes.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/render-pr-body-release-notes.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rp-storage-tool-checks.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rp-storage-tool-checks.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rpk-build.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rpk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rpk-build.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rpk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rpk-build.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rpk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rpk-build.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/rpk-build.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/slash-commands.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/slash-commands.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/slash-commands.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/slash-commands.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/slash-commands.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/slash-commands.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/stale.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:230: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:232: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:265: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:183: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:188: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-build.yml:208: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-build.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/transform-sdk-release.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/redpanda-data/redpanda/transform-sdk-release.yml/dev?enable=pin","Warn: containerImage not pinned by hash: bazel/toolchain/Dockerfile.llvm:1","Warn: containerImage not pinned by hash: bazel/toolchain/Dockerfile.sysroot:1","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:15","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:16","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:44","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:52","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:64","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:75","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:83","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:94","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:103","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:111","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:119","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:127","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:136","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:144","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:152","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:160","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:168","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:177","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:185","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:194","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:203","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:211","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:219","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:227","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:236","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:244","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:253","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:262","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:269","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:278","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:287","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:294","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:301","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:308","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:316","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:322","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:331","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:340","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:348","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:364","Warn: containerImage not pinned by hash: tests/docker/Dockerfile:371","Warn: containerImage not pinned by hash: tests/docker/dns/Dockerfile:1","Warn: containerImage not pinned by hash: tools/docker/Dockerfile:3","Warn: containerImage not pinned by hash: tools/docker/bazel.dockerfile:3","Warn: pipCommand not pinned by hash: tests/docker/Dockerfile:393","Warn: pipCommand not pinned by hash: tests/docker/Dockerfile:402-403","Warn: pipCommand not pinned by hash: tests/docker/Dockerfile:402-403","Warn: pipCommand not pinned by hash: tests/docker/ducktape-deps/arroyo:6","Warn: pipCommand not pinned by hash: tests/docker/ducktape-deps/flink:41","Warn: downloadThenRun not pinned by hash: tests/docker/ducktape-deps/rust:5","Warn: downloadThenRun not pinned by hash: tests/docker/ducktape-deps/tool-pkgs:42","Warn: pipCommand not pinned by hash: .github/workflows/comment_added.yml:23","Warn: pipCommand not pinned by hash: .github/workflows/jira_issue_manage.yml:32","Warn: pipCommand not pinned by hash: .github/workflows/lint-python.yml:26","Warn: pipCommand not pinned by hash: .github/workflows/render-pr-body-release-notes.yml:30","Warn: npmCommand not pinned by hash: .github/workflows/transform-sdk-build.yml:244","Warn: pipCommand not pinned by hash: .github/workflows/transform-sdk-release.yml:69","Info:   0 out of  56 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  40 third-party GitHubAction dependencies pinned","Info:   0 out of  46 containerImage dependencies pinned","Info:   0 out of  10 pipCommand dependencies pinned","Info:   2 out of   2 goCommand dependencies pinned","Info:   0 out of   2 downloadThenRun dependencies pinned","Info:   1 out of   2 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"56 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: RUSTSEC-2025-0046","Warn: Project is vulnerable to: GHSA-9548-qrrj-x5pj","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: GHSA-gmj6-6f8f-6699","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99","Warn: Project is vulnerable to: GO-2023-1930 / GHSA-9x44-9pgq-cf45","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GHSA-h46c-h94j-95f3","Warn: Project is vulnerable to: GHSA-jjjh-jjxp-wpff","Warn: Project is vulnerable to: GHSA-2x2g-32r7-p4x8","Warn: Project is vulnerable to: GHSA-55g7-9cwv-5qfv","Warn: Project is vulnerable to: GHSA-fjpj-2g6w-x25r","Warn: Project is vulnerable to: GHSA-pqr6-cmr2-h8hf","Warn: Project is vulnerable to: GHSA-qcwq-55hx-v3vh","Warn: Project is vulnerable to: GHSA-r7pg-v2c8-mfg3","Warn: Project is vulnerable to: GHSA-4265-ccf5-phj5","Warn: Project is vulnerable to: GHSA-4g9r-vxhx-9pgx","Warn: Project is vulnerable to: GHSA-cgwf-w82q-5jrr","Warn: Project is vulnerable to: GHSA-2qrg-x229-3v8q","Warn: Project is vulnerable to: GHSA-65fg-84f6-3jq3","Warn: Project is vulnerable to: GHSA-f7vh-qwp3-x37m","Warn: Project is vulnerable to: GHSA-fp5r-v3w9-4333","Warn: Project is vulnerable to: GHSA-w9p3-5cr8-m3jj","Warn: Project is vulnerable to: GHSA-cj7v-27pg-wf7q","Warn: Project is vulnerable to: GHSA-hmr7-m48g-48f6","Warn: Project is vulnerable to: GHSA-qh8g-58pp-2wxh","Warn: Project is vulnerable to: GHSA-26vr-8j45-3r4w","Warn: Project is vulnerable to: GHSA-86wm-rrjm-8wh8","Warn: Project is vulnerable to: GHSA-g8m5-722r-8whq","Warn: Project is vulnerable to: GHSA-m394-8rww-3jr7","Warn: Project is vulnerable to: GHSA-m6cp-vxjx-65j6","Warn: Project is vulnerable to: GHSA-p26g-97m4-6q7c","Warn: Project is vulnerable to: GHSA-q4rv-gq96-w7c5","Warn: Project is vulnerable to: GHSA-qw69-rqj8-6qw8","Warn: Project is vulnerable to: GHSA-g3wg-6mcf-8jj6","Warn: Project is vulnerable to: GHSA-58qw-p7qm-5rvh","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: RUSTSEC-2021-0145 / GHSA-g98v-hv3f-hcfr","Warn: Project is vulnerable to: RUSTSEC-2024-0375","Warn: Project is vulnerable to: RUSTSEC-2024-0421 / GHSA-h97m-ww89-6jmq","Warn: Project is vulnerable to: RUSTSEC-2024-0358 / GHSA-c2hf-vcmr-qjrf","Warn: Project is vulnerable to: RUSTSEC-2025-0010","Warn: Project is vulnerable to: GHSA-4p46-pwfr-66x6","Warn: Project is vulnerable to: RUSTSEC-2025-0009","Warn: Project is vulnerable to: GHSA-c86p-w88r-qvqr","Warn: Project is vulnerable to: GHSA-rr8g-9fpq-6wmg","Warn: Project is vulnerable to: RUSTSEC-2025-0023"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/c1d103a9bb9f635ec7260bf9aa0699466fa4be0e/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-15T15:42:46.628Z","repository_id":36955199,"created_at":"2025-08-15T15:42:46.628Z","updated_at":"2025-08-15T15:42:46.628Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28050878,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-12-26T02:00:06.189Z","response_time":55,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["containers","cpp","event-driven","go","kafka","kubernetes","microservices","realtime","redpanda","seastar","storage-engine","stream-processing","streaming"],"created_at":"2024-07-31T16:00:36.848Z","updated_at":"2025-12-26T09:11:42.948Z","avatar_url":"https://github.com/redpanda-data.png","language":"C++","readme":"# Redpanda\n\n[![Documentation](https://img.shields.io/badge/documentation-black)](https://redpanda.com/documentation)\n[![Slack](https://img.shields.io/badge/slack-purple)](https://redpanda.com/slack)\n[![Twitter](https://img.shields.io/twitter/follow/redpandadata.svg?style=social\u0026label=Follow)](https://twitter.com/intent/follow?screen_name=redpandadata)\n[![Redpanda University](https://img.shields.io/badge/Redpanda%20University-black)](https://university.redpanda.com/)\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://www.redpanda.com/\"\u003e\u003cimg src=\"docs/icon-redpanda.svg\" alt=\"redpanda icon\" width=\"400\"\u003e\u003c/a\u003e\n\u003c/p\u003e\n\nRedpanda is the most complete, Apache Kafka®-compatible streaming data platform, designed from the ground up to be lighter, faster, and simpler to operate. Free from ZooKeeper™ and JVMs, it prioritizes an end-to-end developer experience with a huge ecosystem of connectors, configurable tiered storage, and more.\n\n# Table of Contents\n\n- [Get started](#get-started)\n  - [Prebuilt packages](#prebuilt-packages)\n    - [Debian/Ubuntu](#debianubuntu)\n    - [Fedora/RedHat/Amazon Linux](#fedoraredhatamazon-linux)\n    - [macOS](#macos)\n    - [Other Linux environments](#other-linux-environments)\n  - [Build manually](#build-manually)\n  - [Release candidate builds](#release-candidate-builds)\n    - [RC releases on Debian/Ubuntu](#rc-releases-on-debianubuntu)\n    - [RC releases on Fedora/RedHat/Amazon Linux](#rc-releases-on-fedoraredhatamazon-linux)\n    - [RC releases on Docker](#rc-releases-on-docker)\n- [Community](#community)\n- [Resources](#resources)\n\n# Get started\n\n## Prebuilt packages\n\nRedpanda Data recommends using the following free, prebuilt stable releases.\n\n### Debian/Ubuntu\n\n```\ncurl -1sLf \\\n  'https://dl.redpanda.com/nzc4ZYQK3WRGd9sy/redpanda/cfg/setup/bash.deb.sh' \\\n  | sudo -E bash\n\nsudo apt-get install redpanda\n```\n\n### Fedora/RedHat/Amazon Linux\n\n```\ncurl -1sLf \\\n  'https://dl.redpanda.com/nzc4ZYQK3WRGd9sy/redpanda/cfg/setup/bash.rpm.sh' \\\n  | sudo -E bash\n\nsudo yum install redpanda\n```\n\n### macOS\n\nDownload the `rpk` [binary here](https://github.com/redpanda-data/redpanda/releases). Docker is required on MacOS.\n\n```\nbrew install redpanda-data/tap/redpanda \u0026\u0026 rpk container start\n```\n\n### Other Linux environments\n\nTo install from a `.tar.gz` archive, download the file and extract it into `/opt/redpanda`.\n\nFor amd64:\n\n```\ncurl -LO https://vectorized-public.s3.us-west-2.amazonaws.com/releases/redpanda/25.2.7/redpanda-25.2.7-amd64.tar.gz\n```\n\nFor arm64:\n\n```\ncurl -LO https://vectorized-public.s3.us-west-2.amazonaws.com/releases/redpanda/25.2.7/redpanda-25.2.7-arm64.tar.gz\n```\n\nReplace `25.2.7` with the version you want to download. See [Release Notes](https://github.com/redpanda-data/redpanda/releases) for available releases.\n\n## Build Manually\n\nRedpanda Data uses [Bazel](https://bazel.build/) as the build system. Bazel automatically manages most of the toolchains and third-party dependencies.\n\nWe rely on [bazelisk](https://github.com/bazelbuild/bazelisk) to get the right\nversion of bazel needed for the build. You can for example install it as follows\nand add it to your $PATH (or use one of the other suggested ways from their\nrepo).\n\n```\nwget -O ~/bin/bazel https://github.com/bazelbuild/bazelisk/releases/latest/download/bazelisk-linux-amd64 \u0026\u0026 chmod +x ~/bin/bazel\n```\n\nThere are a few system libraries and preinstalled tools our build assumes are\navailable locally. To bootstrap and build redpanda along with all its tests.\n\n```bash\nsudo ./bazel/install-deps.sh\nbazel build --config=release //...\n```\n\nFor more build configurations, see `.bazelrc`.\n\n## Release candidate builds\n\nRedpanda Data creates a release candidate (RC) build when we get close to a new release, and we publish it to make new features available for testing.\nRC builds are not recommended for production use.\n\n### RC releases on Debian/Ubuntu\n\n```bash\ncurl -1sLf \\\n  'https://dl.redpanda.com/E4xN1tVe3Xy60GTx/redpanda-unstable/setup.deb.sh' \\\n  | sudo -E bash\n\nsudo apt-get install redpanda\n```\n\n### RC releases on Fedora/RedHat/Amazon Linux\n\n```bash\ncurl -1sLf \\\n  'https://dl.redpanda.com/E4xN1tVe3Xy60GTx/redpanda-unstable/setup.rpm.sh' \\\n  | sudo -E bash\n\nsudo yum install redpanda\n```\n\n### RC releases on Docker\n\nExample with `v25.1.1-rc1`:\n\n```bash\ndocker pull docker.redpanda.com/redpandadata/redpanda-unstable:v25.1.1-rc1\n```\n\n# Community\n\n- [Slack](https://redpanda.com/slack): This is the primary way the community interacts in real time. :)\n- [Github Discussions](https://github.com/redpanda-data/redpanda/discussions): This is for longer, async, thoughtful discussions.\n- [GitHub Issues](https://github.com/redpanda-data/redpanda/issues): This is reserved only for actual issues. Please use the mailing list for discussions.\n- [Code of Conduct](./CODE_OF_CONDUCT.md)\n- [Contribute to the Code](./CONTRIBUTING.md)\n\n# Resources\n\n- [Redpanda Documentation](https://docs.redpanda.com/home/)\n- [Redpanda Blog](https://www.redpanda.com/blog)\n- [Upcoming Redpanda Events](https://www.redpanda.com/events)\n- [Redpanda Support](https://support.redpanda.com/)\n- [Redpanda University](https://university.redpanda.com/)\n","funding_links":[],"categories":["C++","Networking","Infrastructure","Building with Bazel","Table of Contents","streaming","Repositories","Backend \u0026 Infrastructure","Testing \u0026 Development"],"sub_categories":["Data Pipeline","Local Development"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fredpanda-data%2Fredpanda","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fredpanda-data%2Fredpanda","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fredpanda-data%2Fredpanda/lists"}