{"id":13540093,"url":"https://github.com/shred/acme4j","last_synced_at":"2026-04-06T21:00:53.830Z","repository":{"id":2774561,"uuid":"47419635","full_name":"shred/acme4j","owner":"shred","description":"Java client for ACME (Let's Encrypt)","archived":false,"fork":false,"pushed_at":"2026-04-05T07:45:20.000Z","size":3312,"stargazers_count":582,"open_issues_count":6,"forks_count":103,"subscribers_count":20,"default_branch":"master","last_synced_at":"2026-04-05T08:24:36.677Z","etag":null,"topics":["acme-protocol","java-client","letsencrypt"],"latest_commit_sha":null,"homepage":"https://acme4j.shredzone.org","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/shred.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE-APL.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"github":"shred","ko_fi":"shredzone"}},"created_at":"2015-12-04T17:40:00.000Z","updated_at":"2026-04-05T07:45:26.000Z","dependencies_parsed_at":"2023-10-11T07:01:31.266Z","dependency_job_id":"7a00bd09-9661-4e87-a73c-e9783020901b","html_url":"https://github.com/shred/acme4j","commit_stats":{"total_commits":827,"total_committers":22,"mean_commits":37.59090909090909,"dds":"0.058041112454655375","last_synced_commit":"01249294c86ad8e9b5d36a990ab7c2e5e91d8ff4"},"previous_names":[],"tags_count":45,"template":false,"template_full_name":null,"purl":"pkg:github/shred/acme4j","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shred%2Facme4j","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shred%2Facme4j/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shred%2Facme4j/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shred%2Facme4j/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/shred","download_url":"https://codeload.github.com/shred/acme4j/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/shred%2Facme4j/sbom","scorecard":{"id":821003,"data":{"date":"2025-08-11","repo":{"name":"github.com/shred/acme4j","commit":"dc7182ca1f9faf7613303bd0c59d520c9f73e355"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.4,"checks":[{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/ci.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Maintained","score":10,"reason":"11 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE-APL.txt:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE-APL.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v3.5.1 not signed: https://api.github.com/repos/shred/acme4j/releases/200834021","Warn: release artifact v3.5.0 not signed: https://api.github.com/repos/shred/acme4j/releases/196824166","Warn: release artifact v3.4.0 not signed: https://api.github.com/repos/shred/acme4j/releases/170753292","Warn: release artifact v3.3.1 not signed: https://api.github.com/repos/shred/acme4j/releases/159406729","Warn: release artifact v3.3.0 not signed: https://api.github.com/repos/shred/acme4j/releases/155894326","Warn: release artifact v3.5.1 does not have provenance: https://api.github.com/repos/shred/acme4j/releases/200834021","Warn: release artifact v3.5.0 does not have provenance: https://api.github.com/repos/shred/acme4j/releases/196824166","Warn: release artifact v3.4.0 does not have provenance: https://api.github.com/repos/shred/acme4j/releases/170753292","Warn: release artifact v3.3.1 does not have provenance: https://api.github.com/repos/shred/acme4j/releases/159406729","Warn: release artifact v3.3.0 does not have provenance: https://api.github.com/repos/shred/acme4j/releases/155894326"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/shred/acme4j/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/shred/acme4j/ci.yml/master?enable=pin","Warn: containerImage not pinned by hash: acme4j-it/src/main/docker/challtestsrv.dockerfile:1: pin your Docker image by updating ghcr.io/letsencrypt/pebble-challtestsrv:latest to ghcr.io/letsencrypt/pebble-challtestsrv:latest@sha256:c6ea5f6193517b3c7a02431b928234caf9db29a7a8abca4c0b337403468b650d","Warn: containerImage not pinned by hash: acme4j-it/src/main/docker/challtestsrv.dockerfile:3: pin your Docker image by updating alpine to alpine@sha256:4bcff63911fcb4448bd4fdacec207030997caf25e9bea4045fa6c8c44de311d1","Info:   0 out of   2 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   2 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-23T15:35:33.907Z","repository_id":2774561,"created_at":"2025-08-23T15:35:33.907Z","updated_at":"2025-08-23T15:35:33.907Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31489427,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-06T17:22:55.647Z","status":"ssl_error","status_checked_at":"2026-04-06T17:22:54.741Z","response_time":112,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["acme-protocol","java-client","letsencrypt"],"created_at":"2024-08-01T09:01:40.023Z","updated_at":"2026-04-06T21:00:53.806Z","avatar_url":"https://github.com/shred.png","language":"Java","funding_links":["https://github.com/sponsors/shred","https://ko-fi.com/shredzone"],"categories":["\u003ca id=\"862af330f45f21fbb0d495837fc7e879\"\u003e\u003c/a\u003e工具","安全","Cryptography"],"sub_categories":["\u003ca id=\"764122f9a7cf936cd9bce316b09df5aa\"\u003e\u003c/a\u003e认证\u0026\u0026Authenticate"],"readme":"# ACME Java Client ![build status](https://shredzone.org/badge/acme4j.svg) ![maven central](https://shredzone.org/maven-central/org.shredzone.acme4j/acme4j/badge.svg)\n\nThis is a Java client for the _Automatic Certificate Management Environment_ (ACME) protocol as specified in [RFC 8555](https://tools.ietf.org/html/rfc8555).\n\nACME is a protocol that a certificate authority (CA) and an applicant can use to automate the process of verification and certificate issuance.\n\nThis Java client helps to connect to an ACME server, and performing all necessary steps to manage certificates.\n\n## Features\n\n* Mature and stable code base. First release was in December 2015!\n* Fully [RFC 8555](https://tools.ietf.org/html/rfc8555) compliant\n* Supports the `http-01`, `dns-01`, and `tls-alpn-01` ([RFC 8737](https://tools.ietf.org/html/rfc8737)) challenges\n* Supports [RFC 8738](https://tools.ietf.org/html/rfc8738) IP identifier validation\n* Supports [RFC 8739](https://tools.ietf.org/html/rfc8739) short-term automatic certificate renewal (experimental)\n* Supports [RFC 8823](https://tools.ietf.org/html/rfc8823) for S/MIME certificates (experimental)\n* Supports [RFC 9444](https://tools.ietf.org/html/rfc9444) for subdomain validation\n* Supports [RFC 9773](https://tools.ietf.org/html/rfc9773) for renewal information\n* Supports [draft-ietf-acme-profiles-01](https://datatracker.ietf.org/doc/draft-ietf-acme-profiles/) for certificate profiles (experimental)\n* Supports [draft-ietf-acme-dns-account-label-02](https://datatracker.ietf.org/doc/draft-ietf-acme-dns-account-label/) for DNS labeled with ACME account ID challenges (experimental)\n* Supports [draft-ietf-acme-dns-persist-01](https://datatracker.ietf.org/doc/draft-ietf-acme-dns-persist/) for dns-persist-01 challenges (experimental)\n* Easy to use Java API\n* Requires JRE 17 or higher\n* Supports [Actalis](https://www.actalis.com/), [Google Trust Services](https://pki.goog/), [Let's Encrypt](https://letsencrypt.org/), [SSL.com](https://www.ssl.com/), [ZeroSSL](https://zerossl.com/), and **all other CAs that comply with the ACME protocol (RFC 8555)**. Note that _acme4j_ is an independent project that is not supported or endorsed by any of the CAs.\n* Built with maven, packages available at [Maven Central](http://search.maven.org/#search|ga|1|g%3A%22org.shredzone.acme4j%22)\n* Extensive unit and integration tests\n* Adheres to [Semantic Versioning](https://semver.org/)\n\n## Dependencies\n\n* [Bouncy Castle](https://www.bouncycastle.org/)\n* [jose4j](https://bitbucket.org/b_c/jose4j/wiki/Home)\n* [slf4j](http://www.slf4j.org/)\n* For `acme4j-smime`: [Jakarta Mail](https://eclipse-ee4j.github.io/mail/), [Bouncy Castle](https://www.bouncycastle.org/)\n\n## Usage\n\n* See the [online documentation](https://shredzone.org/maven/acme4j/) about how to use _acme4j_.\n* For a quick start, take a look at [the source code of an example](https://shredzone.org/maven/acme4j/example.html).\n\n## Announcements\n\nFollow our Mastodon feed for release notes and other acme4j related news.\n\n* Mastodon: `@acme4j@foojay.social`\n* RSS: https://foojay.social/@acme4j.rss\n\n## Contribute\n\n* Fork the [Source code at Codeberg](https://codeberg.org/shred/acme4j) or [GitHub](https://github.com/shred/acme4j). Feel free to send pull requests (see [Contributing](CONTRIBUTING.md) for the rules).\n* Found a bug? [File a bug report!](https://codeberg.org/shred/acme4j/issues) ([GitHub](https://github.com/shred/acme4j/issues))\n\n## License\n\n_acme4j_ is open source software. The source code is distributed under the terms of [Apache License 2.0](http://www.apache.org/licenses/LICENSE-2.0).\n\n## Acknowledgements\n\n* I would like to thank Brian Campbell and all the other [jose4j](https://bitbucket.org/b_c/jose4j/wiki/Home) developers. _acme4j_ would not exist without your excellent work.\n* Thanks to [Daniel McCarney](https://github.com/cpu) for his help with the ACME protocol, Pebble, and Boulder.\n* [Ulrich Krause](https://github.com/eknori) for his help to make _acme4j_ run on IBM Java VMs.\n* I also like to thank [everyone who contributed to _acme4j_](https://codeberg.org/shred/acme4j/activity/contributors).\n* The Mastodon account is hosted by [foojay.io](https://foojay.io).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fshred%2Facme4j","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fshred%2Facme4j","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fshred%2Facme4j/lists"}