{"id":20815294,"url":"https://github.com/sowoi/check-nextcloud-security","last_synced_at":"2026-06-11T00:31:04.415Z","repository":{"id":60908480,"uuid":"546614381","full_name":"sowoi/check-nextcloud-security","owner":"sowoi","description":"Check the security level of your Nextcloud instance with the Nextcloud Security API","archived":false,"fork":false,"pushed_at":"2026-04-22T11:13:47.000Z","size":4287,"stargazers_count":5,"open_issues_count":0,"forks_count":2,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-04-22T13:18:32.623Z","etag":null,"topics":["icinga","icinga2","icinga2-plugin","nagios-checks","nagios-plugin","nextcloud","nextcloud-server","python3","scan","security"],"latest_commit_sha":null,"homepage":"https://okxo.de/regularly-check-your-nextcloud-instance-for-vulnerabilities/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sowoi.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2022-10-06T11:12:04.000Z","updated_at":"2026-04-22T11:13:44.000Z","dependencies_parsed_at":"2025-07-24T12:32:18.945Z","dependency_job_id":"d9c9ff1b-263c-4a63-ad1e-fa1a555cc271","html_url":"https://github.com/sowoi/check-nextcloud-security","commit_stats":null,"previous_names":[],"tags_count":13,"template":false,"template_full_name":null,"purl":"pkg:github/sowoi/check-nextcloud-security","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sowoi%2Fcheck-nextcloud-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sowoi%2Fcheck-nextcloud-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sowoi%2Fcheck-nextcloud-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sowoi%2Fcheck-nextcloud-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sowoi","download_url":"https://codeload.github.com/sowoi/check-nextcloud-security/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sowoi%2Fcheck-nextcloud-security/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34177445,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-10T02:00:07.152Z","response_time":89,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["icinga","icinga2","icinga2-plugin","nagios-checks","nagios-plugin","nextcloud","nextcloud-server","python3","scan","security"],"created_at":"2024-11-17T21:21:00.770Z","updated_at":"2026-06-11T00:31:04.405Z","avatar_url":"https://github.com/sowoi.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003c!-- TOC --\u003e\n* [check-nextcloud-security](#check-nextcloud-security)\n* [Features](#features)\n* [Prerequisites](#prerequisites)\n* [Installation](#installation)\n * [Icinga2 / Nagios:](#icinga2--nagios-)\n* [CLI Usage](#cli-usage)\n * [Command](#command)\n* [Options:](#options)\n* [Rescan](#rescan)\n* [Example output](#example-output)\n* [License](#license)\n* [More](#more)\n\u003c!-- TOC --\u003e\n\n# check-nextcloud-security\nCheck the security level of your Nextcloud instance with the Nextcloud Security API\n\nThis check uses Nextcloud's own security scan at scan.nextcloud.com to check if your Nextcloud instance has any known vulnerabilities/risks.\n\n# Features\n- Debugging\n- Web proxy support\n\n\n# Prerequisites\n- Python3.10 or higher\n- Python3-requests module\n\n# Installation\n- Download check_nextcloud_security.py to your local Nextcloud server or wherever you want to run the check.\n- Install requirements using pip\n```\npip install -r requirements.txt\n```\n\n\n## Icinga2 / Nagios: \n- Put the Python script to your plugin folder. Usually /usr/lib/nagios/plugins/\n- Create a new command custom command:\n\n```\nobject CheckCommand \"check_nextcloud_security\" {\n import \"plugin-check-command\"\n command = [ PluginDir + \"/check_nextcloud_security.py\" ]\n\n arguments += {\n \"--host\" = {\n description = \"Nextcloud hostname or URL\"\n required = true\n value = \"$address$\"\n }\n\n \"--proxy\" = {\n description = \"HTTP/HTTPS proxy (optional)\"\n required = false\n }\n\n \"--rescan\" = {\n description = \"Trigger a new scan on each check (optional)\"\n set_if = \"$nextcloud_rescan$\"\n }\n\n \"--debug\" = {\n description = \"Enable debugging output (optional)\"\n set_if = \"$nextcloud_debug$\"\n }\n }\n}\n```\n\n- Create a new Service object.\n- Please do not run the query too often, or you will be banned. In the template below 24 hours are given. Normally, one check every 24 hours is sufficient. \n\n```\nobject Service \"Service: Nextcloud Security Scan\" {\n import \"generic-service\"\n host_name = \"YOUR NEXTCLOUD HOST\"\n check_command = \"check_nextcloud_security\"\n check_interval = 24h\n}\n```\n\n\n# CLI Usage\n- `python3 check_nextcloud_security.py -h` will show you a manual.\n\n## Command\n```\npython3 check_nextcloud_security.py --host \u003cHostname\u003e --rescan\n```\n\n# Options:\n| Option | Description | Default |\n|:---------------|:-------------------------------------------------------|:-------------|\n| `-H, --host` | Nextcloud server address (hostname or URL) | **required** |\n| `-P, --proxy` | Proxy server address | *None* |\n| `-r, --rescan` | Trigger a fresh scan each time (slower, more accurate) | *False* |\n| `-d, --debug` | Enable verbose debugging output | *False* |\n| `-h, --help` | Show help and exit | — |\n\n\n# Rescan\nToo many checks with `--rescan True` may lead to result no further scans being possible for a certain period of time. \nAs a rule, it is sufficient to perform one scan per day.\n\n# Example output\n\n```Shell\npython3 check_nextcloud_security.py -H nexcloud.example.com\nCRITICAL: This server version is end of life and has no security fixes anymore. \n Nextcloud 24.0.11.1 on nextcloud.example.com , rating is F , last scanned: 2023-05-30 07:48:58.000000\n\npython3 check_nextcloud_security.py -H nextcloud.example.com\nOK: Server is up to date. No known vulnerabilities \n Nextcloud 26.0.2.1 on nextcloud.example.com , rating is A+ , last scanned: 2023-05-29 08:50:58.000000\n \n \n```\n\n\n# License\nLicensed under the terms of GNU General Public License v3.0. See LICENSE file.\n\n# More\n[Dev-Site okxo.de](https://okxo.de/regularly-check-your-nextcloud-instance-for-vulnerabilities)\n\n![Linting](https://github.com/sowoi/check-nextcloud-security//actions/workflows/run-ruff-check.yml/badge.svg)\n![Unittests](https://github.com/sowoi/check-nextcloud-security//actions/workflows/run-tests.yml/badge.svg)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsowoi%2Fcheck-nextcloud-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsowoi%2Fcheck-nextcloud-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsowoi%2Fcheck-nextcloud-security/lists"}