{"id":13550823,"url":"https://github.com/timescale/promscale","last_synced_at":"2025-09-27T10:30:44.059Z","repository":{"id":36953805,"uuid":"252745692","full_name":"timescale/promscale","owner":"timescale","description":"[DEPRECATED] Promscale is a unified metric and trace observability backend for Prometheus, Jaeger and OpenTelemetry built on PostgreSQL and TimescaleDB.","archived":true,"fork":false,"pushed_at":"2024-03-28T23:03:17.000Z","size":18261,"stargazers_count":1321,"open_issues_count":131,"forks_count":169,"subscribers_count":22,"default_branch":"master","last_synced_at":"2025-06-16T07:57:34.491Z","etag":null,"topics":["deprecated"],"latest_commit_sha":null,"homepage":"https://www.timescale.com/promscale","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/timescale.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-04-03T13:47:41.000Z","updated_at":"2025-05-26T16:25:17.000Z","dependencies_parsed_at":"2023-02-19T03:30:50.160Z","dependency_job_id":"fd188dc2-2b5a-48df-b5f9-f24998565b28","html_url":"https://github.com/timescale/promscale","commit_stats":{"total_commits":1788,"total_committers":81,"mean_commits":"22.074074074074073","dds":0.7416107382550335,"last_synced_commit":"6ee8545bf30d3bd1ba778cba1736eb0ac21169fe"},"previous_names":["timescale/timescale-prometheus"],"tags_count":44,"template":false,"template_full_name":null,"purl":"pkg:github/timescale/promscale","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Fpromscale","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Fpromscale/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Fpromscale/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Fpromscale/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/timescale","download_url":"https://codeload.github.com/timescale/promscale/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Fpromscale/sbom","scorecard":{"id":885868,"data":{"date":"2025-08-11","repo":{"name":"github.com/timescale/promscale","commit":"6ee8545bf30d3bd1ba778cba1736eb0ac21169fe"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.2,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":0,"reason":"dangerous workflow patterns detected","details":["Warn: script injection with untrusted input 'github.head_ref || github.ref_name': .github/workflows/go-e2e.yml:54","Warn: script injection with untrusted input 'github.head_ref || github.ref_name': .github/workflows/integration.yml:39"],"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Maintained","score":0,"reason":"project is archived","details":["Warn: Repository is archived."],"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/benchmark.yaml:1","Warn: no topLevel permission defined: .github/workflows/docker-compose-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/go-e2e.yml:1","Warn: no topLevel permission defined: .github/workflows/go-releaser.yml:1","Warn: no topLevel permission defined: .github/workflows/go-report-card.yml:1","Warn: no topLevel permission defined: .github/workflows/go-scheduled.yml:1","Warn: no topLevel permission defined: .github/workflows/go.yml:1","Warn: no topLevel permission defined: .github/workflows/gosec.yml:1","Warn: no topLevel permission defined: .github/workflows/integration.yml:1","Warn: no topLevel permission defined: .github/workflows/mixin.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Pinned-Dependencies","score":1,"reason":"dependency not pinned by hash detected -- score normalized to 1","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/benchmark.yaml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/benchmark.yaml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker-compose-tests.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/docker-compose-tests.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker-compose-tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/docker-compose-tests.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:148: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:162: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:187: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:193: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-e2e.yml:201: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-e2e.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-releaser.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-releaser.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-releaser.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-releaser.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-releaser.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-releaser.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-releaser.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-releaser.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go-releaser.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-releaser.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-scheduled.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go-scheduled.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/go.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/go.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gosec.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/gosec.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/gosec.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/gosec.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/integration.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/integration.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mixin.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/mixin.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mixin.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/mixin.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mixin.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/timescale/promscale/mixin.yml/master?enable=pin","Warn: containerImage not pinned by hash: build/Dockerfile:2","Warn: containerImage not pinned by hash: build/Dockerfile:19: pin your Docker image by updating busybox to busybox@sha256:ab33eacc8251e3807b85bb6dba570e4698c3998eca6f0fc2ccb60575a563ea74","Warn: containerImage not pinned by hash: build/prom-migrator/Dockerfile:2","Warn: containerImage not pinned by hash: build/prom-migrator/Dockerfile:17: pin your Docker image by updating busybox to busybox@sha256:ab33eacc8251e3807b85bb6dba570e4698c3998eca6f0fc2ccb60575a563ea74","Warn: goCommand not pinned by hash: .github/workflows/mixin.yml:47","Info:   0 out of  40 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  10 third-party GitHubAction dependencies pinned","Info:   0 out of   4 containerImage dependencies pinned","Info:   5 out of   6 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 0.17.0 not signed: https://api.github.com/repos/timescale/promscale/releases/88552271","Warn: release artifact 0.16.0 not signed: https://api.github.com/repos/timescale/promscale/releases/80475256","Warn: release artifact 0.15.0 not signed: https://api.github.com/repos/timescale/promscale/releases/79658368","Warn: release artifact 0.14.0 not signed: https://api.github.com/repos/timescale/promscale/releases/75730248","Warn: release artifact 0.13.0 not signed: https://api.github.com/repos/timescale/promscale/releases/72513562","Warn: release artifact 0.17.0 does not have provenance: https://api.github.com/repos/timescale/promscale/releases/88552271","Warn: release artifact 0.16.0 does not have provenance: https://api.github.com/repos/timescale/promscale/releases/80475256","Warn: release artifact 0.15.0 does not have provenance: https://api.github.com/repos/timescale/promscale/releases/79658368","Warn: release artifact 0.14.0 does not have provenance: https://api.github.com/repos/timescale/promscale/releases/75730248","Warn: release artifact 0.13.0 does not have provenance: https://api.github.com/repos/timescale/promscale/releases/72513562"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"49 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GO-2023-1573 / GHSA-259w-8hf6-59c2","Warn: Project is vulnerable to: GO-2023-1574 / GHSA-hmfx-3pcx-653p","Warn: Project is vulnerable to: GO-2023-2412 / GHSA-7ww5-4wqc-m92c","Warn: Project is vulnerable to: GO-2025-3528 / GHSA-265r-hfxg-fhmg","Warn: Project is vulnerable to: GO-2022-0379 / GHSA-qq97-vm5h-rrhg","Warn: Project is vulnerable to: GHSA-hqxw-f8mx-cpmw","Warn: Project is vulnerable to: GO-2022-1107 / GHSA-vp35-85q5-9f25","Warn: Project is vulnerable to: GO-2023-1699 / GHSA-232p-vwff-86mp","Warn: Project is vulnerable to: GO-2023-1700 / GHSA-33pg-m6jh-5237","Warn: Project is vulnerable to: GO-2023-1701 / GHSA-6wrf-mxfj-pf5p","Warn: Project is vulnerable to: GHSA-jq35-85cj-fj4p","Warn: Project is vulnerable to: GHSA-mq39-4gv4-mvpx","Warn: Project is vulnerable to: GO-2024-3005 / GHSA-v23v-6jw2-98fq","Warn: Project is vulnerable to: GO-2024-2512 / GHSA-xw73-rw38-6vjc","Warn: Project is vulnerable to: GO-2025-3829 / GHSA-4vq8-7jfc-9cvp","Warn: Project is vulnerable to: GO-2024-2567 / GHSA-fqpg-rq76-99pq","Warn: Project is vulnerable to: GO-2024-2606 / GHSA-mrww-27vc-gghv","Warn: Project is vulnerable to: GHSA-2w8w-qhg4-f78j","Warn: Project is vulnerable to: GO-2022-0274 / GHSA-v95c-p5hm-xq8f","Warn: Project is vulnerable to: GO-2022-0452 / GHSA-f3fp-gc8g-vw66","Warn: Project is vulnerable to: GO-2023-1683 / GHSA-g2j6-57v7-gm8c","Warn: Project is vulnerable to: GO-2023-1682 / GHSA-m8cg-xc2p-r3fc","Warn: Project is vulnerable to: GO-2023-1627 / GHSA-vpvm-3wq2-2wvm","Warn: Project is vulnerable to: GO-2024-2491 / GHSA-xr7r-f8xq-vfvv","Warn: Project is vulnerable to: GO-2024-3110 / GHSA-jfvp-7x6p-h2pv","Warn: Project is vulnerable to: GO-2023-2020 / GHSA-v86x-5fm3-5p7j","Warn: Project is vulnerable to: GO-2022-1130 / GHSA-7rg2-cxvp-9p7p","Warn: Project is vulnerable to: GO-2023-2113 / GHSA-rcjv-mgp8-qvmr","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GO-2023-1495 / GHSA-fxg5-wq6x-vr4w","Warn: Project is vulnerable to: GO-2022-1144 / GHSA-xrjj-mj9h-534m","Warn: Project is vulnerable to: GO-2023-1571 / GHSA-vvpx-j8f3-3w6h","Warn: Project is vulnerable to: GO-2023-1988 / GHSA-2wrh-6pvc-2jm9","Warn: Project is vulnerable to: GO-2023-2102 / GHSA-4374-p667-p6c8","Warn: Project is vulnerable to: GO-2023-2153 / GHSA-m425-mq94-257g / GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GO-2024-2687 / GHSA-4v7x-pqxf-cx7m","Warn: Project is vulnerable to: GO-2024-3333","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2021-0356 / GHSA-8c26-wmh5-6g9v","Warn: Project is vulnerable to: GO-2024-2961","Warn: Project is vulnerable to: GO-2022-0969 / GHSA-69cg-p879-7622","Warn: Project is vulnerable to: GO-2022-1059 / GHSA-69ch-w2m2-3vjp"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-24T10:01:09.785Z","repository_id":36953805,"created_at":"2025-08-24T10:01:09.785Z","updated_at":"2025-08-24T10:01:09.785Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":277218747,"owners_count":25781444,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-27T02:00:08.978Z","response_time":73,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["deprecated"],"created_at":"2024-08-01T12:01:38.103Z","updated_at":"2025-09-27T10:30:42.603Z","avatar_url":"https://github.com/timescale.png","language":"Go","readme":"\u003e **Warning**\n\u003e\n\u003e Promscale has been discontinued and is deprecated.\n\u003e\n\u003e The code in this repository is no longer maintained.\n\u003e\n\u003e [Learn more](https://github.com/timescale/promscale/issues/1836).\n\n\n\n# Promscale\n\n[![Go](https://github.com/timescale/promscale/workflows/Go/badge.svg)](https://github.com/timescale/promscale/actions?query=workflow%3AGo)\n[![reviewdog - golangci](https://github.com/timescale/promscale/workflows/reviewdog%20-%20golangci/badge.svg)](https://github.com/timescale/promscale/actions?query=workflow%3A%22reviewdog+-+golangci%22)\n[![Go Report Card](https://goreportcard.com/badge/github.com/timescale/promscale)](https://goreportcard.com/report/github.com/timescale/promscale)\n[![Code Climate](https://api.codeclimate.com/v1/badges/c6b16c0bbcb0690c9c71/maintainability)]()\n[![GoDoc](https://godoc.org/github.com/timescale/promscale?status.svg)](https://pkg.go.dev/github.com/timescale/promscale)\n\n- **[Website](https://www.timescale.com/promscale)**\n- **[Install](https://docs.timescale.com/promscale/latest/installation/)**\n- **[Docs](https://docs.timescale.com/promscale/latest/)**\n- **[Slack Community](https://timescaledb.slack.com/)** (join the #promscale channel)\n- **[Forum](https://www.timescale.com/forum/c/promscale-and-observability)**\n- **[Blog](https://blog.timescale.com/tag/observability/)**\n\n\u003cimg alt=\"Promscale\" src=\"docs/assets/promscale-logo.png\" width=\"600px\"\u003e\n\n**Promscale is a unified metric and trace observability backend for Prometheus,\nJaeger and OpenTelemetry built on PostgreSQL and TimescaleDB.**\n\nPromscale serves as a robust and 100% PromQL-compliant Prometheus remote storage and as a durable and scalable \nJaeger storage backend. Promscale is a certified Jaeger storage backend.\n\nUnlike other observability backends, it has a simple and easy-to-manage architecture \nwith just two components: the Promscale Connector and the Promscale Database (PostgreSQL with the\nTimescaleDB and Promscale extensions).\n\n## Quick Start\n\n**Try it out now** with our demo environment you can deploy on your laptop in five minutes with Docker.\n\n```bash\ngit clone https://github.com/timescale/promscale.git\ncd promscale/docker-compose/promscale-demo\ndocker compose up -d\n```\nExplore your metrics and traces in Grafana (http://localhost:3000, username: admin, password: admin) and\nJaeger (http://localhost:16686).\n\nCheck our short [demo guide](https://docs.timescale.com/promscale/latest/quick-start/) to learn more.\n\n## Key Features\n\n* **Prometheus metric storage:** support for remote write, remote read, 100% PromQL, metric metadata,\nexemplars and Prometheus HA.\n* **Certified Jaeger trace storage:** Promscale is a [certified Jaeger storage backend](https://github.com/jaegertracing/jaeger#multiple-storage-backends).\nIntegrate Jaeger with Promscale to store and visualize your traces with a simple configuration change in Jaeger.\nUse Promscale as the storage backend for the metrics required by the\n[Service Performance Management UI](https://www.jaegertracing.io/docs/1.38/spm/). No need for a separate \nPrometheus / PromQL compatible storage.\n* **OpenTelemetry trace storage:** support for ingestion of traces through the OpenTelemetry Protocol\n(OTLP).\n* **Grafana integration:** query and visualize your metrics and traces using the PromQL, SQL and Jaeger\ndatasources.\n* **Durable and reliable storage:** built on top of the maturity of Postgres and TimescaleDB with \nmillions of instances worldwide. A trusted system that offers high availability, replication, \ndata integrity, data compression, backups, authentication, roles and permissions.\n* **PromQL Alerts:** full support for PromQL alerting rules. You can reuse the Prometheus configuration\nthat you already have.\n* **Multi-tenancy:** support for Prometheus multi-tenancy so you can restrict data access by tenant.\n* **Pick your query language:** PromQL for metrics and SQL for metrics and traces. With full SQL\nsupport together with TimescaleDB's advanced analytics functions, you can query and correlate metrics,\ntraces, and business data to derive new insights.\n* **Flexible data management:** configurable default retention for metrics and traces as well as\nper-metric retention and APIs to delete metric series that are no longer needed.\n* **Downsampling:** increase the performance of long-term queries by downsampling metrics with PromQL recording\nrules and TimescaleDB continuous aggregates. Combine downsampling with per-metric retention to only keep the \ndata you need, reduce costs and accelerate performance.\n* **Out-of-the-box monitoring:** leverage the dashboard, alerting rules and runbooks built by the Promscale\nteam to start monitoring Promscale since the first day following best practices from the team behind the\nproduct.\n* **Easy data migration:** use our [prom-migrator](https://github.com/timescale/promscale/blob/master/migration-tool/cmd/prom-migrator/README.md)\ntool to effortlessly migrate your existing Prometheus data to Promscale.\n* **Simplified deployment on K8s:** use [tobs](https://github.com/timescale/tobs) to deploy and manage a complete,\npre-configured and production-ready observability stack for metrics and traces on a K8s cluster that includes\nPromscale, Prometheus, OpenTelemetry with auto-instrumentation, Grafana and plenty of out-of-the-box dashboards and alerts.\n\n## Architecture\n\n[Learn more](https://docs.timescale.com/promscale/latest/about-promscale/#promscale-schema-for-metric-data) \nabout Promscale's architecture and how it works.\n\n\u003cimg src=\"docs/assets/promscale-arch.png\" alt=\"Promscale Architecture Diagram\" width=\"800\"/\u003e\n\n## Promscale for Prometheus\n\nPromscale provides Prometheus users with:\n\n* **A single-pane-of-glass across all Kubernetes clusters**\u003cbr/\u003e\nUse Promscale as a centralized storage for all your Prometheus instances\nso you can easily query data across all of them in Grafana and centralize\n[alert management](https://docs.timescale.com/promscale/latest/alert/) and\n[recording rules](https://docs.timescale.com/promscale/latest/downsample-data/recording/).\nUse [multi-tenancy](https://docs.timescale.com/promscale/latest/scale-ha/prometheus-multi-tenancy/)\nto control who has access to the data for a Kubernetes cluster.\n\n* **Efficient long-term trend analysis**\u003cbr/\u003e\nUse Promscale as a durable long-term storage for Prometheus metrics with a proven and rock-solid \nfoundation based on PostgreSQL and TimescaleDB with millions of instances worldwide. With\n[metric downsampling](https://docs.timescale.com/promscale/latest/downsample-data/)\nand [per-metric retention](https://docs.timescale.com/promscale/latest/manage-data/retention/#configure-data-retention-for-metrics)\nyou can keep just the data you need for your analysis for as long as you need. This allows you\nto cut down the costs associated with using the same retention for all data in Prometheus and\ndramatically improves query performance for long-term queries.\n\n**Key features**: [100% PromQL-compliant](https://promlabs.com/promql-compliance-test-results/2021-10-14/promscale/),\nhigh availability, multi-tenancy, PromQL alerting and recording rules, downsampling, per-metric retention.\n\nIf you are already familiar with PostgreSQL, then Promscale is a great choice for\nyour Prometheus remote storage. You can scale to millions of series and hundreds\nof thousands of samples per second on a single PostgreSQL node thanks to TimescaleDB.\n\nTo get started:\n1. [Install Promscale](https://docs.timescale.com/promscale/latest/installation/#install-promscale-with-instrumentation).\n2. [Configure Prometheus](https://docs.timescale.com/promscale/latest/send-data/prometheus/) to send data to Promscale.\n3. [Configure Grafana](https://docs.timescale.com/promscale/latest/visualize-data/grafana/) to query and visualize metrics from Promscale\nusing a PromQL and/or a PostgreSQL datasource.\n\n## Promscale for Jaeger and OpenTelemetry\n\nPromscale supports ingesting Jaeger and OpenTelemetry traces via the Jaeger Collector and the OpenTelemetry Collector.\nOpenTelemetry traces can also be sent directly from OpenTelemetry client libraries via the OpenTelemetry Protocol (OTLP).\nPromscale is a certified Jaeger storage that passess 100% of the compliance tests.\n\nPromscale provides Jaeger and OpenTelemetry users with:\n\n* **An easy-to-use durable and scalable storage backend for traces**\u003cbr/\u003e\nMost users run Jaeger with the in memory or badger storage because the two options recommended for production\n(Elasticsearch and Cassandra) are difficult to set up and operate. Promscale uses a much simpler architecture\nbased on PostgreSQL which many developers are comfortable with and scales to 100s of thousands of spans per\nsecond on a single database node. \n\n* **Service performance analysis**\u003cbr/\u003e\nBecause Promscale can store both metrics and traces, you can use the new \n[Service Performance Management](https://www.jaegertracing.io/docs/1.36/spm/) feature in Jaeger with Promscale \nas the only storage backend for the entire experience.\nPromscale also includes a fully customizable, out-of-the-box, and modern\n[Application Performance Management (APM) experience](https://docs.timescale.com/promscale/latest/visualize-data/apm-experience/)\nin Grafana built using SQL queries on traces.\n\n* **Trace analysis**\u003cbr/\u003e\nJaeger searching capabilities are limited to filtering individual traces. This is helpful when troubleshooting problems once you know\nwhat you are looking for. With Promscale you can use SQL to interrogate your trace data in any way you want and discover issues\nthat would usally take you a long time to figure out by just looking at log lines, metric charts or individual traces. You can see some\nexamples in [our documentation](https://docs.timescale.com/promscale/latest/query-data/query-traces/) and in\n[this blog post](https://www.timescale.com/blog/what-are-traces-and-how-sql-yes-sql-and-opentelemetry-can-help-us-get-more-value-out-of-traces-to-build-better-software/)\n\n**Key features:** native OTLP support, high availability, SQL queries, APM capabilities, data compression, data retention\n\n**Try it out** by installing our lightweight [opentelemetry-demo](https://github.com/timescale/opentelemetry-demo) with a single\ncommand. Check [this blog post](https://www.timescale.com/blog/learn-opentelemetry-tracing-with-this-lightweight-microservices-demo/)\nfor more details.\n\nTo get started:\n1. [Install Promscale](https://docs.timescale.com/promscale/latest/installation/#install-promscale-with-instrumentation).\n2. [Send traces to Promscale](https://docs.timescale.com/promscale/latest/send-data/) in Jaeger, OpenTelemetry, or Zipkin format\n3. [Configure Jaeger](https://docs.timescale.com/promscale/latest/visualize-data/jaeger/) to query and visualize traces from Promscale.\n\nAlso consider:\n\n4. [Configure Grafana](https://docs.timescale.com/promscale/latest/visualize-data/grafana) to query and visualize traces from Promscale\nusing a Jaeger and a PostgreSQL datasource.\n5. [Install the APM dashboards](https://docs.timescale.com/promscale/latest/visualize-data/apm-experience/) in Grafana.\n\n## Documentation and Help\n\nComplete user documentation is available at https://docs.timescale.com/promscale/latest/\n\nIf you have any questions, please join the #promscale channel on\n[TimescaleDB Slack](https://slack.timescale.com/).\n\n## Promscale Repositories\n\nThis repository contains the source code of the Promscale Connector. Promscale also requires that the Promscale extension\nwhich lives in [this repository](https://github.com/timescale/promscale_extension) is installed in the TimescaleDB/PostgreSQL\ndatabase. The extension sets up and manages the database schemas and provides performance and SQL query experience improvements.\n\nThis repository also contains the source code for **prom-migrator**. **Prom-migrator** is\nan **open-source**, **community-driven** and **free-to-use**, **universal prometheus\ndata migration tool**, that migrates data from one storage system to another, leveraging Prometheus's\nremote storage endpoints. For more information about prom-migrator, visit\n[prom-migrator's README](https://github.com/timescale/promscale/blob/master/migration-tool/cmd/prom-migrator/README.md).\n\nYou may also want to check [tobs](https://github.com/timescale/tobs) which makes it very easy to deploy a complete\nobservability stack built on Prometheus, OpenTelemetry and Promscale in Kubernetes via helm.\n\n## Contributing\n\nWe welcome contributions to the Promscale Connector, which is\nlicensed and released under the open-source Apache License, Version 2.\nThe same [Contributor's\nAgreement](https://github.com/timescale/timescaledb/blob/master/CONTRIBUTING.md)\napplies as in TimescaleDB; please sign the [Contributor License\nAgreement](https://cla-assistant.io/timescale/promscale)\n(CLA) if you're a new contributor.\n\n## Release\n\nRelease checklist is available when creating new [\"Release Checklist\" issue](https://github.com/timescale/promscale/issues/new?template=release.md).\n","funding_links":[],"categories":["7. Storage","Go","Databases","others","Observability","Monitoring/Statistics/Perfomance"],"sub_categories":["\"Meta Projects\" (data storage, multi-tenant, aggregation, high availability, etc)","Samples"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftimescale%2Fpromscale","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftimescale%2Fpromscale","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftimescale%2Fpromscale/lists"}