{"id":13496696,"url":"https://github.com/uraimo/run-on-arch-action","last_synced_at":"2026-04-26T19:02:47.494Z","repository":{"id":38416128,"uuid":"211340922","full_name":"uraimo/run-on-arch-action","owner":"uraimo","description":"A Github Action that executes jobs/commands on non-x86 cpu architectures (ARMv6, ARMv7, aarch64, s390x, ppc64le, riscv64) via QEMU","archived":false,"fork":false,"pushed_at":"2026-02-14T12:06:42.000Z","size":311,"stargazers_count":744,"open_issues_count":54,"forks_count":169,"subscribers_count":12,"default_branch":"master","last_synced_at":"2026-04-23T08:06:31.346Z","etag":null,"topics":["aarch64","actions","armv6","armv7","armv8","continuous-integration","github-actions","github-workflow","ppc64le","riscv64","s390x"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/uraimo.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-09-27T14:45:38.000Z","updated_at":"2026-04-18T06:25:43.000Z","dependencies_parsed_at":"2024-04-11T15:44:13.306Z","dependency_job_id":"237a3e6b-4b00-4a6c-9f85-bd5721c84697","html_url":"https://github.com/uraimo/run-on-arch-action","commit_stats":{"total_commits":170,"total_committers":23,"mean_commits":7.391304347826087,"dds":0.3176470588235294,"last_synced_commit":"5397f9e30a9b62422f302092631c99ae1effcd9e"},"previous_names":[],"tags_count":42,"template":false,"template_full_name":null,"purl":"pkg:github/uraimo/run-on-arch-action","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uraimo%2Frun-on-arch-action","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uraimo%2Frun-on-arch-action/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uraimo%2Frun-on-arch-action/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uraimo%2Frun-on-arch-action/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/uraimo","download_url":"https://codeload.github.com/uraimo/run-on-arch-action/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uraimo%2Frun-on-arch-action/sbom","scorecard":{"id":911673,"data":{"date":"2025-08-11","repo":{"name":"github.com/uraimo/run-on-arch-action","commit":"d94c13912ea685de38fccc1109385b83fd79427d"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.7,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 2/28 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/advanced-example.yml:1","Warn: no topLevel permission defined: .github/workflows/basic-example.yml:1","Warn: no topLevel permission defined: .github/workflows/floating-tag.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/issue160.yml:8","Warn: no topLevel permission defined: .github/workflows/simple.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: BSD 3-Clause \"New\" or \"Revised\" License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":3,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'master'","Info: 'force pushes' disabled on branch 'master'","Info: 'branch protection settings apply to administrators' is required to merge on branch 'master'","Warn: could not determine whether codeowners review is allowed","Warn: no status checks found to merge onto branch 'master'","Warn: PRs are not required to make changes on branch 'master'; or we don't have data to detect it.If you think it might be the latter, make sure to run Scorecard with a PAT or use Repo Rules (that are always public) instead of Branch Protection settings"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 4 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/advanced-example.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/advanced-example.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/basic-example.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/basic-example.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/basic-example.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/basic-example.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/floating-tag.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/floating-tag.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/floating-tag.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/floating-tag.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue160.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/issue160.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simple.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/simple.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/uraimo/run-on-arch-action/test.yml/master?enable=pin","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.alpine_latest:1: pin your Docker image by updating arm64v8/alpine:latest to arm64v8/alpine:latest@sha256:d7641d4e055534bdac03070d3223d064999a9f2296598ec5122b66ceec18887b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.archarm_latest:1: pin your Docker image by updating agners/archlinuxarm-arm64v8:latest to agners/archlinuxarm-arm64v8:latest@sha256:666ea750985b78edd8b7f0d4507f6de83326ad31f8c9ff6c96fc5545d3671b88","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.bookworm:1: pin your Docker image by updating arm64v8/debian:bookworm to arm64v8/debian:bookworm@sha256:f95110e1e4c219539b6653aa861b8011851bdada1f5372502839276c28190403","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.bullseye:1: pin your Docker image by updating arm64v8/debian:bullseye to arm64v8/debian:bullseye@sha256:4811a4a3a14d6e28d1a5b7f98edd187dc66e036ee49bba614492c3fe1290c524","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.buster:1: pin your Docker image by updating arm64v8/debian:buster to arm64v8/debian:buster@sha256:fba020fe61e2b15959ef887ea67c7fc61f77943d074889debe8d92e29402191f","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.fedora_latest:1: pin your Docker image by updating arm64v8/fedora:latest to arm64v8/fedora:latest@sha256:263303d5350bc5ed74b36c109e3e9493a19a25f818843320d4bcf80e583c5e18","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.stretch:1: pin your Docker image by updating arm64v8/debian:stretch to arm64v8/debian:stretch@sha256:3d3251ecfd190284f76c271e6c9dd19bb4d111f10bb9028ad8b8ac3d3b4914ea","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu16.04:1: pin your Docker image by updating arm64v8/ubuntu:16.04 to arm64v8/ubuntu:16.04@sha256:f4c51ba054967fd4b06715f1b67078efbe9ca152e8be98d8f3c1f4d08c6042f8","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu18.04:1: pin your Docker image by updating arm64v8/ubuntu:18.04 to arm64v8/ubuntu:18.04@sha256:f97a5103cca28097326814718e711c9c41b54853c26959d73495e40b1dd608f2","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu20.04:1: pin your Docker image by updating arm64v8/ubuntu:20.04 to arm64v8/ubuntu:20.04@sha256:0908a765aeb02fe4e564b543eaed1d77839b7a08de94041e24328b2cb62ac553","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu22.04:1: pin your Docker image by updating arm64v8/ubuntu:22.04 to arm64v8/ubuntu:22.04@sha256:7cb2f5c035fb2a5eb58a0f3a6548cf510f2b24a6e58caace5258d73a5d1bd0f2","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu24.04:1: pin your Docker image by updating arm64v8/ubuntu:24.04 to arm64v8/ubuntu:24.04@sha256:65aa61e15eb6b7922512d071ca5db97bb5b36e7c0d621777c00cb6275bde3727","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu_devel:1: pin your Docker image by updating arm64v8/ubuntu:devel to arm64v8/ubuntu:devel@sha256:35ac06b041f72524a872bf00a4b34c15d00d56d1e7278a6cf2d0315d92751444","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu_latest:1: pin your Docker image by updating arm64v8/ubuntu:latest to arm64v8/ubuntu:latest@sha256:65aa61e15eb6b7922512d071ca5db97bb5b36e7c0d621777c00cb6275bde3727","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.aarch64.ubuntu_rolling:1: pin your Docker image by updating arm64v8/ubuntu:rolling to arm64v8/ubuntu:rolling@sha256:bbdf1ceca37848843d1926c85759a43326ba862e49cf9124e90b82bebfcb6ad1","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.alpine_latest:1: pin your Docker image by updating balenalib/raspberry-pi-alpine:latest to balenalib/raspberry-pi-alpine:latest@sha256:b4c80f7ea736783afce98142a1dce20f637e218118a4c7d7a8c0c063cb25f5b0","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.bookworm:1: pin your Docker image by updating balenalib/rpi-raspbian:bookworm to balenalib/rpi-raspbian:bookworm@sha256:0f3c33faa9d7b1dac778e8afb5854080dcfbddeac7437265598c6076bb0ffc82","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.bullseye:1: pin your Docker image by updating balenalib/rpi-raspbian:bullseye to balenalib/rpi-raspbian:bullseye@sha256:851cfc48b26f6413a72a7f6873a7624ba2a427048976f6ab4483f72fe165d4f1","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.buster:1: pin your Docker image by updating balenalib/rpi-raspbian:buster to balenalib/rpi-raspbian:buster@sha256:4e94f10fb86a150c11f37a34b4b2014c1f13e39e273be9b39c0584396abbeebd","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.jessie:1: pin your Docker image by updating balenalib/rpi-raspbian:jessie to balenalib/rpi-raspbian:jessie@sha256:2b115d3ebcbf813d3a3c61d1128fc443549f510dca951feb6fc2061a2b609262","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv6.stretch:1: pin your Docker image by updating balenalib/rpi-raspbian:stretch to balenalib/rpi-raspbian:stretch@sha256:9e9ae7121bf46400e555755a4c8b6618ef5e6ddb67dae2ad3959cd0b298a8e6c","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.alpine_latest:1: pin your Docker image by updating arm32v7/alpine:latest to arm32v7/alpine:latest@sha256:897890e8aadef5c60bc1cea2396d177fb36130258ab87e5830908e17995dd1d3","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.archarm_latest:1: pin your Docker image by updating agners/archlinuxarm-arm32v7:latest to agners/archlinuxarm-arm32v7:latest@sha256:b81125f414edf2f2d9c4f942d73d35dea79d10b91e684f537cb4148a28173c3f","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.bookworm:1: pin your Docker image by updating arm32v7/debian:bookworm to arm32v7/debian:bookworm@sha256:e16daf8c68e2c42b8d8f049552f952c858a89bf84d60c661cdab371960dbf644","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.bullseye:1: pin your Docker image by updating arm32v7/debian:bullseye to arm32v7/debian:bullseye@sha256:ad9f2580036df13af17184884195fb7bc52a16da3bc2b1df4d465ee82efd766b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.buster:1: pin your Docker image by updating arm32v7/debian:buster to arm32v7/debian:buster@sha256:81cd707548e590cc6db6f230af43bfb4009adb77c7dedbf1f0f53bb08259dafb","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.jessie:1: pin your Docker image by updating arm32v7/debian:jessie to arm32v7/debian:jessie@sha256:6a0cf2ebc0f90c0a3aebfeba13e85e7e80e8bd974fe7b1aaf0f33a65f334b10e","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.stretch:1: pin your Docker image by updating arm32v7/debian:stretch to arm32v7/debian:stretch@sha256:f0d0ca7b1c94bfa3fd5e0aaff7acec45d9067cf57170ab248e7087388353ea4f","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu16.04:1: pin your Docker image by updating arm32v7/ubuntu:16.04 to arm32v7/ubuntu:16.04@sha256:5c33df0beb44570500a6b44f64106321ad9b7510eea35120e9180f55164752b7","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu18.04:1: pin your Docker image by updating arm32v7/ubuntu:18.04 to arm32v7/ubuntu:18.04@sha256:f9d8624e98e31a551d490e0bc3e1ea76319974ddae819c641be1158857b3ddc7","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu20.04:1: pin your Docker image by updating arm32v7/ubuntu:20.04 to arm32v7/ubuntu:20.04@sha256:d9a6ab6baaf86907ea1d46f0cbc87547920077c9c6017721faed6eeb51e9aa7e","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu22.04:1: pin your Docker image by updating arm32v7/ubuntu:22.04 to arm32v7/ubuntu:22.04@sha256:575e72764e8dcec7875e82d1aabf6c6c110fbef986816ebf7539a280b95b46a3","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu24.04:1: pin your Docker image by updating arm32v7/ubuntu:24.04 to arm32v7/ubuntu:24.04@sha256:79524a4918e2b3021481bc128dde091b7482196887b3cea6f3ee20841ae0c82f","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu_devel:1: pin your Docker image by updating arm32v7/ubuntu:devel to arm32v7/ubuntu:devel@sha256:7b04d228be75cba94b7b04457250d04237c0109ed08f30a16f770d782bdee1d4","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu_latest:1: pin your Docker image by updating arm32v7/ubuntu:latest to arm32v7/ubuntu:latest@sha256:79524a4918e2b3021481bc128dde091b7482196887b3cea6f3ee20841ae0c82f","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.armv7.ubuntu_rolling:1: pin your Docker image by updating arm32v7/ubuntu:rolling to arm32v7/ubuntu:rolling@sha256:c30c576e2a1035d589838247b48ae46bde8a7aaa6b70307f577d609e0ece2e96","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.none.none:1","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.alpine_latest:1: pin your Docker image by updating ppc64le/alpine:latest to ppc64le/alpine:latest@sha256:44547def50c906a57ee186169015aee3c584f73a772eb8adca57b5449b1e66dc","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.bookworm:1: pin your Docker image by updating ppc64le/debian:bookworm to ppc64le/debian:bookworm@sha256:31f12604369751b45c6c3f2409ca565a9fb762175e6d531a33ea0dc0afa0a79b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.bullseye:1: pin your Docker image by updating ppc64le/debian:bullseye to ppc64le/debian:bullseye@sha256:bde5fbe4f2dd736f0339766ef8b35b0887a007c9e2c08c2e72c80a56c92fb301","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.buster:1: pin your Docker image by updating ppc64le/debian:buster to ppc64le/debian:buster@sha256:30d3c94222d7917092a7bd0c3d5eb6006fed2d99dca5aa171b4300120fd13c8b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.stretch:1: pin your Docker image by updating ppc64le/debian:stretch to ppc64le/debian:stretch@sha256:7665d0d3a6df0762b88ceaefe76e91766446656d101f9bcf3414ab67fb83d88d","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu16.04:1: pin your Docker image by updating ppc64le/ubuntu:16.04 to ppc64le/ubuntu:16.04@sha256:4ef33ed6b1af10706727d280de436bced5e9413cba7992d6126c866efd79cacd","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu18.04:1: pin your Docker image by updating ppc64le/ubuntu:18.04 to ppc64le/ubuntu:18.04@sha256:f9a073fd91492a05f242ea30fd09deb6deabd8f11c5829eea984711fcd05dd01","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu20.04:1: pin your Docker image by updating ppc64le/ubuntu:20.04 to ppc64le/ubuntu:20.04@sha256:b5e79b09909cdb71283c62c517def07368eab7f3dc87123ac5f7082cacf5f9c9","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu22.04:1: pin your Docker image by updating ppc64le/ubuntu:22.04 to ppc64le/ubuntu:22.04@sha256:9ece63fa194859693581e2b7d86247d14883176702faa50fe1ddadf41049b474","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu24.04:1: pin your Docker image by updating ppc64le/ubuntu:24.04 to ppc64le/ubuntu:24.04@sha256:5c85ecf81027764efc97ac69db74d4d51003ae7939868121040347f148668667","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu_devel:1: pin your Docker image by updating ppc64le/ubuntu:devel to ppc64le/ubuntu:devel@sha256:41cff5a7708da5ceaf7ed394fd0c55dbb4eda626e37d0bda5f3c923fd48068d8","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu_latest:1: pin your Docker image by updating ppc64le/ubuntu:latest to ppc64le/ubuntu:latest@sha256:5c85ecf81027764efc97ac69db74d4d51003ae7939868121040347f148668667","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.ppc64le.ubuntu_rolling:1: pin your Docker image by updating ppc64le/ubuntu:rolling to ppc64le/ubuntu:rolling@sha256:515ce837353f42691098fd50de7e6a8b152ff64d205d130fc0f66c3c43f77505","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.alpine_edge:1: pin your Docker image by updating riscv64/alpine:edge to riscv64/alpine:edge@sha256:1191c584cabe60199189ed60b499cf3569c9dbb4f69599d98c928f80bf2420b5","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.alpine_latest:1: pin your Docker image by updating riscv64/alpine:latest to riscv64/alpine:latest@sha256:f79f9888ede56fa99c6891770fc0ed98371e12c6cf7609b68d3ffe376aaf0c7a","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu20.04:1: pin your Docker image by updating riscv64/ubuntu:20.04 to riscv64/ubuntu:20.04@sha256:610bedb0c5d9aeae4b45e9064e820c4e0b0f6c1d2843116b0a1ae754890951ac","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu22.04:1: pin your Docker image by updating riscv64/ubuntu:22.04 to riscv64/ubuntu:22.04@sha256:2ea5b9a6d8f55e761060663abbcece0bd5c3d732fa990dcef0ef5330f3e3edd0","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu24.04:1: pin your Docker image by updating riscv64/ubuntu:24.04 to riscv64/ubuntu:24.04@sha256:54a34bed4da9ebd35d2f3f3c1336e3d5b0a0af35f3261c43f035db3e02fce74e","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu_devel:1: pin your Docker image by updating riscv64/ubuntu:devel to riscv64/ubuntu:devel@sha256:eb39a4754bd48aa3b8a3dff50d58946de17784ef276d883f9a189399149cfc32","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu_latest:1: pin your Docker image by updating riscv64/ubuntu:latest to riscv64/ubuntu:latest@sha256:54a34bed4da9ebd35d2f3f3c1336e3d5b0a0af35f3261c43f035db3e02fce74e","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.riscv64.ubuntu_rolling:1: pin your Docker image by updating riscv64/ubuntu:rolling to riscv64/ubuntu:rolling@sha256:d479ecd52972e6777ca38b69f4f00ab7254985aed2aea387169725e84fac8ffe","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.alpine_latest:1: pin your Docker image by updating s390x/alpine:latest to s390x/alpine:latest@sha256:375aca4552876b20dd8ad5ea1ae2daea108aa4becb4703a5c6588e18122e2874","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.bookworm:1: pin your Docker image by updating s390x/debian:bookworm to s390x/debian:bookworm@sha256:c56a071b8e94721dd190ff0eccc44624b67704541a504c900c1e51232392127b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.bullseye:1: pin your Docker image by updating s390x/debian:bullseye to s390x/debian:bullseye@sha256:75607087a7dc763e431f660b00c6191056efb124ec1c652cab8b42c299e225fe","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.buster:1: pin your Docker image by updating s390x/debian:buster to s390x/debian:buster@sha256:fa222d502912108098f5371fdd7cd170d2a45d1c7a2180c4eecd4bc1da1bb433","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.stretch:1: pin your Docker image by updating s390x/debian:stretch to s390x/debian:stretch@sha256:e0e51e2844622ae2b0cd027531c4a9b7ef3fc441a660ff3b3c4061dd98da3a00","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu16.04:1: pin your Docker image by updating s390x/ubuntu:16.04 to s390x/ubuntu:16.04@sha256:5fea5a070916f61785140faa8e16fa8bf7ca3f152ceed9c48154f8aca4c3667e","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu18.04:1: pin your Docker image by updating s390x/ubuntu:18.04 to s390x/ubuntu:18.04@sha256:d703aed6386f192b5287ed5f79b9548055a59edea4166bbe38cdc1b427b999b8","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu20.04:1: pin your Docker image by updating s390x/ubuntu:20.04 to s390x/ubuntu:20.04@sha256:221f5f8e28d896556d0e55605cd6936450e6231544e9d83d687beae2d0e71afd","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu22.04:1: pin your Docker image by updating s390x/ubuntu:22.04 to s390x/ubuntu:22.04@sha256:bc40302e3d94751703a735e247fd9d25e44cba3abe5907d51edc7261778f2cf6","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu24.04:1: pin your Docker image by updating s390x/ubuntu:24.04 to s390x/ubuntu:24.04@sha256:c0cbb7c6f376437bacae15009ef003857591394d4e897f6fe066e1cc9b8f32f7","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu_devel:1: pin your Docker image by updating s390x/ubuntu:devel to s390x/ubuntu:devel@sha256:f40c3faddbda5c6f5dbef706d1fd8336facd3e88f3bc92903321ee876f7cab2b","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu_latest:1: pin your Docker image by updating s390x/ubuntu:latest to s390x/ubuntu:latest@sha256:c0cbb7c6f376437bacae15009ef003857591394d4e897f6fe066e1cc9b8f32f7","Warn: containerImage not pinned by hash: Dockerfiles/Dockerfile.s390x.ubuntu_rolling:1: pin your Docker image by updating s390x/ubuntu:rolling to s390x/ubuntu:rolling@sha256:6314bc005f69b23ae832b0bbeda8295612a90ac6c057f31d6c75c256a54c2b49","Info:   1 out of   6 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   3 third-party GitHubAction dependencies pinned","Info:   0 out of  71 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}}]},"last_synced_at":"2025-08-24T19:26:23.313Z","repository_id":38416128,"created_at":"2025-08-24T19:26:23.313Z","updated_at":"2025-08-24T19:26:23.313Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32294591,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-26T09:34:17.070Z","status":"ssl_error","status_checked_at":"2026-04-26T09:34:00.993Z","response_time":129,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aarch64","actions","armv6","armv7","armv8","continuous-integration","github-actions","github-workflow","ppc64le","riscv64","s390x"],"created_at":"2024-07-31T19:01:57.222Z","updated_at":"2026-04-26T19:02:42.478Z","avatar_url":"https://github.com/uraimo.png","language":"Shell","funding_links":[],"categories":["Shell","Community Resources"],"sub_categories":["Utility"],"readme":"\u003e [!NOTE]\n\u003e **New major release addressing sporadic segmentation faults**\n\u003e \n\u003e The release 3.0.0 addresses sporadic segmentation faults noticed with recent kernel releases, please update your action to this new major release (e.g. @v3) if you start noticing random or systematic CI failures.\n\n# Run-On-Arch GitHub Action\n\n[![](https://github.com/uraimo/run-on-arch-action/workflows/test/badge.svg)](https://github.com/uraimo/run-on-arch-action)\n\n\nA GitHub Action that executes commands on non-x86 CPU architecture (armv6, armv7, aarch64, s390x, ppc64le) via QEMU.\n\n## Usage\n\nThis action requires three input parameters:\n\n* `arch`: CPU architecture: `armv6`, `armv7`, `aarch64`, `riscv64`, `s390x`, or `ppc64le`. See [Supported Platforms](#supported-platforms) for the full matrix.\n* `distro`: Linux distribution name: `ubuntu24.04`,`ubuntu22.04`,`ubuntu20.04`, `bookworm`,`bullseye`, `buster`, `stretch`,  `fedora_latest`, `alpine_latest` or `archarm_latest`. See [Supported Platforms](#supported-platforms) for the full matrix.\n* `run`: Shell commands to execute in the container.\n\nThe action also accepts some optional input parameters:\n\n* `githubToken`: Your GitHub token, used for caching Docker images in your project's public package registry. Usually this would just be `${{ github.token }}`. This speeds up subsequent builds and is highly recommended.\n* `env`: Environment variables to propagate to the container. YAML, but must begin with a `|` character. These variables will be available in both run and setup.\n* `shell`: The shell to run commands with in the container. Default: `/bin/sh` on Alpine, `/bin/bash` for other distros.\n* `dockerRunArgs`: Additional arguments to pass to `docker run`, such as volume mappings. See [`docker run` documentation](https://docs.docker.com/engine/reference/commandline/run).\n* `setup`: Shell commands to execute on the host before running the container, such as creating directories for volume mappings.\n* `install`: Shell commands to execute in the container as part of `docker build`, such as installing dependencies. This speeds up subsequent builds if `githubToken` is also used, but note that the image layer will be publicly available in your projects GitHub Package Registry, so make sure the resulting image does not have any secrets cached in logs or state.\n* `base_image`: Specify a custom base image, `arch` and `distro` should be set to `none` in this case. This will allow you to choose direcly the image that will be used in the *FROM* clause of the internal docker container without needing to create a Dockerfile.arch.distro for a specific arch/distro pair. If required by the docker image, the architecture can be specified prepenging the platform identifier before the image name, e.g. `--platform=linux/armv7 arm32v7/debian:buster`. Known limitation: Only one base_image configuration for each workflow if you use GitHub images caching.\n\n### Basic example\n\nA basic example that sets an output variable for use in subsequent steps:\n\n```yaml\non: [push, pull_request]\n\njobs:\n  armv7_job:\n    # The host should always be Linux\n    runs-on: ubuntu-24.04\n    name: Build on ubuntu-24.04 armv7\n    steps:\n      - uses: actions/checkout@v4\n      - uses: uraimo/run-on-arch-action@v3\n        name: Run commands\n        id: runcmd\n        with:\n          arch: armv7\n          distro: ubuntu24.04\n\n          # Not required, but speeds up builds by storing container images in\n          # a GitHub package registry.\n          githubToken: ${{ github.token }}\n\n          # Set an output parameter `uname` for use in subsequent steps\n          run: |\n            uname -a\n            echo ::set-output name=uname::$(uname -a)\n\n      - name: Get the output\n        # Echo the `uname` output parameter from the `runcmd` step\n        run: |\n          echo \"The uname output was ${{ steps.runcmd.outputs.uname }}\"\n```\n\n### Advanced example\n\nThis shows how to use a matrix to produce platform-specific artifacts, and includes example values for the optional input parameters `setup`, `shell`, `env`, and `dockerRunArgs`.\n\n```yaml\non: [push, pull_request]\n\njobs:\n  build_job:\n    # The host should always be linux\n    runs-on: ubuntu-24.04\n    name: Build on ${{ matrix.distro }} ${{ matrix.arch }}\n\n    # Run steps on a matrix of 4 arch/distro combinations\n    strategy:\n      matrix:\n        include:\n          - arch: aarch64\n            distro: ubuntu24.04\n          - arch: aarch64\n            distro: bullseye \n          - arch: ppc64le\n            distro: alpine_latest\n          - arch: none\n            distro: none\n            base_image: --platform=linux/riscv64 riscv64/ubuntu:24.04\n    steps:\n      - uses: actions/checkout@v4\n      - uses: uraimo/run-on-arch-action@v3\n        name: Build artifact\n        id: build\n        with:\n          arch: ${{ matrix.arch }}\n          distro: ${{ matrix.distro }}\n          base_image: ${{ matrix.base_image }}\n\n          # Not required, but speeds up builds\n          githubToken: ${{ github.token }}\n\n          # Create an artifacts directory\n          setup: |\n            mkdir -p \"${PWD}/artifacts\"\n\n          # Mount the artifacts directory as /artifacts in the container\n          dockerRunArgs: |\n            --volume \"${PWD}/artifacts:/artifacts\"\n\n          # Pass some environment variables to the container\n          env: | # YAML, but pipe character is necessary\n            artifact_name: git-${{ matrix.distro }}_${{ matrix.arch }}\n\n          # The shell to run commands with in the container\n          shell: /bin/sh\n\n          # Install some dependencies in the container. This speeds up builds if\n          # you are also using githubToken. Any dependencies installed here will\n          # be part of the container image that gets cached, so subsequent\n          # builds don't have to re-install them. The image layer is cached\n          # publicly in your project's package repository, so it is vital that\n          # no secrets are present in the container state or logs.\n          install: |\n            case \"${{ matrix.distro }}\" in\n              ubuntu*|jessie|stretch|buster|bullseye)\n                apt-get update -q -y\n                apt-get install -q -y git\n                ;;\n              fedora*)\n                dnf -y update\n                dnf -y install git which\n                ;;\n              alpine*)\n                apk update\n                apk add git\n                ;;\n            esac\n\n          # Produce a binary artifact and place it in the mounted volume\n          run: |\n            cp $(which git) \"/artifacts/${artifact_name}\"\n            echo \"Produced artifact at /artifacts/${artifact_name}\"\n\n      - name: Show the artifact\n        # Items placed in /artifacts in the container will be in\n        # ${PWD}/artifacts on the host.\n        run: |\n          ls -al \"${PWD}/artifacts\"\n```\n\n## Supported Platforms\n\nThis table details the valid `arch`/`distro` combinations:\n\n\n| arch     | distro     |\n| -------- | ---------- |\n| armv6    | stretch, buster, bullseye, bookworm, alpine_latest |\n| armv7    | stretch, buster, bullseye, bookworm, ubuntu20.04, ubuntu22.04 ubuntu24.04,, ubuntu_latest, ubuntu_rolling, ubuntu_devel, fedora_latest, alpine_latest, archarm_latest |\n| aarch64  | stretch, buster, bullseye, bookworm, ubuntu20.04, ubuntu22.04, ubuntu24.04, ubuntu_latest, ubuntu_rolling, ubuntu_devel, fedora_latest, alpine_latest, archarm_latest |\n| riscv64  | ubuntu20.04, ubuntu22.04, ubuntu24.04, ubuntu_latest, ubuntu_rolling, ubuntu_devel, alpine_edge |\n| s390x    | stretch, buster, bullseye, bookworm, ubuntu20.04, ubuntu22.04, ubuntu24.04, ubuntu_latest, ubuntu_rolling, ubuntu_devel, alpine_latest |\n| ppc64le  | stretch, buster, bullseye, bookworm, ubuntu20.04, ubuntu22.04, ubuntu24.04, ubuntu_latest, ubuntu_rolling, ubuntu_devel, alpine_latest |\n\n\nUsing an invalid `arch`/`distro` combination will fail.\n\n## Architecture emulation\n\nThis project makes use of an additional QEMU container to be able to emulate via software architectures like ARM, s390x, ppc64le, etc... that are not natively supported by GitHub. You should keep this into consideration when reasoning about the expected running time of your jobs, there will be a visible impact on performance when compared to a job executed on a vanilla runner.\n\n## Contributing\n\nNew distros and archs can be added simply by creating a Dockerfile named `Dockerfile.{arch}.{distro}` (that targets an image for the desired combination) in the [Dockerfiles](https://github.com/uraimo/run-on-arch-action/blob/master/Dockerfiles) directory. Pull requests welcome!\n\n## Authors\n\n[Umberto Raimondi](https://github.com/uraimo)\n\n[Elijah Shaw-Rutschman](https://github.com/elijahr)\n\nAnd many other [contributors](https://github.com/uraimo/run-on-arch-action/graphs/contributors).\n\n## License\n\nThis project is licensed under the [BSD 3-Clause License](https://github.com/uraimo/run-on-arch-action/blob/master/LICENSE).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Furaimo%2Frun-on-arch-action","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Furaimo%2Frun-on-arch-action","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Furaimo%2Frun-on-arch-action/lists"}