Deterministic synthetic test data for Kafka, databases, and files — same seed, byte-for-byte identical output, every run.
No JDK, no Gradle, no clone — only Docker. The multi-arch image ghcr.io/mferretti/seedstream ships on GitHub Container Registry and is pulled automatically on first run. Generate 1,000 deterministic invoices to ./out/:
mkdir -p out
docker run --rm \
-u "$(id -u):$(id -g)" \
-v "$PWD/out:/work/out" \
ghcr.io/mferretti/seedstream:latest \
execute --job config/jobs/quickstart.yaml --count 1000 --seed 42
head -n 1 out/invoices.jsonThe job config and sample structures are baked into the image, so the first run needs nothing but Docker. -u "$(id -u):$(id -g)" lets the (non-root) container write the output as you.
See the determinism for yourself — re-run with the same --seed 42 and the hash never changes, across runs, machines, or thread counts:
sha256sum out/invoices.jsonStreaming into Kafka or a database instead of a file? See the container guide. Prefer a local build? Jump to Other Ways to Run.
High-performance, seed-based test data generator for enterprise applications. Generate realistic, reproducible data to Kafka, databases, and files using simple YAML configuration.
- 60-Second Quickstart
- Features
- How It Compares
- Proof of Determinism
- Requirements
- Other Ways to Run
- Schema Inspection
- Performance
- Architecture
- Documentation
- Secret Management
- Is This AI Slop?
- Security
- Contributing
- License
- 🚀 High Performance: Multi-threaded generation — 12–258M records/sec for primitives, 32–39K rec/sec for realistic Datafaker data
- 🔄 Reproducible: Same seed → identical output, byte-for-byte, across machines and thread counts
- 🌍 Locale-Aware: locale-specific data via Datafaker (Italian names, US addresses, etc.) — pick a locale with
geolocation; coverage comes from Datafaker - 📝 Multiple Formats: JSON (NDJSON), CSV (RFC 4180), Protobuf (binary), Avro (OCF + Confluent Schema Registry wire format), CBEFF (biometric envelope)
- 💾 Multiple Destinations: File (NIO, gzip), Kafka (SASL/SSL, async/sync), JDBC databases (HikariCP, nested decomposition — integration-tested against Postgres, MySQL, Oracle, and SQL Server)
- 🔗 Foreign Key References:
ref[table.field, min..count]— FK columns that scale automatically with--count - ⚙️ YAML Configuration: Declarative structure and job definitions — no code required
- 🔌 Extensible Type System: 48+ Datafaker semantic types with runtime registration (
DatafakerRegistry) - 🔍 Schema Inspection: Bootstrap structure YAML from an existing OpenAPI 3.x spec, SQL DDL, or compiled Protobuf descriptor set — no hand-writing required
- 🔐 Secret Management: AES-256-GCM encrypted credentials in YAML; HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, Google Secret Manager backends
People comparison-shop, so here's an honest cut. The wedge is determinism that survives parallelism — same seed, byte-for-byte identical output regardless of thread or machine count — combined with streaming straight into infrastructure.
| SeedStream | Mockaroo | Synth | raw Datafaker | |
|---|---|---|---|---|
| Deterministic across runs (seed) | ✅ | ✅ | ||
| Deterministic across threads/machines | ✅ | ❌ | ❌ | |
| Stream into Kafka | ✅ | ❌ | ❌ | ❌ |
| Stream into databases | ✅ | ✅ | ❌ | |
Foreign-key integrity (ref[]) |
✅ | ✅ | ❌ | |
| Scale / multi-threaded | ✅ | ✅ | ||
| No-code config | ✅ YAML | ✅ GUI | ✅ schema | ❌ you write Java |
| Bootstrap schema from existing source | ✅ DDL / OpenAPI / Protobuf | ❌ | ❌ | |
| Self-hosted / offline | ✅ | ❌ SaaS | ✅ | ✅ |
| Locales | ✅ via Datafaker | ✅ many | ✅ most (built on it) | |
| License | Apache-2.0 | Proprietary (SaaS) | Apache-2.0 | Apache-2.0 |
Where the others win — honestly:
- Mockaroo — nothing to install; a polished GUI and a huge built-in type catalog make one-off sample files the fastest path. If you don't need reproducibility-under-parallelism or streaming into infra, it's hard to beat for quick mock data.
- Synth — a single Rust binary that connects to a live database and samples its actual data distributions. SeedStream also bootstraps schemas — its
inspectsubcommand generates structure YAML from a SQL DDL, an OpenAPI 3.x spec, or a compiled Protobuf descriptor — but it reads the declared schema, not a running system's data. Synth's edge is cloning the statistical shape of data you already have in a live DB. - raw Datafaker — SeedStream is built on Datafaker. If you're inside a JVM app and want to call a faker in code (no YAML, no process), use Datafaker directly — it has the widest provider/locale breadth. SeedStream adds the determinism model, the YAML layer, FK integrity, scale, and the Kafka/DB/file destinations around it.
Capability-level comparison as of mid-2026; tools evolve. Spot something out of date? Open an issue — corrections welcome.
Determinism is abstract until you watch two hashes match. One command generates the same dataset (seed 12345) at 1, 4, and 8 threads and compares the SHA-256:
./scripts/determinism-demo.sh
==> Generating 5000 records with --seed 12345, three thread counts…
threads=1 sha256=d87c2c641609dc72488ad9bb37af068f5b315b6890e39bc63d81654ef5fa2c44
threads=4 sha256=d87c2c641609dc72488ad9bb37af068f5b315b6890e39bc63d81654ef5fa2c44
threads=8 sha256=d87c2c641609dc72488ad9bb37af068f5b315b6890e39bc63d81654ef5fa2c44
✅ DETERMINISTIC — identical SHA-256 across 1, 4, and 8 threads.
The output byte-for-byte does not depend on thread count, core count, or machine — only the seed. This is the property that makes reproducible bug reports, golden-master pipeline tests, and "ship the recipe, not the data" collaboration possible. It's locked in CI by GenerationEngineTest.shouldProduceIdenticalOrderedOutputRegardlessOfThreadCount.
- Java 21+ (Amazon Corretto, OpenJDK, or GraalVM)
- Gradle 9.5+ wrapper included — no system install needed
- Docker (optional, for integration tests with Testcontainers)
- JDBC driver (optional, for database destination — drop into
extras/)
Prefer not to use Docker? Run from a release JAR, the distribution zip, or source.
Download the release JAR and run immediately. You still need the config files, so clone first:
git clone https://github.com/mferretti/SeedStream.git && cd SeedStream
wget https://github.com/mferretti/SeedStream/releases/latest/download/seedstream-latest.jar
java -jar seedstream-latest.jar execute --job config/jobs/file_address.yaml --count 100wget https://github.com/mferretti/SeedStream/releases/latest/download/cli-latest.zip
unzip cli-latest.zip
# Point to your own job configs or clone the repo for examples
cli-*/bin/datagenerator execute --job /path/to/job.yaml --count 100git clone https://github.com/mferretti/SeedStream.git && cd SeedStream
./gradlew :cli:run --args="execute --job config/jobs/file_address.yaml --count 100"# Generate 10,000 US customers as CSV
./gradlew :cli:run --args="execute --job config/jobs/file_customer.yaml --format csv --count 10000"
# Stream 1M events to Kafka with 8 threads
./gradlew :cli:run --args="execute --job config/jobs/kafka_events_env_seed.yaml --count 1000000 --threads 8"
# Reproducible output — same seed, same data every time
./gradlew :cli:run --args="execute --job config/jobs/file_address.yaml --seed 12345 --count 1000"
# Validate a configuration without running
./gradlew :cli:run --args="validate --job config/jobs/file_invoice.yaml"
# Encrypt a credential for embedding in job YAML
export SEEDSTREAM_ENCRYPTION_KEY=$(openssl rand -hex 32)
echo -n "my-db-password" | ./gradlew :cli:run --args="encrypt"
# Or interactively (value hidden at terminal):
./gradlew :cli:run --args="encrypt"
# Output already includes the AES256GCM: prefix, e.g.: AES256GCM:BASE64CIPHERTEXT...
# Paste it verbatim into job YAML as: password: "${SECRET:enc:<output>}"| Option | Default | Description |
|---|---|---|
--job |
required | Path to job YAML |
--format |
json |
json, csv, protobuf, avro, avro-registry, cbeff |
--count |
100 |
Records to generate |
--seed |
from config | Override seed for this run |
--threads |
CPU cores | Worker threads |
--verbose |
off | Detailed logging |
--debug |
off | Enables sampled TRACE logging (see --trace-sample) |
--trace-sample |
10 |
TRACE sampling rate 1–100 (percentage); only effective with --debug |
Already have a live database schema or an OpenAPI spec? inspect bootstraps SeedStream structure YAML files from it, so you don't need to write them by hand.
# From a SQL DDL file (auto-detected from .sql extension)
datagenerator inspect schema.sql --output config/structures/
# From an OpenAPI 3.x spec (auto-detected from .yaml / .json extension)
datagenerator inspect api.yaml --output config/structures/
# Overwrite any existing structure files
datagenerator inspect schema.sql --output config/structures/ --forceWhat you get: one {snake_case_name}.yaml per CREATE TABLE or OpenAPI schema object, written to the output directory and immediately usable in a job. For example, given:
CREATE TABLE customers (
id BIGINT,
email VARCHAR(100),
city VARCHAR(50),
status VARCHAR(10),
balance DECIMAL(10,2),
joined DATE
);the inspector produces config/structures/customers.yaml:
name: customers
data:
id:
datatype: int[1..999999]
email:
datatype: "email" # guessed from column name — verify
city:
datatype: "city" # guessed from column name — verify
status:
datatype: char[1..10]
balance:
datatype: decimal[0.0..9999.99]
joined:
datatype: date[2020-01-01..2030-12-31]Review comments appear on fields where the inspector made a guess that a human should confirm:
| comment | what happened | action |
|---|---|---|
# guessed from column name — verify |
A Datafaker semantic type was inferred from the column name. | Keep it, change it, or replace with a char[min..max] range. |
# unrecognized source type, defaulted — verify |
SQL/OpenAPI type not recognized; fell back to char[1..50]. |
Adjust the range or type. |
Fields with no comment were mapped from explicit schema information (declared SQL types, OpenAPI format, enum, numeric bounds) and don't need review. The CLI summary reports the total count: inspect complete: 3 written, 0 skipped, 2 fields flagged for review (commented).
Foreign keys → flat references by default: each foreign key becomes a scalar ref[parent_table.column, 1..count] on the child structure, so every table maps to its own independent, joinable dataset that scales with --count. For customer → invoice → invoice_item that is three flat structures (invoice.customer_id: ref[customer.id, 1..count], invoice_item.invoice_id: ref[invoice.id, 1..count]).
Opt-in nesting (--nest): the DDL inspector can invert 1:n / 1:1 foreign keys into embedded documents — the same customer → invoice → invoice_item chain then emits a customer that carries invoices: array[object[invoice], 1..10] and an invoice that carries invoice_items: array[object[invoice_item], 1..10]:
datagenerator inspect schema.sql --nest --output config/structures/
# array multiplicity defaults to 1..10; override with --nest-default-count 2..5--nest (= --nest=auto) keeps cycles, composite FKs, and M:N junction tables flat (with a warning); --nest=all errors on a true cycle instead. A UNIQUE/PK foreign key nests as object[child] (1:1). OpenAPI specs already declare their own nesting ($ref → object[...], array of $ref → array[object[...], min..max]), so --nest is ignored for OpenAPI input. See docs/INSPECT-NESTING-PLAN.md and spec §9.
After inspection: review and adjust any commented fields, then create a job YAML pointing at the output directory and run execute as normal.
| Flag | Default | Description |
|---|---|---|
<input> |
required | Schema file to inspect (.sql, .yaml, .yml, .json) |
--output |
config/structures/ |
Directory to write structure YAML files |
--force |
off | Overwrite existing structure files (default: skip and warn) |
--format openapi|ddl|protobuf |
auto-detect | Override format detection (by default inferred from extension) |
--faker-types <file> |
unset | YAML config of extra Datafaker types; register before inspection so name hints can target them |
--best-effort |
off | DDL only: emit the parseable subset and warn on tables that fail to parse, instead of aborting the whole inspection |
--nest[=auto|all|none] |
none |
DDL only: invert 1:n/1:1 FKs into nested array[object[child]]/object[child]. auto keeps cycles/M:N/shared children flat; all errors on a true cycle |
--nest-default-count <min..max> |
1..10 |
DDL only: multiplicity for synthesized nested arrays when the schema gives no hint |
The built-in name hints cover common fields (email, city, first_name, etc.). For domain-specific column names, register extra Datafaker providers with --faker-types:
datagenerator inspect schema.sql \
--faker-types config/datafaker-types.example.yaml \
--output config/structures/The same --faker-types file must be passed to execute so those types resolve at generation time. See config/datafaker-types.example.yaml for the format and docs/INSPECT-V1-SPEC.md for the full type-mapping reference.
Validated throughput — JMH component benchmarks plus the June 2026 end-to-end suite (docs/E2E-TEST-RESULTS.md):
| Data type | Throughput |
|---|---|
| Primitive (int, boolean) | 12–258M records/sec |
| Datafaker (names, emails, etc.) | 13–154K records/sec |
| Real-world (10-field customer, E2E) | ~32–39K records/sec |
| File I/O | 600–800 MB/s |
Scaling: 3.7× speedup with 4 workers (92% efficiency). Datafaker workloads are I/O-bound — 4 threads is usually optimal regardless of core count.
See PERFORMANCE.md for full benchmarks, tuning guide, and hardware recommendations.
cli → destinations → formats → generators → schema → core
cli → inspector → schema → core
(benchmarks: JMH harness, depends on core + generators)
Eight modules — seven in the runtime dependency chain (inspector powers the inspect subcommand) plus benchmarks (JMH micro-benchmarks, excluded from production artifacts). Each layer is pluggable: add a destination by implementing DestinationAdapter, a format by implementing FormatSerializer, or a new semantic type by registering it with DatafakerRegistry.
See DESIGN.md for architecture decisions, the multi-threading reproducibility model, and extension points.
| Document | Contents |
|---|---|
| config/README.md | Type system reference, job/structure examples, Kafka & database config |
| docs/INSPECT-V1-SPEC.md | inspect subcommand: type mapping tables, DDL/OpenAPI rules, review comment taxonomy |
| docs/DESIGN.md | Architecture, threading model, reproducibility, extensibility |
| docs/CONTAINER.md | Running in Docker/Kubernetes/CI: image, /work layout, resource sizing, seed-then-test recipes |
| docs/PERFORMANCE.md | Benchmarks, tuning guide, hardware recommendations |
| docs/TROUBLESHOOTING.md | Common errors, debug mode, FAQ |
| docs/CONTRIBUTING.md | Setup, development workflow, code standards |
| docs/QUALITY.md | Coverage, SpotBugs, Spotless configuration |
| CHANGELOG.md | Release history and roadmap |
Database passwords, Kafka credentials, and other secrets can be stored securely instead of in plaintext YAML.
# Generate a key (store it safely — you need it to decrypt)
export SEEDSTREAM_ENCRYPTION_KEY=$(openssl rand -hex 32)
# Encrypt a credential — pipe via stdin (value not visible in ps or shell history)
echo -n "my-db-password" | ./seedstream encrypt
# Or run without argument to be prompted interactively (value hidden at terminal)
./seedstream encrypt
# → AES256GCM:BASE64CIPHERTEXT...Paste the output into your job YAML:
conf:
password: "${SECRET:enc:AES256GCM:BASE64CIPHERTEXT...}"conf:
password: "${ENV:DB_PASSWORD}"secrets:
resolver: vault # env | vault | aws | azure_keyvault | gcp_secretmanager | encrypted_file
vault_addr: "https://vault.example.com"
# Vault token is read from the VAULT_TOKEN environment variableSupported backends: HashiCorp Vault (KV v1/v2), AWS Secrets Manager, Azure Key Vault, Google Secret Manager, encrypted file.
See config/README.md for full secret configuration reference.
SeedStream was built with AI assistance — CLAUDE.md is in the repo and Claude Code is in the stack, openly. Fair question to ask of any such project. The answer is in the verification, not the prose:
- ~106 test classes — 90 unit + 16 integration (Testcontainers for real Kafka, and Postgres/MySQL/Oracle/SQL Server over JDBC; 3 tagged
slow), not smoke tests. - 70% minimum line coverage, enforced by a JaCoCo gate — the build fails below it.
- Static analysis on every build — SpotBugs (bug patterns) + Spotless (Google Java Style, build fails on drift).
- OWASP Dependency-Check on every push (CVSS ≥ 7.0). Every known CVE is listed below with status and an expiry date — no silent, permanent suppressions (Security).
- Benchmarked, not guessed — JMH micro-benchmarks for hot paths plus an end-to-end throughput suite (Performance, benchmarks/).
- CI you can read — build, security, and release workflows run on every push/PR.
The determinism guarantee in particular is locked by a regression test that generates the same data across 1, 2, 3, 4, 8, and 16 threads and asserts byte-for-byte identical output. Claims here are testable — ./gradlew build runs the lot.
SeedStream runs continuous OWASP Dependency-Check scans on every push (CVSS threshold ≥ 7.0).
Known open issues (as of June 2026):
| Dependency | CVE | Status |
|---|---|---|
kafka-clients 4.3.0 |
CVE-2026-41115 | No fix available yet; producer-only usage |
azure-identity 1.18.3 |
CVE-2026-33117 | No fix available yet; startup secret resolution only |
azure-core / azure-json |
CVE-2026-33117 | Transitive from azure-identity; no fix yet |
netty 4.1.131–132 |
CVE-2026-42xxx, CVE-2026-44248 | Transitive from Azure SDK; no fix yet |
netty 4.1.135 |
CVE-2026-42582 | Transitive from AWS SDK (netty-nio-client); latest 4.1.x, no fix yet |
azure-identity 1.18.3 |
CVE-2023-36415, CVE-2024-35255 | Likely false positive — version post-dates fix |
msal4j 1.23.1 |
CVE-2024-35255 | Likely false positive — version post-dates fix |
All suppressions expire 2026-07-05. CI will re-fail on that date, forcing a review. No permanent suppressions exist in this project. When a patched version ships the dependency is upgraded and the suppression removed.
To report a vulnerability, open a GitHub issue marked security.
Contributions welcome — bug reports, new generators, destinations, or formats.
git clone https://github.com/mferretti/SeedStream.git
cd SeedStream
./gradlew build testSee CONTRIBUTING.md for setup, workflow, and code standards.
Copyright 2024-2026 Marco Ferretti
Licensed under the Apache License 2.0.