Making it easy to write shell-like scripts in Go. Contribute to bitfield/script development by creating an account on GitHub.
The Missing WireGuard Documentation: Setup, Usage, Configuration, and a full example for server-to-server VPN with roaming clients & public peers. - pirate/wireguard-docs
Kilo connects nodes in a cluster by providing an encrypted layer 3 network that can span across data centers and public clouds. By allowing pools of nodes in different locations to communicate securely, Kilo enables the operation of multi-cloud clusters. Kilo's design allows clients to VPN to a cluster in order to securely access services running on the cluster. In addition to creating multi-cloud clusters, Kilo enables the creation of multi-cluster services, i.e. services that span across different Kubernetes clusters.
Encrypted and versioned configuration store built with collaboration in mind
Lyra (“lee-ruh”) is an open source workflow engine for provisioning and managing cloud native infrastructure. Using infrastructure as code, Lyra enables you to declaratively provision and manage public cloud, private cloud, and other API-backed resources as well as orchestrate imperative actions.
Kopf —Kubernetes Operator Pythonic Framework— is a framework and a library to make Kubernetes operators development easier, just in few lines of Python code.
The main goal is to bring the Domain-Driven Design to the infrastructure level, with Kubernetes being an orchestrator/database of the domain objects (custom resources), and the operators containing the domain logic (with no or minimal infrastructure logic).
Razee is an open-source project that was developed by IBM to automate and manage the deployment of Kubernetes resources across clusters, environments, and cloud providers, and to visualize deployment information for your resources so that you can monitor the rollout process and find deployment issues more quickly.
Trickster is a reverse proxy cache for the Prometheus HTTP APIv1 that dramatically accelerates dashboard rendering times for any series queried from Prometheus.
Akrobateo is a universal load balancer service implementation for Kubernetes. Akrobateo can work in any environment which makes it suitable for many use cases. And it's super light-weight too. It is implemented as an operator that reacts when it sees type: LoadBalancer services in the cluster.
Polaris helps keep your cluster healthy. It runs a variety of checks to ensure that Kubernetes deployments are configured using best practices that will avoid potential problems in the future. The project includes two primary components:
A dashboard that provides an overview of how well current deployments are configured within a cluster.
An experimental validating webhook that can prevent any future deployments that do not live up to a configured standard.
Talos is a modern operating system for Kubernetes that provides a number of capabilities. A few are:
Security: reduce your attack surface by practicing the Principle of Least Privilege (PoLP) and enforcing mutual TLS (mTLS).
Predictability: remove needless variables and reduce unknown factors from your environment using immutable infrastructure.
Evolvability: simplify and increase your ability to easily accommodate future changes to your architecture.
Metrics dashboards on terminal (a grafana inspired terminal version) - slok/grafterm
a vault client, but for servers and containers. Contribute to cruise-automation/daytona development by creating an account on GitHub.
Metal Kubed - Bare Metal Host Provisioning for Kubernetes - Metal³
This tool helps you test and iterate on Prometheus Alertmanager notification templates for Slack.
kubeone is a CLI tool and a Go library for installing, managing, and upgrading Kubernetes High-Available (HA) clusters. It can be used on any cloud provider, on-prem or bare-metal cluster.
CLI tool to generate tf and tfstate files from existing infrastructure (reverse Terraform)
KubePlus Platform toolkit simplifies discovery and use of Kubernetes Operators and Custom Resources in a cluster.
Kubernetes Custom Resource Definitions (CRDs), popularly known as Operators, extend Kubernetes to run and manage third-party software directly on Kubernetes. Today, number of Operators are being built for middlewares like databases, queues, ssl certificates, etc. The Custom Resources introduced by Operators essentially represent 'platform elements' as their Spec definitions encapsulate some higher-level workflow actions on the underlying infrastructure resource that they are managing (database, queue, ssl certificate, etc.). A novel approach for building platforms on Kubernetes is to construct a platform stack from multiple Custom Resources, essentially building platforms as Code.
Platform as Code approach provides true portability across Cloud providers as your entire platform stack is running on Kubernetes. It also enables Kubernetes YAML to become common language between Operations team and application development teams.
Fabrikate helps make operating Kubernetes clusters with a GitOps workflow more productive. It allows you to write DRY resource definitions and configuration for multiple environments while leveraging the broad Helm chart ecosystem, capture higher level definitions into abstracted and shareable components, and enable a GitOps deployment workflow that both simplifies and makes deployments more auditable.
This project is our humble attempt to combine the collective wisdom of the cloud native community for building best practice cloud native Kubernetes clusters, based on real world experiences deploying and operating applications and Kubernetes clusters.
Bedrock is a set of automation, tooling, and infrastructure for deploying production-level Kubernetes clusters with a secure and auditable GitOps workflow.