{"id":22169,"url":"https://github.com/hard-kernel/awesome-cloud-native","name":"awesome-cloud-native","description":"Some useful cloud native project and tools.","projects_count":270,"last_synced_at":"2026-06-03T01:00:25.388Z","repository":{"id":144303869,"uuid":"331275112","full_name":"hard-kernel/awesome-cloud-native","owner":"hard-kernel","description":"Some useful cloud native project and tools.","archived":false,"fork":false,"pushed_at":"2021-09-23T06:13:41.000Z","size":65,"stargazers_count":5,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-05-17T12:20:23.710Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/hard-kernel.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2021-01-20T10:44:14.000Z","updated_at":"2023-07-23T16:57:49.000Z","dependencies_parsed_at":"2024-01-15T19:58:40.143Z","dependency_job_id":null,"html_url":"https://github.com/hard-kernel/awesome-cloud-native","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/hard-kernel/awesome-cloud-native","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hard-kernel%2Fawesome-cloud-native","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hard-kernel%2Fawesome-cloud-native/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hard-kernel%2Fawesome-cloud-native/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hard-kernel%2Fawesome-cloud-native/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/hard-kernel","download_url":"https://codeload.github.com/hard-kernel/awesome-cloud-native/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hard-kernel%2Fawesome-cloud-native/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33843611,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-02T02:00:07.132Z","response_time":109,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"created_at":"2024-01-13T12:56:15.584Z","updated_at":"2026-06-03T01:00:25.388Z","primary_language":"Go","list_of_lists":false,"displayable":true,"categories":["Cluster","Observability","Distribution Release","Management","NetWork","Service Mesh","Runtime","Image","Develop Tools","Scheduler","Security","Workflows","OPS","Framework","Autoscaler","Storage","Multi Tenancy","Test","Operator","kubelet","Elastic Training"],"sub_categories":[],"readme":"# awesome-cloud-native\n\nSome useful project and tools.\n\n## Image\n\n- [Distroless](https://github.com/GoogleContainerTools/distroless) - Language focused docker images minus the operating system.\n- [umoci](https://github.com/opencontainers/umoci) - Modifies Open Container images.\n- [Buildah](https://github.com/containers/buildah) - A tool that facilitates building OCI images.\n- [dive](https://github.com/wagoodman/dive) - A tool for exploring each layer in a docker image.\n- [manifesto](https://github.com/aquasecurity/manifesto) - Store and query metadata for container images.\n- [container-info](https://github.com/rhdedgar/container-info)\n- [Distribution](https://github.com/distribution/distribution) - The toolkit to pack ship store and deliver container content.\n- [CRFS](https://github.com/google/crfs) - Container Registry Filesystem.\n- [imgpkg](https://github.com/vmware-tanzu/carvel-imgpkg) - Store application configuration files in Docker/OCI registries.\n- [Sinker](https://github.com/plexsystems/sinker) - A tool to sync images from one container registry to another.\n- [image-syncer](https://github.com/AliyunContainerService/image-syncer) - Docker image synchronization tool for Docker Registry V2 based services.\n- [kube-fledged](https://github.com/senthilrch/kube-fledged) - A kubernetes add-on for creating and managing a cache of container images directly on the cluster worker nodes.\n\n## Runtime\n\n- [Sysbox](https://github.com/nestybox/sysbox)\n- [footloose](https://github.com/weaveworks/footloose) - Containers that look like Virtual Machines.\n- [Ignite](https://github.com/weaveworks/ignite) - Open source Virtual Machine manager with a container UX and built-in GitOps management.\n- [Firecracker](https://github.com/firecracker-microvm/firecracker) - Secure and fast microVMs for serverless computing.\n- [Frakti](https://github.com/kubernetes/frakti) - The hypervisor-based container runtime for Kubernetes.\n- [runV](https://github.com/hyperhq/runv) - Hypervisor-based Runtime for OCI.\n- [crun](https://github.com/containers/crun) - A fast and lightweight fully featured OCI runtime and C library for running containers.\n- [iSulad](https://github.com/openeuler-mirror/iSulad) - A lightweight container runtime daemon for IOT and Cloud infrastructure.\n\n## Distribution Release\n\n- [bcs-k8s](https://github.com/Tencent/bk-bcs/tree/master/bcs-k8s)\n- [Kubernetes](https://github.com/lyft/kubernetes) - lyft.\n- [OKD](https://github.com/openshift/okd) - The Community Distribution of Kubernetes that powers RedHat's OpenShift.\n- [EKS](https://github.com/aws/eks-distro) - Amazon EKS Distro.\n- [Kine](https://github.com/k3s-io/kine) - Run Kubernetes on MySQL、Postgres、sqlite、dqlite, not etcd.\n- [Arktos](https://github.com/CentaurusInfra/arktos) - large-scale cloud platform.\n\n## Cluster\n\n- [kOps](https://github.com/kubernetes/kops) - Production Grade K8s Installation Upgrades and Management.\n- [kubespray](https://github.com/kubernetes-sigs/kubespray) - Deploy a Production Ready Kubernetes Cluster.\n- [MetalK8s](https://github.com/scality/metalk8s) - An opinionated Kubernetes distribution with a focus on long-term on-prem deployments.\n- [Gravity](https://github.com/gravitational/gravity) - Kubernetes application deployments for restricted、regulated or remote environments.\n- [Typhoon](https://github.com/poseidon/typhoon) - Minimal and free Kubernetes distribution with Terraform.\n- [KubeOperator](https://github.com/KubeOperator/KubeOperator) - Hop onto the sailing of Kubernetes.\n- [KET](https://github.com/apprenda/kismatic) - Fully-Automated Production-Grade Kubernetes Operations.\n- [kURL](https://github.com/replicatedhq/kURL) - Production-grade, airgapped Kubernetes installer combining upstream k8s with overlays and popular components.\n- [AgoraKube](https://github.com/ilkilab/agorakube) - An enterprise grade solution following best practices managing a conformant Kubernetes cluster.\n- [wksctl](https://github.com/weaveworks/wksctl) - Open Source Weaveworks Kubernetes System.\n- [K8e](https://github.com/xiaods/k8e) - Simple Enterprise Kubernetes.\n- [Gardener](https://github.com/gardener/gardener) - Kubernetes-native system managing the full lifecycle of conformant Kubernetes clusters as a service.\n- [Kubicorn](https://github.com/kubicorn/kubicorn) - Simple, cloud native infrastructure for Kubernetes.\n- [kubermatic](https://github.com/kubermatic/kubermatic) - The Central Kubernetes Management Platform For Any Infrastructure.\n- [KubeOne](https://github.com/kubermatic/kubeone) - Kubermatic KubeOne automate cluster operations on all your cloud、on-prem、edge and IoT environments.\n- [control](https://github.com/supergiant/control) - Control manages the lifecycle of clusters on your infrastructure.\n- [triton-kubernetes](https://github.com/joyent/triton-kubernetes) - A multi-cloud Kubernetes solution.\n- [Fleet](https://github.com/rancher/fleet) - Manage large fleets of Kubernetes clusters.\n- [oneinfra](https://github.com/oneinfra/oneinfra) - Kubernetes as a Service.\n- [Clusterman](https://github.com/Yelp/clusterman) - Cluster Autoscaler for Kubernetes and Mesos.\n- [k8s-cronjob-prescaler](https://github.com/microsoft/k8s-cronjob-prescaler) - Kubernetes operator that prescales cluster nodes to ensure a cronjobs start exactly on time.\n- [cluster-proportional-autoscaler](https://github.com/kubernetes-sigs/cluster-proportional-autoscaler) - Kubernetes Cluster Proportional Autoscaler Container.\n- [Karpenter](https://github.com/awslabs/karpenter) - Kubernetes Node Autoscaling.\n- [CLM](https://github.com/zalando-incubator/cluster-lifecycle-manager) - Cluster Lifecycle Manager to provision and update multiple Kubernetes clusters.\n- [Federation](https://github.com/kubernetes-retired/federation) - Cluster Federation.\n- [KOTS](https://github.com/replicatedhq/kots) - A framework tools and integrations that enable the delivery and management of 3rd-party Kubernetes applications.\n- [arkade](https://github.com/alexellis/arkade) - Open Source Kubernetes Marketplace.\n- [addon-manager](https://github.com/keikoproj/addon-manager) - Manage addons in a Kubernetes cluster.\n- [Monocular](https://github.com/helm/monocular) - Search and discovery UI for Helm Chart repositories.\n\n## Management\n\n- [Lens](https://github.com/lensapp/lens) - The Kubernetes IDE.\n- [compass](https://github.com/yametech/compass) - Kubernetes Dashboard.\n- [Octant](https://github.com/vmware-tanzu/octant) - A highly extensible platform for developers to better understand the complexity of Kubernetes clusters.\n- [Verrazzano](https://github.com/verrazzano/verrazzano) - Enterprise Container Platform for deploying cloud-native and traditional applications in multi-cloud.\n- [Liqo](https://github.com/liqotech/liqo) - Building your endless Kubernetes ocean.\n- [Submariner](https://github.com/submariner-io/submariner) - Connect all your Kubernetes clusters, no matter where they are in the world.\n- [KubeCarrier](https://github.com/kubermatic/kubecarrier) - Service Management at Scale.\n- [Beetle](https://github.com/Clivern/Beetle) - Kubernetes multi-cluster deployment automation service.\n- [KubePlus](https://github.com/cloud-ark/kubeplus) - CRD for CRDs to design multi-tenant platform services from Helm charts.\n- [manager](https://github.com/keikoproj/manager) - Multi K8s cluster Namespace Management.\n\n## Multi Tenancy\n\n- [HNC](https://github.com/kubernetes-sigs/multi-tenancy/tree/master/incubator/hnc)\n- [kiosk](https://github.com/loft-sh/kiosk) - Secure Cluster Sharing \u0026 Self-Service Namespace Provisioning.\n- [Capsule](https://github.com/clastix/capsule) - Kubernetes Operator for multi-tenancy.\n\n## NetWork\n\n- [Seesaw](https://github.com/google/seesaw) - A Linux Virtual Server based load balancing platform.\n- [gobetween](https://github.com/yyyar/gobetween) - Modern \u0026 minimalistic load balancer for the Сloud era.\n- [Katran](https://github.com/facebookincubator/katran) - A high performance layer 4 load balancer.\n- [KgLb](https://github.com/dropbox/kglb) - L4 Load Balancer.\n- [MetalLB](https://github.com/metallb/metallb) - A network load-balancer implementation for Kubernetes using standard routing protocols.\n- [Porter](https://github.com/kubesphere/porterlb) - Bare Metal Load-balancer for Kubernetes Cluster.\n- [kube-keepalived-vip](https://github.com/kubernetes-retired/contrib/tree/master/keepalived-vip)\n- [kube-vip](https://github.com/plunder-app/kube-vip) - Kubernetes Control Plane Virtual IP and Load-Balancer.\n- [network-node-manager](https://github.com/kakao/network-node-manager) - network-node-manager controls the network configuration of a node to resolve network issues of kubernetes.\n- [kubernetes-nmstate](https://github.com/nmstate/kubernetes-nmstate) - Declarative node network configuration driven through Kubernetes API.\n- [kube-iptables-tailer](https://github.com/box/kube-iptables-tailer) - A service for better network visibility for your Kubernetes clusters.\n- [VPN](https://github.com/gardener/vpn) - Network connector between the control plane, and a Shoot cluster.\n- [whereabouts](https://github.com/k8snetworkplumbingwg/whereabouts) - A CNI IPAM plugin that assigns IP addresses cluster-wide.\n- [cni-ipam-etcd](https://github.com/jeremyxu2010/cni-ipam-etcd) - IPAM CNI plugin with etcd backend.\n- [bond-cni](https://github.com/intel/bond-cni) - ail-over and high availability of networking in cloudnative orchestration.\n- [Knitter](https://github.com/ZTE/Knitter) - Kubernetes network solution.\n- [cni-migration](https://github.com/jetstack/cni-migration) - A CLI to migrate the CNI on a Kubernetes cluster from Canal to Cilium, live with no downtime.\n- [multus-config-injector](https://github.com/withlin/multus-config-injector)\n- [Kube-router](https://github.com/cloudnativelabs/kube-router) - A turnkey solution for Kubernetes networking.\n- [Bifrost](https://github.com/harmonycloud/Bifrost) - An open source solution enabling L2 network for kubernetes.\n- [Kube-OVN](https://github.com/alauda/kube-ovn) - A Kubernetes Network Fabric for Enterprises that is Rich in Functions and Easy in Operations.\n- [Weave](https://github.com/weaveworks/weave) - Simple, resilient multi-host containers networking and more.\n- [terway](https://github.com/AliyunContainerService/terway) - CNI plugin for Alibaba Cloud VPC/ENI.\n- [gardener-extension-networking-calico](https://github.com/gardener/gardener-extension-networking-calico) - Gardener extension controller for the Calico CNI network plugin.\n- [sriov-cni](https://github.com/k8snetworkplumbingwg/sriov-cni) - DPDK \u0026 SR-IOV CNI plugin.\n- [sriov-network-operator](https://github.com/openshift/sriov-network-operator) - SR-IOV Network Operator.\n- [k8s-rdma-sriov-dev-plugin](https://github.com/Mellanox/k8s-rdma-sriov-dev-plugin) - Kubernetes Rdma SRIOV device plugin.\n- [Kilo](https://github.com/squat/kilo) - A multi-cloud network overlay built on WireGuard and designed for Kubernetes.\n- [Galaxy](https://github.com/tkestack/galaxy) - Providing high-performance network for Kubernetes.\n- [illuminatio](https://github.com/inovex/illuminatio) - The kubernetes network policy validator.\n- [Whitelister](https://github.com/stakater/Whitelister) - A tool to white list node and developer IPs for kubernetes.\n- [dnsredir](https://github.com/leiless/dnsredir) - Yet another seems better forward/proxy plugin for CoreDNS.\n- [SmartNat](https://github.com/DevFactory/smartnat) - Kubernetes controller to expose Services with TCP/UDP.\n- [inlets-operator](https://github.com/inlets/inlets-operator) - Add public LoadBalancers to your local Kubernetes clusters.\n- [Gimbal](https://github.com/projectcontour/gimbal) - An ingress load balancing platform capable of routing traffic to multiple Kubernetes and OpenStack clusters.\n- [k8s-externalipcontroller](https://github.com/Mirantis/k8s-externalipcontroller) - External IP controller configures External IPs on k8s worker nodes to provide IP connectivity.\n- [kubeIP](https://github.com/doitintl/kubeip) - Assign static external IPs from predefined pool of external IP addresses to Google GKE nodes.\n- [federated-ingress-controller](https://github.com/oracle/federated-ingress-controller) - Alternative implementation of Federated Ingress using external DNS.\n- [Skipper](https://github.com/zalando/skipper) - An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress.\n- [Xposer](https://github.com/stakater/Xposer) - A Kubernetes controller to manage Kubernetes Ingresses based on the Service.\n- [Kubernetes Gateway API](https://github.com/kubernetes-sigs/gateway-api) - Repository for the next iteration of composite service and load balancing APIs.\n- [Easegress](https://github.com/megaease/easegress) - A Cloud Native traffic orchestration system.\n\n## Service Mesh\n\n- [Linkerd](https://github.com/linkerd/linkerd2) - Ultralight, security-first service mesh for Kubernetes.\n- [linkerd2-proxy](https://github.com/linkerd/linkerd2-proxy) - A purpose-built proxy for the Linkerd service mesh.\n- [Pipy](https://github.com/flomesh-io/pipy) - A tiny, high performance, highly stable, programmable proxy.\n- [MOSN](https://github.com/mosn/mosn) - A cloud native proxy for edge or service mesh.\n- [meshach](https://github.com/symcn/meshach) - It is in charge of all things about implements of Service Mesh.\n- [NSM](https://github.com/networkservicemesh/networkservicemesh) - The Hybrid/Multi-cloud IP Service Mesh.\n- [wesher](https://github.com/costela/wesher) - Wireguard overlay mesh network manager.\n- [Meshery](https://github.com/layer5io/meshery) - The service mesh management plane.\n- [Slime](https://github.com/slime-io/slime) - Smart ServiceMesh Manager.\n- [OSM](https://github.com/openservicemesh/osm) - A lightweight, extensible, cloud native service mesh that allows users to uniformly manage, secure, and get out-of-the-box observability features for highly dynamic microservice environments.\n- [Gloo](https://github.com/solo-io/gloo) - The Feature-rich, Kubernetes-native, Next-Generation API Gateway Built on Envoy.\n- [gloo-mesh](https://github.com/solo-io/gloo-mesh) - The Service Mesh Orchestration Platform.\n- [Emissary-Ingress](https://github.com/emissary-ingress/emissary) - Open source Kubernetes-native API gateway for microservices built on the Envoy Proxy.\n- [Contour](https://github.com/projectcontour/contour) - A Kubernetes ingress controller using Envoy proxy.\n- [Aeraki](https://github.com/aeraki-framework/aeraki) - Manage any layer 7 traffic in Istio Service Mesh.\n- [Kiali](https://github.com/kiali/kiali) - Observability for the Istio service mesh.\n\n## Storage\n\n- [external-resizer](https://github.com/kubernetes-csi/external-resizer) - Watche Kubernetes PersistentVolumeClaims objects and triggers controller side expansion operation.\n- [COSI](https://github.com/kubernetes-sigs/container-object-storage-interface-provisioner-sidecar) - Container Object Storage Interface provisioner responsible to interface.\n- [TopoLVM](https://github.com/topolvm/topolvm) - Capacity-aware CSI plugin for Kubernetes.\n- [Piraeus](https://github.com/piraeusdatastore/piraeus) - High Available Datastore for Kubernetes.\n- [Longhorn](https://github.com/longhorn/longhorn) - Cloud-Native distributed block storage built on and for Kubernetes.\n- [Stork](https://github.com/libopenstorage/stork) - Storage Orchestration Runtime for Kubernetes.\n- [Kanister](https://github.com/kanisterio/kanister) - An extensible framework for application-level data management on Kubernetes.\n\n## Scheduler\n\n- [Nomad](https://github.com/hashicorp/nomad) - A simple and flexible workload orchestrator to deploy and manage containers non-containerized applications at scale.\n- [Apache YuniKorn](https://github.com/apache/incubator-yunikorn-core) - Apache YuniKorn Core.\n- [Eru](https://github.com/projecteru2/core) - A simple stateless flexible production-ready orchestrator designed to easily integrate into existing workflows.\n- [poseidon](https://github.com/kubernetes-sigs/poseidon) - A Firmament-based Kubernetes scheduler.\n- [Peloton](https://github.com/uber/peloton) - Unified Resource Scheduler to co-schedule mixed types of workloads such as batch、stateless and stateful jobs for better resource utilization.\n- [Armada](https://github.com/G-Research/armada) - A multi-cluster batch queuing system for high-throughput workloads on Kubernetes.\n- [Bistro](https://github.com/facebook/bistro) - A flexible distributed scheduler, a high-performance framework supporting multiple paradigms.\n- [crl-scheduler](https://github.com/cockroachlabs/crl-scheduler)\n- [Admiralty](https://github.com/admiraltyio/admiralty) - A system of Kubernetes controllers that intelligently schedules workloads across clusters.\n- [Super scheduling](https://github.com/cwdsuzhou/super-scheduling) - A topology-scheduler and a descheduler extened from descheduler.\n\n## Workflows\n\n- [Nuclio](https://github.com/nuclio/nuclio) - High-Performance Serverless event and data processing platform.\n- [PipeCD](https://github.com/pipe-cd/pipe) - Continuous Delivery for Declarative Kubernetes, Serverless and Infrastructure Applications.\n- [Space Cloud](https://github.com/spacecloud-io/space-cloud) - Open source Firebase + Heroku to develop, scale and secure serverless apps on Kubernetes.\n- [Keptn](https://github.com/keptn/keptn) - A message-driven control-plane for application delivery and automated operations.\n- [Brigade](https://github.com/brigadecore/brigade) - Event-based Scripting for Kubernetes.\n- [Couler](https://github.com/couler-proj/couler) - Unified Interface for Constructing and Managing Workflows on different workflow engines.\n- [Cyclone](https://github.com/caicloud/cyclone) - Powerful workflow engine and end-to-end pipeline solutions implemented with native Kubernetes resources.\n\n## Autoscaler\n\n- [autoscaler](https://github.com/kubernetes/autoscaler) - Autoscaling components for Kubernetes.\n- [Pangolin](https://github.com/dpeckett/pangolin) - An enhanced Horizontal Pod Autoscaler for Kubernetes.\n- [custom-pod-autoscaler](https://github.com/jthomperoo/custom-pod-autoscaler) - Custom Pod Autoscaler base allows creation of Custom Pod Autoscalers.\n- [custom-pod-autoscaler-operator](https://github.com/jthomperoo/custom-pod-autoscaler-operator) - Operator for managing Kubernetes Custom Pod Autoscalers.\n- [horizontal-pod-autoscaler](https://github.com/jthomperoo/horizontal-pod-autoscaler) - Horizontal Pod Autoscaler, modified to work as a Custom Pod Autoscaler.\n- [Escalator](https://github.com/atlassian/escalator) - A batch or job optimized horizontal autoscaler for Kubernetes.\n- [kubernetes-cronhpa-controller](https://github.com/AliyunContainerService/kubernetes-cronhpa-controller) - HPA controller that allows to scale your workload based on time schedule.\n- [CronHPA](https://github.com/tkestack/cron-hpa) - Cron Horizontal Pod Autoscaler.\n\n## kubelet\n\n- [nri](https://github.com/containerd/nri) - Node Resource Interface.\n- [Krustlet](https://github.com/deislabs/krustlet) - Kubernetes Rust Kubelet.\n\n## Operator\n\n- [hardware-classification-controller](https://github.com/metal3-io/hardware-classification-controller) - Controller for matching host hardware characteristics to expected values.\n- [node-feature-discovery](https://github.com/openshift/node-feature-discovery) - Node feature discovery, detects the available hardware features and configuration in a cluster.\n- [Node Feature Discovery Operator](https://github.com/kubernetes-sigs/node-feature-discovery-operator) - Operator for managing Node Feature Discovery deployment.\n- [nodepool-labels-operator](https://github.com/banzaicloud/nodepool-labels-operator) - Nodepool Labels operator for Kubernetes.\n- [etcd-cloud-operator](https://github.com/Quentin-M/etcd-cloud-operator) - Deploying and managing production-grade etcd clusters on cloud providers.\n- [Etcd-Backup-Restore](https://github.com/gardener/etcd-backup-restore) - Collection of components to back up and restore the Etcd of a Kubernetes cluster.\n- [etcd-druid](https://github.com/gardener/etcd-druid) - A druid for etcd management in Gardener.\n- [etcd-backup](https://github.com/gravitational/etcd-backup) - For handling backup/restore of etcd database from userspace.\n\n## Elastic Training\n\n- [elastic-jupyter-operator](https://github.com/tkestack/elastic-jupyter-operator) - Cloud-native way to provide elastic Jupyter Notebook services on Kubernetes.\n\n## Framework\n\n- [admission-control](https://github.com/elithrar/admission-control) - A helpful micro-framework for writing Kubernetes Admission Controllers.\n- [generic-admission-server](https://github.com/openshift/generic-admission-server) - A library for writing admission webhooks based on k8s.io/apiserver.\n- [Multicluster-Controller](https://github.com/admiraltyio/multicluster-controller) - A Library for Building Hybrid and Multicloud Kubernetes Operators.\n- [whitebox-controller](https://github.com/summerwind/whitebox-controller) - Extensible generic controller for Kubernetes.\n- [KUDO](https://github.com/kudobuilder/kudo) - Kubernetes Universal Declarative Operator.\n- [operator-kit](https://github.com/rook/operator-kit) - A library for creating a Kubernetes Operator.\n- [CRAFT](https://github.com/salesforce/craft) - Removes the language barrier to create Kubernetes Operators.\n- [Metacontroller](https://github.com/metacontroller/metacontroller) - Writing kubernetes controllers can be simple.\n- [Gontroller](https://github.com/spotahome/gontroller) - Go library to create resilient feedback loop/control controllers.\n\n## OPS\n\n- [Tini](https://github.com/krallin/tini) - A tiny but valid init for containers.\n- [dumb-init](https://github.com/Yelp/dumb-init) - A minimal init system for Linux containers.\n- [OOMHero](https://github.com/ricardomaraschini/oomhero) - Kubernetes sidecar for memory usage tracking.\n- [kubernetes-oom-event-generator](https://github.com/xing/kubernetes-oom-event-generator) - Generate a Kubernetes Event when a Pod's container has been OOMKilled.\n- [kubefs](https://github.com/configurator/kubefs) - Mount kubernetes metadata storage as a filesystem.\n- [kubent](https://github.com/doitintl/kube-no-trouble) - Easily check your cluster for use of deprecated APIs.\n- [Sonobuoy](https://github.com/vmware-tanzu/sonobuoy) - A diagnostic tool that makes it easier to understand the state of a Kubernetes cluster.\n- [KubeLinter](https://github.com/stackrox/kube-linter) - KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts.\n- [k8s-platform-lcm](https://github.com/arminc/k8s-platform-lcm) - A faster and easier way to manage the lifecycle of applications and tools.\n- [troubleshoot](https://github.com/replicatedhq/troubleshoot) - Preflight Checks and Support Bundles Framework for Kubernetes Applications.\n- [Crashd](https://github.com/vmware-tanzu/crash-diagnostics) - A tool to help investigate analyze and troubleshoot unresponsive or crashed Kubernetes clusters.\n- [Goldilocks](https://github.com/FairwindsOps/goldilocks) - Get your resource requests Just Right.\n- [governor](https://github.com/keikoproj/governor) - A collection of cluster reliability tools for Kubernetes.\n- [pod-reaper](https://github.com/ptagr/pod-reaper) - A kubernetes operator that reaps pods that have reached their lifetime.\n- [Jamadar](https://github.com/stakater/Jamadar) - A kubernetes controller which cleans up cluster left-overs.\n- [draino](https://github.com/planetlabs/draino) - Automatically cordon and drain Kubernetes nodes based on node conditions.\n- [astrolabe](https://github.com/vmware-tanzu/astrolabe) - Data protection framework for complex applications.\n- [Gemini](https://github.com/FairwindsOps/gemini) - Automated backups of PersistentVolumeClaims in Kubernetes using VolumeSnapshots.\n- [Stash](https://github.com/stashed/stash) - Backup your Kubernetes Stateful Applications.\n- [ksync](https://github.com/ksync/ksync) - Sync files between your local system and kubernetes cluster.\n- [Kubecost](https://github.com/kubecost/cost-model) - Cross-cloud cost allocation models for workloads running on Kubernetes.\n- [podpreset-webhook](https://github.com/redhat-cop/podpreset-webhook) - A helpful micro-framework for writing Kubernetes Admission Controllers.\n- [mutating-trace-admission-controller](https://github.com/kubernetes-retired/mutating-trace-admission-controller) - Enables experimental tracing of kubernetes object lifecycle.\n- [cert-injection-webhook](https://github.com/vmware-tanzu/cert-injection-webhook) - Provides a Kubernetes webhook to inject CA certificates and proxy environment variables into pods.\n\n## Observability\n\n- [Sloop](https://github.com/salesforce/sloop) - Kubernetes History Visualization.\n- [Scope](https://github.com/weaveworks/scope) - Monitoring、visualisation \u0026 management for Docker \u0026 Kubernetes.\n- [metering-operator](https://github.com/kube-reporting/metering-operator) - The Metering Operator is responsible for collecting metrics and other information.\n- [kubespy](https://github.com/pulumi/kubespy) - Tools for observing Kubernetes resources in real time.\n- [Pixie](https://github.com/pixie-labs/pixie) - Instant visibility by giving access to metrics、events、traces and logs without changing code.\n- [dead-mans-switch](https://github.com/pingcap/dead-mans-switch) - A bypass monitoring prober.\n- [pleg-watcher](https://github.com/rhdedgar/pleg-watcher)\n- [Kubemem](https://github.com/16Bitt/kubemem) - A small binary to probe memory usage in a kubernetes pod.\n- [kmoncon](https://github.com/Stono/kconmon) - A Kubernetes node connectivity monitoring tool.\n- [Kubenurse](https://github.com/postfinance/kubenurse) - Kubernetes network monitoring.\n- [Eventrouter](https://github.com/heptiolabs/eventrouter) - A simple introspective kubernetes service that forwards events to a specified sink.pid2pod.\n- [K8stream](https://github.com/last9/k8stream) - Processing kubenetes events stream.\n- [stern](https://github.com/wercker/stern) - Multi pod and container log tailing for Kubernetes.\n- [Kvass](https://github.com/tkestack/kvass) - A Prometheus horizontal auto-scaling solution.\n- [prometheus-adapter](https://github.com/kubernetes-sigs/prometheus-adapter) - An implementation of the custom.metrics.k8s.io API using Prometheus.\n- [Promxy](https://github.com/jacksontj/promxy) - An aggregating proxy to enable HA prometheus.\n- [Promscale](https://github.com/timescale/promscale) - An open-source analytical platform for Prometheus metrics.\n- [Promgen](https://github.com/line/promgen) - Promgen is a configuration file generator for Prometheus.\n- [promdump](https://github.com/ihcsim/promdump) - A tool to dump and restore Prometheus data blocks.\n- [InfluxDB IOx](https://github.com/influxdata/influxdb_iox) - New core of InfluxDB written in Rust on top of Apache Arrow.\n- [chronus](https://github.com/angopher/chronus) - Distributed InfluxDB.\n- [InfluxDB Proxy](https://github.com/chengshiwen/influx-proxy) - InfluxDB Proxy with High Availability and Consistent Hash.\n- [Cortex](https://github.com/cortexproject/cortex) - A horizontally scalable, highly available, multi-tenant, long term Prometheus.\n- [Grafana Tempo](https://github.com/grafana/tempo) - Grafana Tempo is a high volume, minimal dependency distributed tracing backend.\n- [Sloth](https://github.com/slok/sloth) - Easy and simple Prometheus SLO generator.\n- [kubernetes-mixin](https://github.com/kubernetes-monitoring/kubernetes-mixin) - A set of Grafana dashboards and Prometheus alerts for Kubernetes.\n- [awesome-prometheus-alerts](https://github.com/samber/awesome-prometheus-alerts) - Collection of Prometheus alerting rules.\n- [Alerta](https://github.com/alerta/alerta) - Alerta monitoring system.\n- [DARK](https://github.com/K-Phoen/dark) - Dashboards As Resources in Kubernetes.\n- [Trickster](https://github.com/trickstercache/trickster) - Open Source HTTP Reverse Proxy Cache and Time Series Dashboard Accelerator.\n\n## Security\n\n- [permission-manager](https://github.com/sighupio/permission-manager) - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW.\n- [rback](https://github.com/team-soteria/rback) - RBAC in Kubernetes visualizer.\n- [kubeaudit](https://github.com/Shopify/kubeaudit) - kubeaudit helps you audit your Kubernetes clusters against common security controls.\n- [audit2rbac](https://github.com/liggitt/audit2rbac) - Autogenerate RBAC policies based on Kubernetes audit logs.\n- [kube-rbac-proxy](https://github.com/brancz/kube-rbac-proxy) - Kubernetes RBAC authorizing HTTP proxy for a single upstream.\n- [Guard](https://github.com/kubeguard/guard) - Kubernetes Authentication \u0026 Authorization WebHook Server.\n- [rakkess](https://github.com/corneliusweig/rakkess) - kubectl plugin to show an access matrix for k8s server resources.\n- [kubectl-who-can](https://github.com/aquasecurity/kubectl-who-can) - Show who has RBAC permissions to perform actions on different resources in Kubernetes.\n- [dex](https://github.com/dexidp/dex) - OpenID Connect Identity and OAuth 2.0 Provider with Pluggable Connectors.\n- [gangway](https://github.com/heptiolabs/gangway) - An application that can be used to easily enable authentication flows via OIDC for a kubernetes cluster.\n- [Pinniped](https://github.com/vmware-tanzu/pinniped) - Pinniped provides identity services for Kubernetes clusters.\n- [BOtB](https://github.com/brompwnie/botb) - A container analysis and exploitation tool for pentesters and engineers.\n- [Terrier](https://github.com/heroku/terrier) - Terrier can be used to scan Images and Containers to identify and verify the presence of specific files according to their hashes.\n- [fanal](https://github.com/aquasecurity/fanal) - Static Analysis Library for Containers.\n- [Secrets](https://github.com/deepfence/SecretScanner) - Find secrets and passwords in container images and file systems.\n- [Dockle](https://github.com/goodwithtech/dockle) - Container Image Linter for Security Helping build the Best-Practice Docker Image Easy to start.\n- [ThreatMapper](https://github.com/deepfence/ThreatMapper) - Identify vulnerabilities in running containers images hosts and repositories.\n- [Kubei](https://github.com/Portshift/kubei) - A flexible Kubernetes runtime scanner scanning images of worker and Kubernetes nodes providing accurate vulnerabilities assessment.\n- [Portieris](https://github.com/IBM/portieris) - A Kubernetes Admission Controller for verifying image trust with Notary.\n- [Karydia](https://github.com/karydia/karydia) - Kubernetes Security Walnut.\n- [Kube-Scan](https://github.com/octarinesec/kube-scan) - Octarine k8s cluster risk assessment tool.\n- [Kubesec](https://github.com/controlplaneio/kubesec) - Security risk analysis for Kubernetes resources.\n- [MKIT](https://github.com/darkbitio/mkit) - Validates several common security-related configuration settings of managed Kubernetes cluster objects and the workloads/resources.\n- [kube-score](https://github.com/zegl/kube-score) - Kubernetes object analysis with recommendations for improved reliability and security.\n- [k8s-security-dashboard](https://github.com/k8scop/k8s-security-dashboard) - A security monitoring solution for Kubernetes.\n- [kubectl-kubesec](https://github.com/controlplaneio/kubectl-kubesec) - Security risk analysis for Kubernetes resources.\n- [Falco](https://github.com/falcosecurity/falco) - Cloud Native Runtime Security.\n- [KubeTEE](https://github.com/SOFAEnclave/KubeTEE) - A collection of TEE development、deployment、maintenance middleware framework for Kubernetes.\n\n## Test\n\n- [bother](https://github.com/mhausenblas/kboom) - The Kubernetes scale \u0026 soak load tester.\n- [Lotus](https://github.com/lotusload/lotus) - Kubernetes controller for running load testing.\n- [K-Bench](https://github.com/vmware-tanzu/k-bench) - Workload Benchmark for Kubernetes.\n- [k8s-sched-perf-stat](https://github.com/Huang-Wei/k8s-sched-perf-stat) - A tool to analyze the result of Kubernetes Scheduler Integration Performance test.\n\n## Develop Tools\n\n- [Tilt](https://github.com/tilt-dev/tilt) - A multi-service dev environment for teams on Kubernetes.\n- [Nocalhost](https://github.com/nocalhost/nocalhost) - Cloud Native Environment.\n- [KT Connect](https://github.com/alibaba/kt-connect) - Manage and Integration with your Kubernetes dev environment more efficient.\n- [Okteto](https://github.com/okteto/okteto) - Develop your applications directly in your Kubernetes Cluster.\n- [Skaffold](https://github.com/GoogleContainerTools/skaffold) - Easy and Repeatable Kubernetes Development.\n- [CDS](https://github.com/ovh/cds) - Enterprise-Grade Continuous Delivery \u0026 DevOps Automation Open Source Platform.\n\n","projects_url":"https://awesome.ecosyste.ms/api/v1/lists/hard-kernel%2Fawesome-cloud-native/projects"}