{"id":37229136,"url":"https://github.com/cfg-is/cfgms","last_synced_at":"2026-01-25T18:03:17.469Z","repository":{"id":329376987,"uuid":"880034873","full_name":"cfg-is/cfgms","owner":"cfg-is","description":"Configuration Management System designed to be able to fully deploy to any endpoint w/ no dependancies","archived":false,"fork":false,"pushed_at":"2026-01-22T15:06:00.000Z","size":43459,"stargazers_count":0,"open_issues_count":24,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-01-22T16:09:43.110Z","etag":null,"topics":["configuration-management","devops","golang","infrastructure","mqtt","msp","multi-tenant","quic","zero-trust"],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cfg-is.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-10-29T01:50:04.000Z","updated_at":"2026-01-11T23:53:16.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/cfg-is/cfgms","commit_stats":null,"previous_names":["cfg-is/cfgms"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/cfg-is/cfgms","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cfg-is%2Fcfgms","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cfg-is%2Fcfgms/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cfg-is%2Fcfgms/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cfg-is%2Fcfgms/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cfg-is","download_url":"https://codeload.github.com/cfg-is/cfgms/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cfg-is%2Fcfgms/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28756432,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-25T16:32:25.380Z","status":"ssl_error","status_checked_at":"2026-01-25T16:32:09.189Z","response_time":113,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["configuration-management","devops","golang","infrastructure","mqtt","msp","multi-tenant","quic","zero-trust"],"created_at":"2026-01-15T03:31:19.366Z","updated_at":"2026-01-25T18:03:17.464Z","avatar_url":"https://github.com/cfg-is.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# CFGMS (Config Management System)\n\nCFGMS is a modern configuration management system designed with resilience, security, and clean architecture in mind.\n\n**Key Features:**\n- Policy-as-code enforcement or drift detection\n- Powerful and easy workflow automation platform\n- Built for MSPs multi-tenancy requirements\n- Mutual TLS security with zero-trust RBAC\n- M365, Active Directory, and endpoint integrations\n- Cross-platform support (Windows, macOS, Linux)\n\n[![Build Status](https://github.com/cfg-is/cfgms/workflows/Cross-Platform%20Build%20Validation/badge.svg)](https://github.com/cfg-is/cfgms/actions)\n[![Security Scan](https://github.com/cfg-is/cfgms/workflows/Security%20Scanning%20Workflow/badge.svg)](https://github.com/cfg-is/cfgms/actions)\n[![CodeQL](https://github.com/cfg-is/cfgms/workflows/CodeQL%20Security%20Analysis/badge.svg)](https://github.com/cfg-is/cfgms/security/code-scanning)\n[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/cfg-is/cfgms/badge)](https://securityscorecards.dev/viewer/?uri=github.com/cfg-is/cfgms)\n[![Go Report Card](https://goreportcard.com/badge/github.com/cfg-is/cfgms)](https://goreportcard.com/report/github.com/cfg-is/cfgms)\n[![License](https://img.shields.io/badge/License-Apache%202.0%20%2B%20Elastic%20v2-blue.svg)](LICENSING.md)\n\n## Project Status\n\nThe project is in early development. Core architecture and structure have been implemented, but many components are still being developed.\n\n### Project Management\n\nDevelopment progress is tracked through the [**CFGMS Development Roadmap** GitHub Project](https://github.com/orgs/cfg-is/projects/1).\n\nThis project board provides real-time visibility into:\n\n- Current development priorities and milestones\n- Issue tracking and feature requests\n- Sprint planning and task organization\n- Overall project completion status\n\n## License\n\nCFGMS uses a **dual licensing model**:\n\n- **[Apache License 2.0](LICENSE-APACHE-2.0)** - The vast majority of CFGMS (all modules, integrations, CLI/API, workflow engine, DNA system, RBAC, monitoring)\n- **[Elastic License 2.0](LICENSE-ELASTIC-2.0)** - Small subset of enterprise features (HA clustering, future Web UI)\n\n**Quick Summary:**\n- **Open Source (Apache 2.0)**: Free forever, use commercially, modify and distribute freely\n- **Commercial (Elastic 2.0)**: Free to use in your infrastructure, cannot offer as a hosted service\n\nFor complete licensing details, feature boundaries, and FAQ, see [LICENSING.md](LICENSING.md).\n\n## Enterprise Features\n\nEnterprise features (HA clustering, Web UI, multi-MSP) are available by building with `-tags commercial`. These features are **free for internal use** under Elastic License 2.0.\n\nFor hosted deployment or support contracts, contact [licensing@cfg.is](mailto:licensing@cfg.is). See [LICENSING.md](LICENSING.md) for complete details.\n\n## Platform Support\n\nCFGMS is designed for cross-platform deployment across diverse infrastructure environments:\n\n### Steward (Agent) Support\n\n- **Linux**: AMD64 \u0026 ARM64 - Full support across distributions\n- **Windows**: AMD64 \u0026 ARM64 - Windows 10, 11, Server 2019+\n- **macOS**: ARM64 (M series) - Apple Silicon Macs\n\n### Controller Support  \n\n- **Linux**: AMD64 - Primary target for production deployments\n- **Windows**: AMD64 - Development and testing environments\n\nFor detailed platform information, installation instructions, and deployment architectures, see [docs/deployment/platform-support.md](docs/deployment/platform-support.md).\n\n## Development\n\nCFGMS follows the GitFlow branching model:\n\n- `main` branch contains production-ready code\n- `develop` branch is for integration of features\n- Feature development happens in `feature/*` branches\n- See [CONTRIBUTING.md](CONTRIBUTING.md) for complete workflow details\n\n## Next Steps\n\nFor current development priorities and detailed roadmap information, please refer to:\n\n- **Roadmap**: See [docs/product/roadmap.md](docs/product/roadmap.md) for the complete development roadmap and version planning\n- **Project Management**: Visit the [CFGMS Development Roadmap](https://github.com/orgs/cfg-is/projects/1) GitHub Project for real-time progress tracking and task management\n\nThe roadmap provides detailed milestone planning from v0.1.0 through v3.5.0+, including current development phases, feature priorities, and architectural concepts that guide the project's evolution.\n\n## Security\n\nCFGMS implements defense-in-depth security with:\n\n- **Mutual TLS**: All internal communication (MQTT+QUIC) uses certificate-based authentication\n- **Zero-Trust RBAC**: Just-in-time access, continuous authorization, audit logging\n- **Automated Scanning**: CodeQL, Trivy, gosec, and supply chain security validation\n- **Data Protection**: SOPS encryption, TLS 1.3, OS keychain integration\n\nView our security posture: [OpenSSF Scorecard](https://securityscorecards.dev/viewer/?uri=github.com/cfg-is/cfgms)\n\n**Report vulnerabilities** to [security@cfg.is](mailto:security@cfg.is). See [SECURITY.md](SECURITY.md) for complete policy.\n\n## REST API\n\nCFGMS provides a comprehensive REST API for external integration:\n\n- **Authentication**: API key-based\n- **Endpoints**: Steward management, configuration, certificates, RBAC\n- **Base URL**: `http://localhost:9080/api/v1` (configurable)\n\nSee [docs/api/rest-api.md](docs/api/rest-api.md) for complete documentation and examples.\n\n## Project Structure\n\nThe project follows a feature-based organization:\n\n- `cmd/` - Command-line applications\n  - `controller/` - Controller binary\n  - `steward/` - Steward binary\n  - `cfg/` - CLI for interacting with the system\n\n- `features/` - Core feature implementations\n  - `controller/` - Controller component\n  - `steward/` - Steward (agent) component\n\n- `pkg/` - Shared packages\n  - `logging/` - Logging utilities\n\n- `api/` - API definitions\n  - `proto/` - Protocol buffer definitions\n\n- `test/` - Integration and end-to-end tests\n\n## Quick Start\n\n**Prerequisites**: Go 1.21+, Git\n\n```bash\n# Clone and build\ngit clone https://github.com/cfg-is/cfgms.git\ncd cfgms\nmake build\n\n# Run controller\n./bin/controller\n\n# Run steward (separate terminal)\n./bin/cfgms-steward\n```\n\nFor detailed setup and configuration, see [docs/deployment/](docs/deployment/).\n\n## Building from Source\n\n```bash\n# Clone the repository\ngit clone https://github.com/cfg-is/cfgms.git\ncd cfgms\n\n# Build the controller\ngo build -o bin/controller ./cmd/controller\n\n# Build the steward\ngo build -o bin/cfgms-steward ./cmd/steward\n```\n\n## Documentation\n\nFor full documentation, visit [docs.cfg.is](https://docs.cfg.is)\n\n## Contributing\n\nWe welcome contributions! Before submitting code:\n\n1. Sign the [Contributor License Agreement](docs/legal/CLA.md) and add your name to [CONTRIBUTORS.md](CONTRIBUTORS.md)\n2. Follow the development workflow in [CONTRIBUTING.md](CONTRIBUTING.md)\n\n## Community \u0026 Support\n\n- **Issues \u0026 Bug Reports**: [GitHub Issues](https://github.com/cfg-is/cfgms/issues)\n- **Feature Requests**: [GitHub Issues](https://github.com/cfg-is/cfgms/issues/new)\n- **Security Advisories**: [GitHub Security](https://github.com/cfg-is/cfgms/security/advisories)\n- **Code Scanning Results**: [GitHub Security](https://github.com/cfg-is/cfgms/security/code-scanning)\n- **Project Roadmap**: [GitHub Project Board](https://github.com/orgs/cfg-is/projects/1)\n- **Email Contact**: [licensing@cfg.is](mailto:licensing@cfg.is)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcfg-is%2Fcfgms","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcfg-is%2Fcfgms","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcfg-is%2Fcfgms/lists"}