Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

awesome-cloud-native

Some useful cloud native project and tools.
https://github.com/hard-kernel/awesome-cloud-native

Last synced: 3 days ago
JSON representation

  • Scheduler

    • poseidon - A Firmament-based Kubernetes scheduler.
    • Peloton - Unified Resource Scheduler to co-schedule mixed types of workloads such as batch、stateless and stateful jobs for better resource utilization.
    • crl-scheduler
    • Admiralty - A system of Kubernetes controllers that intelligently schedules workloads across clusters.
    • Super scheduling - A topology-scheduler and a descheduler extened from descheduler.
    • Apache YuniKorn - Apache YuniKorn Core.
    • poseidon - A Firmament-based Kubernetes scheduler.
    • Armada - A multi-cluster batch queuing system for high-throughput workloads on Kubernetes.
    • Bistro - A flexible distributed scheduler, a high-performance framework supporting multiple paradigms.

  • Security

    • permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW.
    • rback - RBAC in Kubernetes visualizer.
    • kubeaudit - kubeaudit helps you audit your Kubernetes clusters against common security controls.
    • audit2rbac - Autogenerate RBAC policies based on Kubernetes audit logs.
    • kube-rbac-proxy - Kubernetes RBAC authorizing HTTP proxy for a single upstream.
    • Guard - Kubernetes Authentication & Authorization WebHook Server.
    • rakkess - kubectl plugin to show an access matrix for k8s server resources.
    • kubectl-who-can - Show who has RBAC permissions to perform actions on different resources in Kubernetes.
    • dex - OpenID Connect Identity and OAuth 2.0 Provider with Pluggable Connectors.
    • BOtB - A container analysis and exploitation tool for pentesters and engineers.
    • Terrier - Terrier can be used to scan Images and Containers to identify and verify the presence of specific files according to their hashes.
    • fanal - Static Analysis Library for Containers.
    • Secrets - Find secrets and passwords in container images and file systems.
    • Dockle - Container Image Linter for Security Helping build the Best-Practice Docker Image Easy to start.
    • ThreatMapper - Identify vulnerabilities in running containers images hosts and repositories.
    • Portieris - A Kubernetes Admission Controller for verifying image trust with Notary.
    • Karydia - Kubernetes Security Walnut.
    • Kube-Scan - Octarine k8s cluster risk assessment tool.
    • Kubesec - Security risk analysis for Kubernetes resources.
    • MKIT - Validates several common security-related configuration settings of managed Kubernetes cluster objects and the workloads/resources.
    • kube-score - Kubernetes object analysis with recommendations for improved reliability and security.
    • k8s-security-dashboard - A security monitoring solution for Kubernetes.
    • kubectl-kubesec - Security risk analysis for Kubernetes resources.
    • Falco - Cloud Native Runtime Security.
    • KubeTEE - A collection of TEE development、deployment、maintenance middleware framework for Kubernetes.
    • Kubei - A flexible Kubernetes runtime scanner scanning images of worker and Kubernetes nodes providing accurate vulnerabilities assessment.
    • Karydia - Kubernetes Security Walnut.
    • gangway - An application that can be used to easily enable authentication flows via OIDC for a kubernetes cluster.
    • Pinniped - Pinniped provides identity services for Kubernetes clusters.

  • Service Mesh

    • gloo-mesh - The Service Mesh Orchestration Platform.
    • Linkerd - Ultralight, security-first service mesh for Kubernetes.
    • linkerd2-proxy - A purpose-built proxy for the Linkerd service mesh.
    • Pipy - A tiny, high performance, highly stable, programmable proxy.
    • MOSN - A cloud native proxy for edge or service mesh.
    • meshach - It is in charge of all things about implements of Service Mesh.
    • NSM - The Hybrid/Multi-cloud IP Service Mesh.
    • wesher - Wireguard overlay mesh network manager.
    • Slime - Smart ServiceMesh Manager.
    • OSM - A lightweight, extensible, cloud native service mesh that allows users to uniformly manage, secure, and get out-of-the-box observability features for highly dynamic microservice environments.
    • Gloo - The Feature-rich, Kubernetes-native, Next-Generation API Gateway Built on Envoy.
    • Emissary-Ingress - Open source Kubernetes-native API gateway for microservices built on the Envoy Proxy.
    • Contour - A Kubernetes ingress controller using Envoy proxy.
    • Kiali - Observability for the Istio service mesh.
    • Meshery - The service mesh management plane.
    • Aeraki - Manage any layer 7 traffic in Istio Service Mesh.

  • Storage

    • external-resizer - Watche Kubernetes PersistentVolumeClaims objects and triggers controller side expansion operation.
    • COSI - Container Object Storage Interface provisioner responsible to interface.
    • TopoLVM - Capacity-aware CSI plugin for Kubernetes.
    • Piraeus - High Available Datastore for Kubernetes.
    • Longhorn - Cloud-Native distributed block storage built on and for Kubernetes.
    • Stork - Storage Orchestration Runtime for Kubernetes.
    • Kanister - An extensible framework for application-level data management on Kubernetes.
    • COSI - Container Object Storage Interface provisioner responsible to interface.

  • Test

    • bother - The Kubernetes scale & soak load tester.
    • Lotus - Kubernetes controller for running load testing.
    • K-Bench - Workload Benchmark for Kubernetes.
    • k8s-sched-perf-stat - A tool to analyze the result of Kubernetes Scheduler Integration Performance test.

  • Workflows

    • Nuclio - High-Performance Serverless event and data processing platform.
    • Space Cloud - Open source Firebase + Heroku to develop, scale and secure serverless apps on Kubernetes.
    • Keptn - A message-driven control-plane for application delivery and automated operations.
    • Brigade - Event-based Scripting for Kubernetes.
    • Couler - Unified Interface for Constructing and Managing Workflows on different workflow engines.
    • Cyclone - Powerful workflow engine and end-to-end pipeline solutions implemented with native Kubernetes resources.
    • PipeCD - Continuous Delivery for Declarative Kubernetes, Serverless and Infrastructure Applications.
Programming Languages
Go 200 Python 7 Shell 6 C 5 TypeScript 3 Rust 3 HTML 2 C++ 2 Jinja 2 Scheme 1
Categories
NetWork 43 Observability 30 Cluster 29 Security 29 OPS 24 Service Mesh 16 Image 12 Scheduler 11 Management 9 Framework 9 Autoscaler 8 Storage 8 Operator 8 Runtime 8 Workflows 7 Develop Tools 6 Distribution Release 6 Test 4 Multi Tenancy 3 kubelet 2 Elastic Training 1
Sub Categories
Keywords
kubernetes 130 docker 29 k8s 24 golang 24 containers 21 cloud-native 19 go 17 cncf 14 operator 12 prometheus 11 monitoring 11 kubernetes-cluster 10 aws 10 service-mesh 9 networking 9 devops 8 cluster 7 cni 7 controller 7 oci 7 high-availability 7 rbac 6 cloud 6 proxy 6 kubernetes-controller 5 etcd 5 load-balancer 5 security-tools 5 microservices 5 autoscaler 5 security 5 serverless 4 http-proxy 4 eks 4 kubernetes-operator 4 helm 4 envoy 4 container 4 automation 4 istio 4 api-gateway 4 microservice 4 observability 4 backup 4 rust 3 ansible 3 ingress 3 bare-metal 3 autoscaling 3 gitops 3