Check your Kubernetes changes before they hit the cluster

GitHub actions for terraform

Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline ⚡️

Application lifecycle orchestration

🦋 A way to manage your versioning and changelogs with a focus on monorepos

A simple PreStop script for BuildKit that ensures all ongoing builds complete before Kubernetes stops the pod.

Pgtune - tuning PostgreSQL config by your hardware

Renovate prometheus metrics exporter

CloudNativePG is a comprehensive platform designed to seamlessly manage PostgreSQL databases within Kubernetes environments, covering the entire operational lifecycle from initial deployment to ong…

OpenTofu lets you declaratively manage your cloud infrastructure.

Automated Adversary Emulation Platform

Continuous Profiling Platform. Debug performance issues down to a single line of code

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

The OpenTF Manifesto expresses concern over HashiCorp's switch of the Terraform license from open-source to the Business Source License (BSL) and calls for the tool's return to a truly open-source …

Prometheus-based Kubernetes Resource Recommendations

A cloud native Kubernetes Global Balancer

OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure

Companion repo for complete Docker course

Code signing and transparency for containers and binaries

External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

Container introspection tool. Find out what container runtime is being used as well as features available.

A Kubernetes feature flag operator

Cloud Native Policy Management

A Go framework for end-to-end testing of components running in Kubernetes clusters.

Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…

Runs checks to see if an EKS cluster follows EKS Best Practices.

Kubernetes-native security toolkit

Dockerfile best-practices for writing production-worthy Docker images.

A set of modern Grafana dashboards for Kubernetes.