Kubernetes-related projects that you might find helpful
Projects built to make life with Kubernetes even better, more powerful, more scalable
- Ambassador - API Gateway built on the Envoy Proxy
- Argo - The Workflow Engine for Kubernetes
- Bitnami Kubernetes Production Runtime
- Client Libraries
- Escalator - A batch or job optimized horizontal autoscaler for Kubernetes
- Fairwinds Pluto - A cli tool to help discover deprecated apiVersions in Kubernetes
- Fairwinds Polaris - An open source dashboard for Kubernetes best practices
- Fission Workflows - Workflow-based serverless function composition
- Forecastle - A dashboard which dynamically discovers and provides a launchpad to access applications deployed on Kubernetes
- Git Webhook Proxy - A proxy to let webhooks reach running services behind a firewall
- Ingress Monitor Controller - Watches ingress endpoints and automatically registers liveness alerts on the configured uptime checker
- k8s-label-rules-webhook - An admission webhook to enforce standards for labels of resources being created in your k8s cluster
- KEDA - Kubernetes-based Event Driven Autoscaling
- kube-fledged - A K8S add-on for creating and managing a cache of container images directly on cluster worker nodes
- Kubefwd - Bulk port forwarding Kubernetes services for local development.
- Kubernetes Cluster Federation (previously Ubernetes)
- Kubernetes Ec2 Autoscaler
- Reloader - Auto-load updates of ConfigMaps and Secrets into pods for Deployments, StatefulSets and DaemonSets
- Telepresence - Locally develop/debug services against a remote Kubernetes cluster
- krane - A command-line tool that helps you ship changes to a Kubernetes namespace and understand the result
- ktunnel - A command-line tool that establishes a reverse tunnel between Kubernetes and your cluster, use it to locally develop/debug services or integrate with local resources.
- k8s-platform-lcm - A faster and easier way to manage the lifecycle of applications and tools, running and living around your Kubernetes platform
- Pixie - Live-debug multi-cluster K8s environments without changing code and moving data off-cluster.
- KubeEdge - An open platform to enable Edge computing
- CNAB - CNABs facilitate the bundling, installing and managing of container-native apps - and their coupled services.
- Helm - For further information, please check out - Awesome Helm.
- Cloudsmith - A fully managed package management SaaS, with first-class support for public and private Kubernetes registries (Docker + Helm Charts, plus many others).
To maintain regular surveillance over kubernetes
- BotKube - App that helps you monitor your Kubernetes cluster, debug critical deployments & gives recommendations for the standard practices
- Dynatrace - Kubernetes cluster and workload monitoring
- eventrouter - simple introspective kubernetes service that forwards events to a specified sink.
- Goldpinger display, monitor and alert on inter-cluster connectivity
- Grafana Kubernetes App
- Instana - Automatic Kubernetes Application Performance Monitoring
- kail - Kubernetes Log Viewer. Streams logs from all containers of all matching pods.
- Kubebox - Terminal console for Kubernetes
- Kubecost - monitor resources following their financial cost
- Kubedash - Deprecated repository is archived and read-only
- Kubernetes Operational View - read-only system dashboard for multiple K8s clusters
- K8Dash - Realtime K8S alternative dashboard
- Kubernetes Web View - list and view all Kubernetes resources (incl. CRDs) with permalink-friendly URLs in a plain-HTML frontend
- Kubespy - Tools for observing Kubernetes resources in real time, powered by Pulumi.
- Netdata - Open-source Kubernetes monitoring. Deploy via a Netdata Helm chart.
- New Relic - Kubernetes monitoring and visualization service.
- NexClipper - An open source software for monitoring Kubernetes and containers.
- Outcold Solutions - monitoring Kubernetes, OpenShift and Docker in Splunk Enterprise and Splunk Cloud (metrics and log forwarding)
- Replex.io - Kubernetes Governance & Cost Control.
- StatusBay - Kubernetes deployment visibility (inc. Slack notifications, metrics and checks enrichment, resources consolidation, etc)
- Sysdig Monitoring
- Sysdig Open Source
- The Elastic Stack - An open-source solution for monitoring and visualising K8s metrics, logs, application traces and more.
- Weave Scope
- kube-state-metrics - Simple service that listens to the Kubernetes API server and generates metrics about the state of the objects.
- loki - Loki is a horizontally-scalable, highly-available, multi-tenant log aggregation system inspired by Prometheus.
- Loghouse - Efficiently store big amounts of your logs (in ClickHouse database), process them using a simple query language and monitor them online through web UI.
- kube-eventer - kube-eventer emit kubernetes events to sinks (kafka, slack, webhook, etc)
Test your applications running on Kubernetes
- chaoskube - periodically kills random pods in your Kubernetes cluster
- k8s-testsuite - Helm chart for network and loadtesting of a Kubernetes cluster
- kboom - The Kubernetes scale & soak load tester
- Krucible - Quickly create temporary Kubernetes clusters for testing
- kind - A single node cluster to run your CI tests against thats ready in 30 seconds
- k3d - Quickly create single- or multi-node k3s clusters in containerized nodes
- kube-monkey - Chaos Monkey for Kubernetes clusters
- Kubeadm-dind-cluster - multi-node test cluster based on kubeadm
- KUTTL - KUTTL (Kubernetes Test Tool) is a toolkit for testing Kubernetes Operators
- PowerfulSeal - kills targeted pods and machines to test your software reliability
- Sonobuoy - Diagnostic tool that runs Kubernetes conformance tests
- predator - Distributed performance testing platform for Kubernetes
- Octopus - Octopus is a testing framework that allows you to run integration tests defined as Docker images on a Kubernetes cluster.
- KubePug - Kubernetes Pre-Upgrade Checker
Build-test-deploy automated workflow software designed to make production environments more stable and life better for engineers
- Jenkins-Kubernetes Plugin by Carlos Sanchez
- Automated Image Builds with Jenkins, Packer, and Kubernetes
- On-demand Jenkins slaves with Kubernetes and the Google Container Engine
- Lab: Build a Continuous Deployment Pipeline with Jenkins and Kubernetes
- Jenkins Operator - Kubernetes native Jenkins operator
- Jenkins X - automated CI/CD for Kubernetes with GitOps Promotion and Preview Environments on Pull Requests using best of breed OSS tools like: Jenkins, Helm, Skaffold, Kaniko, Knative Build, Knative Pipeline and Prow
- Apollo - Open Source application providing teams with self service UI for creating and deploying their services to Kubernetes.
- Argo CD - Declarative continuous deployment for Kubernetes.
- autoapply - Automatically apply changes from a Git repository to a Kubernetes cluster
- Buildkite - Lean CI/CD cloud hosted control plane with agents on your infrastructure.
- Codefresh - Kubernetes CI/CD platform (with private Docker and Helm Chart repositories)
- Dispatch - Enterprise grade Kubernetes GitOps framework based on Tekton and Argo CD
- k8s-deploy-helper - Framework to easily deploy Kubernetes applications via GitLab.
- Shipper - Kubernetes native multi-cluster canary or blue-green rollouts using Helm.
- Weave Flux – GitOps reconcoliation operator
- Werf - GitOps tool with advanced features to build images and deploy them to Kubernetes. Integrates with any existing CI system.
- PipeCD - Continuous Delivery for Declarative Kubernetes, Serverless and Infrastructure Applications
- Virtual Kubelet - Allows nodes to be backed by other services and providers.
- Addon-operator - adds hooks and values to helm charts in order to enhance the capabilities of helm and transform charts into smart modules that configure themselves and respond to changes in the cluster.
- Kube cert manager
- Cert Operator
- Container Linux Update Operator
- DB Operator
- K8s Operator Workshop
- Kong API
- kooper - Simple Go library to create Kubernetes operators and controllers
- Kubernetes Operators
- KUDO - KUDO (Kubernetes Universal Declarative Operator) is a toolset for writing Kubernetes Operators
- Kured - Kured (Kubernetes Reboot Daemon) is a Kubernetes daemonset that performs safe automatic node reboots
- Operator Kit
- Operator SDK
- OperatorHub.io - A new home for the Kubernetes community to share Operators
- PlanetScaleDB Operator
- PostgreSQL - manage PostgreSQL clusters using StatefulSets and Patroni.
- Shell-operator - a tool for running event-driven scripts in a Kubernetes cluster.
- TiDB Operator - TiDB Operator manages TiDB clusters on Kubernetes and automates tasks related to operating a TiDB cluster.
- Vitess Operator
- bashScheduler - Written in bash
- escheduler - Written in elixir
- ksched - Experimental flow based scheduler
- Scheduler - Cost based scheduler
- Sticky Node Scheduler
A list of linux containers supported by kubernetes.
- cri-containerd - Containerd-based implementation of Kubernetes Container Runtime Interface
- Hyper.sh/frakti - Hypervisor-based container runtime
- virtlet - Kubernetes CRI implementation for running VM workloads
- Kata Containers
- Apache Ignite - Memory-centric distributed database, caching, processing platform
- Cassandra / DataStax
- RDS - Provision RDS databases via CRD from Kubernetes
- TiDB - Distributed HTAP database compatible with the MySQL protocol
- Vitess - Horizontal scaling of MySql by Youtube
- YugabyteDB - Horizontally scalable, Postgres-compatible SQL database.
- Antrea - A Kubernetes networking solution based on Open vSwitch
- AWS VPC CNI - Networking plugin using Elastic Network Interfaces
- Canal by Tigera
- Cisco ACI - CNI plugin from Cisco support ACI fabrics
- External DNS - To control DNS records dynamically via Kube resources
- Goldpinger display, monitor and alert on inter-cluster connectivity
- illuminatio is a tool for automatically testing kubernetes network policies
- KubeIP Set static ip for nodes on GKE (useful for whitelisting ips)
- Multus-cni - Multi-homed pod cni
- Network-Controller - Open vSwitch, Multiple network interfaces that associate with Kubernetes pods
- NSX-T - CNI plugin supporting load balancing and distributed firewalls.
- Weave Net
- Submariner: Cross-Cluster Network Connectivity for Kubernetes - Submariner enables direct networking between pods in different Kubernetes clusters on prem or in the cloud.
- Weave Mesh
- Maesh: Simpler Service Mesh - Maesh is a straight-forward, easy to configure, and non-invasive service mesh that allows visibility and management of the traffic flows inside any Kubernetes cluster.
- Kuma: The Universal Service Mesh - Build, Secure and Observe your modern Service Mesh.
- Cilium - eBPF-based Networking, Observability, and Security
Secret generation and management¶
- CyberArk Conjur Kubernetes Authenticator - Secure your Kubernetes-deployed applications with CyberArk Conjur
- Kamus - A GitOps, zero-trust solution for secrets encryption/decryption solution.
- kubesec - Secure Secret management
- Sealed Secrets
- Secure GitOps Using Weave Cloud Deploy And Bitnami's Sealed Secrets
- Vault auth plugin backend: Kubernetes
- Vault controller
- Kubernetes Resource Report - report Kubernetes cluster and pod resource requests vs usage and generate static HTML
- Kubeapps - A web-based UI for deploying and managing applications in Kubernetes clusters
- Kubevious - An open source UI to make Kubernetes configuration and state obvious and safe.
- Octant - A web-based, highly extensible platform for developers to better understand the complexity of Kubernetes clusters.
- Kube Forwarder – An open source Kubernetes port forwarding manager
- Lens - The Ultimate Dashboard For Kubernetes.
- awesome-kubectl-plugins - Curated list of kubectl plugins.
- click - A CLI focused REPL for quickly interacting with Kubernetes objects.
- kconf - Manage multiple kubeconfigs easily and switch between them
- kube-prompt - Interactive kubernetes client built using go-prompt.
- kube-ps1 - Kubernetes prompt helper for bash and zsh.
- Kube-shell - Integrated shell for working with the Kubernetes CLI
- kube-tmux - Kubernetes tmux plugin to display the current context and namespace
- Kubectl Aliases - Aliases for Kubectl
- kubectl-plugins - A collection of kubectl plugins handling everything from easy context switches to connecting to a container as any user (root included) via exec. Slightly tailored towards GKE users.
- kubectl-trace - Schedule bpftrace programs on your kubernetes cluster using this kubectl plugin
- kubectx - switch between clusters on kubectl
- kubens - switch between namespaces on kubectl
- kubensx - Simpler Cluster/User/Namespace switching for Kubernetes (featuring interactive mode and wildcard/fuzzy matching).
- Kubesh - Work around kubectl
- Kui - Hybrid CLI/GUI alternative to kubectl
- stern - Multi pod and container log tailing
- Vikube - Kubernetes operations from Vim, in Vim
- K9s - Kubernetes CLI To Manage Your Clusters In Style!
- tubectl - Kubernetes CLI on steroids with pattern matching
- webkubectl - A web based tool helps you to manage kubernetes credentials and run kubectl command in web browser.
- kubectl-neat - Clean up Kuberntes yaml and json output
- Kubie - An alternative to kubectx, kubens and the k on prompt modification script
- kube-shell - An integrated shell for working with the Kubernetes CLI
Application deployment orchestration¶
- Deployment manager
- Gitkube - Build and deploy docker images on Kubernetes using
- IBM UrbanCode
- Skaffold - Command line tool that facilitates continuous development for Kubernetes applications.
- kubedog - Kubedog is a library and cli utility that allows watching and following kubernetes resources in CI/CD deploy pipelines.
- kapp - simple deployment tool focused on the concept of "Kubernetes application" — a set of resources with the same label
- cdk8s - Define Kubernetes apps and reusable components using familiar programming languages
- kapitan - Manage complex deployments using jsonnet and jinja2
- kubecfg - Combines jsonnet and kubectl to let you declare systems in an easy to override way
- kustomize - Customization using partial specs
- Pulumi - Provides a SDK for k8s deployments targeting on-premises clusters and major cloud vendors' managed services.
- Cue - A data constraint language which aims to simplify tasks involving defining and using data. Cue is a superset of JSON
- ytt - YAML templating tool that works on YAML structure allowing you to focus on your data instead of how to properly escape it.
- MicroConfig - Awesome tool for microservice configuration management. Works with app configs, helm values, kubernetes resources and more.
- Untrak - Finds untracked resources in Kubernetes cluster, garbage collect them.
- kubiscan - A tool to scan Kubernetes cluster for risky pods and RBAC permissions
- kubeletctl - A client for kubelet with advanced capabilities like scanning for pods vulnerable for RCE
- Authenticator - A tool for using AWS IAM credentials to authenticate to a Kubernetes cluster
- Calico Network Policy (from Tigera) - Widely adopted open source implementation unifying Kubernetes Network Policy and Istio Application Policy.
- Deepfence Enterprise - Full life cycle Cloud Native Workload Protection platform for kubernetes, virtual machines and serverless.
- Deepfence Threat Mapper - Powerful runtime vulnerability scanner for kubernetes, virtual machines and serverless.
- Dex - OpenID and OAuth for Kubernetes
- Fairwinds Insights - Security policy and enforcement for Kubernetes
- Guard - Authenticaton webhook server with support for Github, Gitlab, Google, Azure and LDAP (AD) as identity providers.
- kiam - Allows cluster users to associate AWS IAM roles to Pods.
- kube-bench - The Kubernetes Bench for Security is a Go application that checks whether Kubernetes is deployed according to security best practices.
- kube-hunter - Hunt for security weaknesses in Kubernetes clusters.
- kube-psp-advisor - Help building an adaptive and fine-grained pod security policy.
- kube2iam - Provides different AWS IAM roles for pods running on Kubernetes
- kubeaudit - Helps you audit your Kubernetes clusters against common security controls
- Pomerium - a zero-trust identity-aware access proxy inspired by BeyondCorp.
- Rakkess - Kubectl plugin to show an access matrix for all available resources.
- Sysdig Falco
- Sysdig Secure
- Tigera Secure Cloud Edition
- Tigera Secure Enterprise Edition
- Avi Networks - Software Load Balancer | Intelligent WAF | Elastic Service Mesh
- AWS ALB Ingress Controller
- Cloudflare Warp Ingress
- Contour - Kubernetes ingress controller for Lyft's Envoy proxy
- F5 Big IP Controller
- Gimbal - Platform capable of routing traffic to multiple Kubernetes and OpenStack clusters
- Gloo - Envoy-based API gateway and ingress controller
- HAProxy Ingress
- k8gb - A cloud native Kubernetes Global Balancer
- Linode NodeBalancer Ingress
- MetalLB - load-balancer implementation for bare metal Kubernetes clusters, using standard routing protocols.
- Porter - a load balancer which is designed for a bare metal Kubernetes cluster. It's implemented by physical switch, and uses BGP and ECMP to achieve optimal performance and HA.
- NGINX Ingress Controller
- Nginx Plus
- Skipper - HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
- Voyager - Secure HAProxy based Ingress Controller
- Yggdrasil - Envoy Control Plane for Kubernetes Multi-cluster Ingress
- FfDL - Deep Learning Platform offering TensorFlow, Caffe, PyTorch etc. as a Service on Kubernetes
- Fiber - Distributed computing library for AI on Kubernetes.
- kubeflow - Machine Learning Toolkit for Kubernetes.
- mxnet-operator - Tools for ML/MXNet on Kubernetes.
- Polyaxon - An open source platform for reproducible machine learning and deep learning on kubernetes
- seldon-core - Open source framework for deploying machine learning models on Kubernetes
- TensorFlow k8s
- Fedora CoreOS
- Flatcar Container Linux
- RancherOS - A lightweight, secure Linux distribution, built from containers to run containers well.
- cdk8s - Define Kubernetes apps and reusable components using familiar programming languages
- kube-libsonnet - Generic library of Kubernetes objects for Jsonnet/Kubecfg with object to array mapping for painless overrides.
- kube-score - Kubernetes object analysis with recommendations for improved reliability and security
- popeye - Kubernetes cluster resource sanitzer
Backup and Disaster Recovery¶
- Velero - Utility for managing backup and restore of Kubernetes clusters. Formerly Heptio Ark.
- K8up - Kubernetes and OpenShift Backup Operator based on restic
- burry.sh - Cloud Native backup and recovery for etcd, zookeeper and consul
- kube-backup - Sync kubernetes state to git.
- Stash - Stash is a Kubernetes operator that uses restic or Kubernetes CSI Driver VolumeSnapshotter to backup your volumes and kubernetes state.
- Fairwinds Gemini - Create and retire VolumeSnapshot objects on a regular schedule
- Kyverno - Kubernetes Native Policy Management
- Chaosblade: An easy to use and powerful chaos engineering experiment toolkit.
- Chaos Mesh: A cloud-native Chaos Engineering platform that orchestrates chaos on Kubernetes environments.
chaoskubeperiodically kills random pods in your Kubernetes cluster.
- Chaos Toolkit: An Open API for Chaos Engineering.
- KubeInvaders - Gamified Chaos engineering tool for Kubernetes Clusters. It is like Space Invaders but alien ships are pods.
- Litmus: A toolset to do chaos engineering in a kubernetes native way.
Persistent Volume Providers¶
List of some Persistent Volume Providers for Kubernetes.Check out Persistent Volume Providers for more info
- NetApp Trident
- OpenStack Cinder
- Pure Storage
- Rancher Longhorn
Container Storage Interface Plugins¶
- Alibaba Cloud
- AWS EBS
- AWS EFS
- AWS FSx for Lustre
- Google Compute Engine Persistent Disk
- Intel PMEM-CSI
- KaDalu - Gluster
- Linode Block Storage
- NetApp Trident
- OpenStack Cinder
- VMware vSphere
Cluster API Providers¶
Developer Libraries/ Scripts¶
List of some libraries & scripts for executions and good referrals