toshikwa's Stars
awslabs/eks-node-viewer
EKS Node Viewer
containerd/nerdctl
contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...
open-policy-agent/conftest
Write tests against structured configuration data using the Open Policy Agent Rego query language
controlplaneio/kubesec
Security risk analysis for Kubernetes resources
runfinch/finch
The Finch CLI is an open source client for container development
kata-containers/kata-containers
Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/
google/gvisor
Application Kernel for Containers
kubearmor/KubeArmor
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
aws-containers/kubectl-detector-for-docker-socket
A Kubectl plugin that can detect if any of your workloads or manifest files are mounting the docker.sock volume
samber/lo
💥 A Lodash-style Go library based on Go 1.18+ Generics (map, filter, contains, find...)
kubernetes-sigs/karpenter
Karpenter is a Kubernetes Node Autoscaler built for flexibility, performance, and simplicity.
aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
aws/aws-xray-daemon
The AWS X-Ray daemon listens for traffic on UDP port 2000, gathers raw segment data, and relays it to the AWS X-Ray API.
open-policy-agent/gatekeeper
🐊 Gatekeeper - Policy Controller for Kubernetes
moby/buildkit
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
servicemeshinterface/smi-spec
Service Mesh Interface
bitwarden/server
Bitwarden infrastructure/backend (API, database, Docker, etc).
aws/aws-eks-best-practices
A best practices guide for day 2 operations, including operational excellence, security, reliability, performance efficiency, and cost optimization.
containernetworking/cni
Container Network Interface - networking for Linux containers
aws/amazon-ecs-cni-plugins
Networking Plugins repository for ECS Task Networking
containernetworking/plugins
Some reference and example networking plugins, maintained by the CNI team.
hashicorp/packer
Packer is a tool for creating identical machine images for multiple platforms from a single source configuration.
awslabs/soci-snapshotter
A containerd snapshotter plugin which enables standard OCI images to be lazily loaded without requiring a build-time conversion step.
istio/istio
Connect, secure, control, and observe services.
grafeas/grafeas
Artifact Metadata API
in-toto/in-toto
in-toto is a framework to protect supply chain integrity.
google-research/google-research
Google Research
buildpacks/pack
CLI for building apps using Cloud Native Buildpacks
msv-lab/modus
A language for building Docker/OCI container images
googleforgames/agones
Dedicated Game Server Hosting and Scaling for Multiplayer Games on Kubernetes