.svg){kind=icon}
emailThe fast lane for your PRs.
Trunk is a developer experience (DevEx) platform that enables you to ship code quickly while maintaining the necessary guardrails for excellent eng teams. Use Trunk to check, test, merge, and monitor your code.
A framework for securing software update systems.
The Update Framework (TUF) maintains the security of software update systems, providing protection even against attackers that compromise the repository or signing keys. TUF provides a flexible framework and specification that developers can adopt into any software update system.
Related contents:
A framework to secure the integrity of software supply chains.
in-toto is designed to ensure the integrity of a software product from initiation to end-user installation. It does so by making it transparent to the user what steps were performed, by whom and in what order.
Related contents:
GuardDog is a CLI tool to Identify malicious PyPI and npm packages.
GuardDog is a CLI tool that allows to identify malicious PyPI and npm packages or Go modules. It runs a set of heuristics on the package source code (through Semgrep rules) and on the package metadata.
GuardDog can be used to scan local or remote PyPI and npm packages or Go modules using any of the available heuristics.
Related contents:
trigger async analysis from your Gitlab CI and expose badges.
Gitlab CI triggers asynchone REST analysis and display badges and files.
Related contents:
OpenChoreo is an open-source internal developer platform (IDP)
Keep builds green with a highly customizable merge queue
Deploy more PRs while cutting CI runtimes. Easily merge changes into a massive monorepo, and run custom CI validations without breaking builds.
Related contents:
GitLab Runner is the open source project that is used to run your CI/CD jobs and send the results back to GitLab.
Related contents:
Build Analyzer. Analyzer for Rspack & webpack.
Visualize the building process.
Rsdoctor is a build analyzer tailored for the Rspack ecosystem and fully compatible with the webpack ecosystem.
Rsdoctor is committed to being a one-stop, intelligent build analyzer that makes the build process transparent, predictable, and optimizable through visualization and smart analysis, helping development teams precisely identify bottlenecks, optimize performance, and improve engineering quality.
GitHub Actions. Twice as fast. Half the cost.
Speed up your GitHub Actions with a one-line code change, by running them on high-performance gaming CPUs instead of GitHub's older server hardware.
Related contents:
Wait for anything! A lightweight tool to wait for services to be ready.
Wait4X allows you to wait for a port or a service to enter the requested state, with a customizable timeout and interval time.
The Open-Source Static Analysis Toolkit.
Write SAST checkers with Globstar and run them in your CI with a single binary. It's fast, easy to write, and MIT-licensed.
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
Continuous Integration & Delivery.
Semaphore CI/CD helps product teams ship software faster, with quality and security.
Semaphore is an open source CI/CD platform. Self-host Semaphore on your own servers or on a cloud provider.
Related contents:
A performant type-checker for Python 3.
Pyre is a performant type checker for Python compliant with PEP 484. Pyre can analyze codebases with millions of lines of code incrementally – providing instantaneous feedback to developers as they write code. You can try it out on examples in the Pyre Playground.
Related contents:
Taskcluster is the task execution framework that supports Mozilla's continuous integration and release processes. It is a flexible, scalable open-source framework that can be used to build complex, highly customized CI systems.
Related contents:
Count your code, quickly.
Tokei is a program that displays statistics about your code. Tokei will show the number of files, total lines within those files and code, comments, and blanks grouped by language.
Jenkins automation server.
Jenkins is the leading open-source automation server. Built with Java, it provides over 1,800 plugins to support automating virtually anything, so that humans can spend their time doing things machines cannot.
Related contents:
Optional Static Typing for Python.
Mypy is an optional static type checker for Python that aims to combine the benefits of dynamic (or "duck") typing and static typing. Mypy combines the expressive power and convenience of Python with a powerful type system and compile-time type checking. Mypy type checks standard Python programs; run them using any Python VM with basically no runtime overhead.
Robot Framework is an open source automation framework for test automation and robotic process automation (RPA). It is supported by the Robot Framework Foundation and widely used in the industry.
Its human-friendly and versatile syntax uses keywords and supports extending through libraries in Python, Java, and other languages.
It integrates with other tools for comprehensive automation without licensing fees, bolstered by a rich community with hundreds of 3rd party libraries.
Build High-Quality Software with AI‑Powered Testing.
Empowering your testing journey with precision and efficiency.
Our AI-augmented tools ensure not just excellence but also the ability to deliver high-quality software at scale.