continuous-integration
Continuous Integration for Github and Bitbucket that monitors your code for bugs
Cache dependencies and build outputs in GitHub Actions.
Related contents:
pylyzer is a static code analyzer / language server for Python, written in Rust.
Fast and powerful Git hooks manager for Node.js, Ruby or any other type of projects.
Monitor your GitHub Actions in real time from the command line.
PHP Benchmarking framework.
PHPBench is a benchmark runner for PHP analogous to PHPUnit but for performance rather than correctness.
scissors Find unused files, dependencies and exports in your JavaScript and TypeScript projects. Knip it before you ship it!
Robot Framework is an open source automation framework for test automation and robotic process automation (RPA). It is supported by the Robot Framework Foundation and widely used in the industry.
Its human-friendly and versatile syntax uses keywords and supports extending through libraries in Python, Java, and other languages.
It integrates with other tools for comprehensive automation without licensing fees, bolstered by a rich community with hundreds of 3rd party libraries.
A distributed vulnerability database for Open Source. An open, precise, and distributed approach to producing and consuming vulnerability information for open source.
Related contents:
DevOps, Supercharged. Previews, production, and everything in between. Democratize deployments and environment creation with our dependency-aware continuous delivery platform.
Your Kubernetes Platform is one Git commit away.
The DevOps Stack provides a standard Kubernetes Platform, bringing together automated Provisioning as Code, Continuous Application Deployment, and readily-made configurations for the best Cloud Native tools in the industry.
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. It automates the process of checking Java code to spare humans of this boring (but important) task. This makes it ideal for projects that want to enforce a coding standard.
Open Source DevOps Control Plane.
Run operational workflows across the tools you already use. Stay in control of releases, incident response, infrastructure provisioning, notifications, disaster recovery, and everything in between. SuperPlane is an open source DevOps control plane for defining and running event-based workflows. It works across the tools you already use such as Git, CI/CD, observability, incident response, infra, and notifications.
Related contents:
A highly customizable Changelog Generator that follows Conventional Commit specifications ⛰️.
git-cliff can generate changelog files from the Git history by utilizing conventional commits as well as regex-powered custom parsers. The changelog template can be customized with a configuration file to match the desired format.
Woodpecker is a simple CI engine with great extensibility. Woodpecker is a community fork of the Drone CI system.
Dockerfile linter, validate inline bash, written in Haskell.
A smarter Dockerfile linter that helps you build best practice Docker images. The linter parses the Dockerfile into an AST and performs rules on top of the AST. It stands on the shoulders of ShellCheck to lint the Bash code inside RUN instructions.
Python-based continuous integration testing framework; your pull requests are more than welcome!
Free Hosted Continuous Integration Platform for the Open Source Community
Automatic image compression. Relax while Imgbot optimizes your images Don’t spend another second worrying about compressing your images. Install Imgbot into your GitHub projects, and focus on your application.
Build professional pipelines in minutes.
The goal of this project is to make building a professional CI/CD pipeline as easy as including a couple of GitLab CI templates in your .gitlab-ci.yml file.
Related contents:
Ruby production code coverage collection and reporting (line of code usage). A gem to measure production code usage, showing a counter for the number of times each line of code that is executed. Coverband allows easy configuration to collect and report on production code usage. It reports in the background via a thread or can be used as Rack middleware, or manually configured to meet any need.
DevOps Platform Powerful. Simple. Git server with CI/CD, kanban, and packages. Seamless integration. Unparalleled experience.
FTA (Fast TypeScript Analyzer) is a super-fast TypeScript static analysis tool written in Rust. It captures static information about TypeScript code and generates easy-to-understand analytics that tell you about complexity and maintainability issues that you may want to address.
The Continuous Merge Platform.
Save time and CI costs while making code merging more secure and less frustrating for developers.
The fast lane for your PRs.
Trunk is a developer experience (DevEx) platform that enables you to ship code quickly while maintaining the necessary guardrails for excellent eng teams. Use Trunk to check, test, merge, and monitor your code.
Gitleaks is a fast, light-weight, portable, and open-source secret scanner for git repositories, files, and directories.
Related contents:
trigger async analysis from your Gitlab CI and expose badges.
Gitlab CI triggers asynchone REST analysis and display badges and files.
Related contents:
OpenAPI Breaking Change Detection & PR Review. Know exactly what changed in your API — and who approved it. Command-line and Go package to compare and detect breaking changes in OpenAPI specs.
oasdiff posts a breaking change report on every pull request, with one-click approve/reject for each change. The CI gate updates automatically.
Related contents:
The Ruby Linter/Formatter that Serves and Protects.
RuboCop is a Ruby code style checker (linter) and formatter based on the community-driven Ruby Style Guide.
Related contents:
A specification for adding human and machine readable meaning to commit messages.
Related contents:
GitLab Runner is the open source project that is used to run your CI/CD jobs and send the results back to GitLab.
Related contents:
Continuously update everything. A Declarative Update Policy Engine.
"Automatically open a PR on your GitOps repository when a third party service publishes an update"
Updatecli is a tool used to apply file update strategies. Designed to be used from everywhere, each application "run" detects if a value needs to be updated using a custom strategy then apply changes according to the strategy.
You describe your update strategy in a file then you run updatecli to it.
Related contents:
Automated dependency updates.
Get pull requests to update your dependencies and lock files.
Related contents:
The Easiest way to add coding standard to your PHP project.
Easy Coding Standard focuses on easy run, setup, and use. From composer requirement through the automated setup to the config.
GitHub Actions. Twice as fast. Half the cost.
Speed up your GitHub Actions with a one-line code change, by running them on high-performance gaming CPUs instead of GitHub's older server hardware.
Related contents:
Here at Pa11y, we think making the web more accessible improves it for everyone. So we publish a range of free and open source tools to help designers and developers make their web pages more accessible.
Continuous Integration & Delivery.
Semaphore CI/CD helps product teams ship software faster, with quality and security. Semaphore is an open source CI/CD platform. Self-host Semaphore on your own servers or on a cloud provider.
Related contents:
Load testing designed for DevOps and CI/CD.
Gatling is a highly capable load testing tool. It is designed for ease of use, maintainability and high performance.
Out of the box, Gatling comes with excellent support of the HTTP protocol that makes it a tool of choice for load testing any HTTP server. As the core engine is actually protocol agnostic, it is perfectly possible to implement support for other protocols. For example, Gatling currently also ships JMS support.
The Modern Software Delivery Platform - CI, CD, Feature Flags, Cloud Costs & more.
Harness is the industry’s first Software Delivery Platform to use AI to simplify your DevOps processes - CI, CD & GitOps, Feature Flags, Cloud Costs, and much more.
A framework to secure the integrity of software supply chains.
in-toto is designed to ensure the integrity of a software product from initiation to end-user installation. It does so by making it transparent to the user what steps were performed, by whom and in what order.
Related contents:
OpenSource compliance CLI for GitLab CI/CD.
Analyze your GitLab CI/CD pipelines for security and compliance: pipeline composition (templates, components, version constraints), container images (mutable tags, trusted registries), and branch protection settings.
Plumber is a compliance scanner for GitLab. It reads your .gitlab-ci.yml and repository settings, then checks for security and compliance issues.
Related contents:
Sample Go app repo with test and release pipelines optimized for software supply chain security (S3C).
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language. reviewdog provides a way to post review comments to code hosting service, such as GitHub, automatically by integrating with any linter tools with ease. It uses an output of lint tools and posts them as a comment if findings are in diff of patches to review.
Bring visibility to your codebase. CodeSee helps you understand, build and refactor applications without guesswork. Instantly map and automate your app’s services, directories, file dependencies and code changes.
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration with ASPM/VM platforms and in CI environments.
A fully functional local cloud stack. Develop and test your cloud and serverless apps offline!
LocalStack is an easy-to-use test/mocking framework for developing cloud applications. Using LocalStack, you can spin up a local test environment in seconds, and get the same functionality you would get from a real AWS environment.
A general-purpose Claude Code action for GitHub PRs and issues that can answer questions and implement code changes. This action intelligently detects when to activate based on your workflow context—whether responding to @claude mentions, issue assignments, or executing automation tasks with explicit prompts. It supports multiple authentication methods including Anthropic direct API, Amazon Bedrock, and Google Vertex AI.
Webhook server for Gitlab, Github and Gitea to run arbitrary commands
ar-go-tools (Argot) is a collection of analysis tools for Go
TwigStan is a static analyzer for Twig templates powered by PHPStan.
TwigStan uses Twig to compile templates to PHP code. It then optimizes the compiled PHP code slightly, allowing PHPStan to analyze it better. It then reports any errors back to the original template and line number.
A vulnerability scanner for container images and filesystems.
Related contents:
A bot that integrates with GitHub and your favorite continuous integration service.
Homu listens to the pull request comments, waiting for an approval comment from one of the configured reviewers. When the pull request is approved, Homu tests it using your favorite continuous integration service, and only when it passes all the tests, it is merged into master.
Related contents:
📦🚀 Fully automated version management and package publishing.
semantic-release automates the whole package release workflow including: determining the next version number, generating the release notes, and publishing the package.
a fast, scalable, multi-language and extensible build system. Build and test software of any size, quickly and reliably. Bazel is a free software tool for the automation of building and testing of software.
Related contents:
- Adopting Bazel for Web at Scale @ The Airbnb Tech Blog's Medium.
- Optimiser les temps de build avec Bazel et Buildfarm @ Vincent Composieux :fr:.
- (Almost) Every infrastructure decision I endorse or regret after 4 years running infrastructure at a startup @ Jack's home on the web.
- Bazel's Original Sins @ Farid Zakaria's Blog.
- Trusting builds with Bazel remote execution @ Blog System/5.
- Top 5 Monorepo Tools for 2025 @ aviator.
- You are holding BUILD files wrong @ Blog System/5.
OpenAPI Linter: The worlds fastest OpenAPI quality tool.
vacuum is the worlds fastest OpenAPI 3, OpenAPI 2 / Swagger linter and quality analysis tool. Built in go, it tears through API specs faster than you can think. vacuum is compatible with Spectral rulesets and generates compatible reports.