infrastructure-as-code
2048 game with DevOps practices.
A fully containerized and cloud-native implementation of the classic 2048 game with complete CI/CD pipeline, Kubernetes deployment, and Infrastructure as Code.
Artificial Intelligence Infrastructure-as-Code Generator.
aiac is a library and command line tool to generate IaC (Infrastructure as Code) templates, configurations, utilities, queries and more via LLM providers such as OpenAI, Amazon Bedrock and Ollama.
The CLI allows you to ask a model to generate templates for different scenarios (e.g. "get terraform for AWS EC2"). It composes an appropriate request to the selected provider, and stores the resulting code to a file, and/or prints it to standard output.
Terraform Pull Request Automation. Running Terraform Workflows with Ease.
A self-hosted golang application that listens for Terraform pull request events via webhooks.
Toolchain for your architecture diagrams. Architecture-as-a-code with live diagrams.
LikeC4 is a powerful set of tools and a Domain-Specific Language (DSL) designed to describe your architecture as a single, cohesive model, which is then compiled into multiple diagrams. Visualize, collaborate, and evolve the software architecture with always actual and live diagrams from your code.
Terraform Private Registry for modules and providers manageable from a REST API.
Terralist is a private Terraform registry for providers and modules that follows the published HashiCorp protocols. It provides:
-
A secure way to distribute your confidential modules and providers;
-
A management interface to visualize artifacts (including modules documentation);
Terrascan is a static code analyzer for Infrastructure as Code.
Detect compliance and security violations across Infrastructure as Code (IaC) to mitigate risk before provisioning cloud native infrastructure.
Terraform version manager. Install a specific version of Terraform.
Related contents:
Terraform is an infrastructure as code tool that lets you build, change, and version infrastructure safely and efficiently. This includes low-level components like compute instances, storage, and networking; and high-level components like DNS entries and SaaS features.
Related contents:
Terraform without the state file bottleneck.
Stategraph replaces the flat state file with a database-backed graph. Independent changes can run in parallel, and the state becomes queryable and auditable. No code changes.
Related contents:
IaC for Docker Compose
A thin layer on top of Docker Compose for declarative configurations.
Manage volumes, network, secrets, and even configuration files in a fully declarative way.
infrastructure made simple with Python.WS for Python devs - made simple.
Build AWS apps in high-level Python with smart defaults. Keep full control when you need it. No YAML, JSON or HSL. No clicking through consoles. No configuration hell.
Stelvio is a Python framework that simplifies AWS cloud infrastructure management and deployment. It lets you define your cloud infrastructure using pure Python, with smart defaults that handle complex configuration automatically.
This document is an attempt to systematically describe best practices using Terraform and provide recommendations for the most frequent problems Terraform users experience.
Generate Terraform moved blocks automatically for painless refactoring. Generate moved blocks and state move commands automatically for Terraform, OpenTofu, and Terragrunt. tfautomv is designed for refactoring scenarios where you want to restructure your Terraform code without changing the actual infrastructure. Understanding this distinction is crucial for successful usage.
tfautomv (a.k.a Terraform auto-move) is a refactoring helper. With it, making structural changes to your Terraform codebase becomes much easier.
When you move a resource in your code, Terraform loses track of the resource's state. The next time you run Terraform, it will plan to delete the resource it has memory of and create the "new" resource it found in your refactored code.
tfautomv inspects the output of terraform plan, detects such creation/deletion pairs and writes a moved block so that Terraform now knows no deletion or creation is required.
Deploy and Manage Kubernetes at scale.
k0rdent has been developed to provide a way to manage distributed infrastructure at massive scale leveraging kubernetes.
Production-Grade Container Scheduling and Management.
Kubernetes, also known as K8s, is an open source system for automating deployment, scaling, and management of containerized applications.
Related contents:
- How Kubernetes Works Internally? @ System Design Codex.
- Minimum vital pour survivre sur un sujet Kubernetes @ Téotime Pacreau :fr:.
- Formation Kubernetes : Admin & Développeurs @ DevSecOps :fr:.
- How To Run Kubernetes Commands in Go: Steps and Best Practices @ The New Stack.
- Kubernetes Is Powerful, But Not Secure (at least not by default) @ Tigera.
- Docker to Kubernetes: The 30-Day Migration Path Every Developer Should Know @ Teamcamp's dev.to.
- Beyond the surface - Exploring attacker persistence strategies in Kubernetes @ Raesene's Ramblings.
- The Myths (and Costs) of Running Node.js on Kubernetes @ Platformatic.
Docker image for terraform provisioning that supports provider plugin caching and declarative binary installation via mise.
Related contents:
Bicep is a language for declaratively deploying Azure resources. You can use Bicep instead of JSON for developing your Azure Resource Manager templates (ARM templates).
Related contents:
Introducing the IaC Package Manager for Kubernetes.
yoke is a Helm-inspired infrastructure-as-code (IaC) package deployer.
The philosophy behind yoke is that Kubernetes packages should be described via code. Programming environments have control flow, test frameworks, static typing, documentation, error management, and versioning. They are ideal for building contracts and enforcing them.
Related contents:
ExternalDNS synchronizes exposed Kubernetes Services and Ingresses with DNS providers.
Configure external DNS servers (AWS Route53, Google CloudDNS and others) for Kubernetes Ingresses and Services.
Related contents:
Open Source, Multi Cloud, Analytics, IaC, more. Provision. Query. Secure.
Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework. Deploy, manage and query cloud resources and interact with APIs using SQL.
Related content:
Kube Resource Orchestrator. Powerful Abstractions for Kubernetes.
Kube Resource Orchestrator (kro) helps you to define complex multi-resource constructs as reusable components in your applications and systems. It does this by providing a Kubernetes-native, vendor agnostic way to define groupings of Kubernetes resources.
Related contents:
[Node, Python, Java] Repository of sample Custom Rules for AWS Config. AWS Community repository of custom Config rules. Contributions welcome. Instructions for leveraging these rules are below.
Very fast server provisioning for your data centre.
Self-service, remote installation of Windows, CentOS, ESXi and Ubuntu on real servers turns your data centre into a bare metal cloud.
Related content:
OpenVox is the modern open source implementation of the world's most capable configuration management platform -- trusted by everyone from the smallest hobbyist to operators of some of the largest commercial infrastructures in the business.
Related contents:
Dans cette université nous vous proposons de découvrir Pulumi en mettant en lumière ses points forts comme la programmation multi-langages, la possibilité de mieux tester son code, d'avoir une couche d'abstraction multi-cloud plus efficace et même la capacité de réaliser de véritables applications web modernes de déploiement ...
Related contents:
Reloader can watch changes in ConfigMap and Secret and do rolling upgrades on Pods with their associated DeploymentConfigs, Deployments, Daemonsets Statefulsets and Rollouts.
A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig.
Plan and apply Terraform/OpenTofu via PR automation, using best practices for secure and scalable IaC workflows.
Terraform runtime TUI 🫧 .
pipeform is a TUI for Terraform runtime progress.
CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code.
Related contents:
Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files.
A Terraform provider for managing Docker services.
Manage Docker-hosted resources (such as repositories, teams, organization settings, and more) using Terraform.
CI/CD orchestrator for Terraform.
Open Source Terraform Orchestration for Teams. Automation, Collaboration and Governance for Terraform within your CI/CD system.
Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline
Convert your Docker Compose file to Kubernetes or OpenShift.
Kompose is a conversion tool for Docker Compose to container orchestrators such as Kubernetes (or OpenShift).
A kubectl plugin to visualize Kubernetes resources and relationships.
A command line tool to create a graph representing your Ansible playbook tasks and roles.
ansible-playbook-grapher is a command line tool to create a graph representing your Ansible playbook plays, tasks and roles. The aim of this project is to have an overview of your playbook.
Tools for managing DNS across multiple providers.
In the vein of infrastructure as code octoDNS provides a set of tools & patterns that make it easy to manage your DNS records across multiple providers. The resulting config can live in a repository and be deployed just like the rest of your code, maintaining a clear history and using your existing review & workflow.
Related contents:
A command line tool to switch between different versions of terraform (install with homebrew and more) .
The tfswitch command line tool lets you switch between different versions of terraform. If you do not have a particular version of terraform installed, tfswitch lets you download the version you desire. The installation is minimal and easy. Once installed, simply select the version you require from the dropdown and start using terraform.
OpenTofu / Terraform / Terragrunt and Atmos version manager.
Welcome to tenv, a versatile version manager for OpenTofu, Terraform, Terragrunt and Atmos, written in Go. Our tool simplifies the complexity of handling different versions of these powerful tools, ensuring developers and DevOps professionals can focus on what matters most - building and deploying efficiently.
Remote Access VPN & Software Defined Networking. A Fast, Affordable, Remote Access VPN. IT Administrators trust Netmaker to provide secure access between remote networks, systems, and users.
Netmaker is a platform that uses Software Defined Networking (SDN) to build a powerful remote access VPN. Securely connect and manage a complex network with ease.
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
Terraform wrapper. DRY and maintainable Terraform code.
Terragrunt is a thin wrapper that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.
Related contents:
A specification for developer-centric application definition used in Cloud Native Applications
The Compose Specification is a developer-focused standard for defining cloud and platform agnostic container-based applications.
Infrastructure as Code in Any Programming Language. Open Source Infrastructure as Code. Manage infrastructure, secrets, and configurations intuitively on any cloud.Build infrastructure intuitively on any cloud using familiar languages 🚀.
Pulumi's Infrastructure as Code SDK is the easiest way to build and deploy infrastructure, of any architecture and on any cloud, using programming languages that you already know and love. Code and ship infrastructure faster with your favorite languages and tools, and embed IaC anywhere with Automation API.
Related contents:
etckeeper is a collection of tools to let /etc be stored in a git, mercurial, bazaar or darcs repository. This lets you use git to review or revert changes that were made to /etc. Or even push the repository elsewhere for backups or cherry-picking configuration changes.
The open source infrastructure as code tool.
Previously named OpenTF, OpenTofu is a fork of Terraform that is open-source, community-driven, and managed by the Linux Foundation.
Related contents:
- OpenTofu becomes the real deal @ InfoWorld.
- Terraform Compact Function: Clean Up & Simplify Lists @ spacelift.
- How We Migrated 30+ Kubernetes Clusters to Terraform @ Learnings from the paas' Medium.
- The Case for Terraform Modules: Scaling Your Infrastructure Organization @ Infisical.
- Best Practices to Promote from DEV to PROD Environments with HashiCorp Terraform using Workspaces and Folders @ Build5Nines.
- How to Structure a Terraform Project @ Spacelift's dev.to.
- Terraform Stacks - Part 1 - An Introduction @ Mike Guy.
- How to use Terraform to generate secrets @ Techielass.
- Building Meaningful Terraform Test Workflows @ Mark Tinderholt's Medium.
- OpenTofu at Scale: 4 Strategies & Scaling Best Practices @ spacelift.
he Most Flexible IaC Management Platform.
Spacelift is a sophisticated CI/CD platform for Terraform, Terragrunt, CloudFormation, Pulumi, Kubernetes, and Ansible
Terraform, Terragrunt, and IaC Automated Management. Collaborate, deploy, and manage your Infrastructure as Code with confidence
env0 automates your Terraform, Terragrunt, AWS CloudFormation and other Infrastructure as Code tools.
Checkov scans cloud infrastructure configurations to find misconfigurations before they're deployed.
Checkov uses a common command line interface to manage and analyze infrastructure as code (IaC) scan results across platforms such as Terraform, CloudFormation, Kubernetes, Helm, ARM Templates and Serverless framework.
The package manager for Kubernetes Helm is the best way to find, share, and use software built for Kubernetes. What is Helm?
Helm helps you manage Kubernetes applications — Helm Charts helps you define, install, and upgrade even the most complex Kubernetes application.
Charts are easy to create, version, share, and publish — so start using Helm and stop the copy-and-paste madness.
Terraform provides a common configuration to launch infrastructure — from physical and virtual servers to email and DNS providers. Once launched, Terraform safely and efficiently changes infrastructure as the configuration is evolved.
Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
Related contents:
Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy. Avoid writing scripts or custom code to deploy and update your applications— automate in a language that approaches plain English, using SSH, with no agents to install on remote systems.
Related contents:
- Ansible: pure (only in its) pragmatism @ Andrej Radović.
- Ansible Dynamic Inventory: Types, How to Use & Examples @ spacelift.
- Ansible Register: How to Store and Reuse Task Output @ spacelift.
- Ansible Service Module: Start, Stop, & Manage Services @ spacelift.
- TXLF 2025 Sat Oct 4 - Getting Started with Ansible on Linux @ Texas Linux Fest's YouTube.