continuous-delivery
Doco-CD stands for Docker Compose Continuous Deployment and is a lightweight GitOps tool that automatically deploys and updates Docker Compose projects and Swarm stacks via webhooks or polling when a change is pushed to a Git repository.
Think EDR, but for CI/CD Pipelines. Open-source eBPF-powered runtime security sensor for GitHub Actions and GitLab CI/CD.
Kubernetes Progressive Delivery Controller.
Argo Rollouts is a Kubernetes controller and set of CRDs which provide advanced deployment capabilities such as blue-green, canary, canary analysis, experimentation, and progressive delivery features to Kubernetes.
A multi-platform CI/CD vulnerability detection and attack automation tool for identifying security weaknesses in pipeline configurations.
Trajan scans CI/CD pipelines for security vulnerabilities that attackers use to compromise software supply chains. It supports GitHub Actions, GitLab CI, Azure DevOps, Jenkins, and JFrog.
Open Source DevOps Control Plane.
Run operational workflows across the tools you already use. Stay in control of releases, incident response, infrastructure provisioning, notifications, disaster recovery, and everything in between. SuperPlane is an open source DevOps control plane for defining and running event-based workflows. It works across the tools you already use such as Git, CI/CD, observability, incident response, infra, and notifications.
Related contents:
the continuous thing-doer.
Concourse is an automation system written in Go. It is most commonly used for CI/CD, and is built to scale to any kind of automation pipeline, from simple to complex.
Concourse is very opinionated about a few things: idempotency, immutability, declarative config, stateless workers, and reproducible builds.
Cache dependencies and build outputs in GitHub Actions.
Related contents:
Make shipping applications more enjoyable.
KubeVela is a modern software delivery platform that makes deploying and operating applications across today's hybrid, multi-cloud environments easier, faster and more reliable.
Doco-CD stands for Docker Compose Continuous Deployment and is a lightweight GitOps tool that automatically deploys and updates Docker Compose projects and Swarm stacks via webhooks or polling when a change is pushed to a Git repository.
You can think of it as a simple Portainer or ArgoCD alternative for Docker.
A service that bridges traditional pipelines and GitOps, improving deployment visibility. Includes a built-in GitOps repo updater.
Argo Watcher not only addresses the critical challenge of visibility during deployments with Argo CD Image Updater but also introduces optional built-in image updater.
It actively monitors the ArgoCD API for application changes and synchronizes the status of your image-related modifications, streamlining and potentially accelerating your deployment processes.
DevOps Platform Powerful. Simple. Git server with CI/CD, kanban, and packages. Seamless integration. Unparalleled experience.
Cut Your GitHub Actions Bill by 90%.
Self-hosted GitHub Actions runners made simple. For AWS. 10x cheaper, 30% faster, and unlimited caching. Best alternative to Actions Runner Controller.
RunsOn is the modern way to run self-hosted GitHub Actions runners of any size, at the cheapest price available. Think of it as your best alternative to the Actions Runner Controller (ARC) for Kubernetes, the Philips terraform module, or any of the third party providers that require deep access to your code and secrets.
The fast lane for your PRs.
Trunk is a developer experience (DevEx) platform that enables you to ship code quickly while maintaining the necessary guardrails for excellent eng teams. Use Trunk to check, test, merge, and monitor your code.
A framework for securing software update systems.
The Update Framework (TUF) maintains the security of software update systems, providing protection even against attackers that compromise the repository or signing keys. TUF provides a flexible framework and specification that developers can adopt into any software update system.
Related contents:
OpenChoreo is an open-source internal developer platform (IDP)
OpenChoreo is a complete, open-source Internal Developer Platform (IDP) designed for platform engineering (PE) teams who want to streamline developer workflows and deliver Internal Developer Portals without having to build everything from scratch. OpenChoreo orchestrates many CNCF and other projects to give a comprehensive framework for PE teams to build the platform they want.
Related contents:
GitLab Runner is the open source project that is used to run your CI/CD jobs and send the results back to GitLab.
Related contents:
GitHub Actions. Twice as fast. Half the cost.
Speed up your GitHub Actions with a one-line code change, by running them on high-performance gaming CPUs instead of GitHub's older server hardware.
Related contents:
Continuous Integration & Delivery.
Semaphore CI/CD helps product teams ship software faster, with quality and security. Semaphore is an open source CI/CD platform. Self-host Semaphore on your own servers or on a cloud provider.
Related contents:
Multi-Stage GitOps Continuous Promotion. Application lifecycle orchestration. Seamlessly orchestrate stage-to-stage deployments, without custom scripts or CI pipelines.
Kargo is a next-generation continuous delivery and application lifecycle orchestration platform for Kubernetes. It builds upon GitOps principles and integrates with existing technologies, like Argo CD, to streamline and automate the progressive rollout of changes across the many stages of an application's lifecycle.
Related contents:
Declarative GitOps CD for Kubernetes. Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
Related contents:
- How to Build a Multi-Tenancy Internal Developer Platform with GitOps and vCluster @ ITNEXT's Medium.
- Unleashing the Power of ArgoCD by Streamlining Kubernetes Deployments @ sitepoint.
- Using ArgoCD ApplicationSet to deploy to multiple clusters @ ITNEXT's Medium.
- Top 30 Argo CD Anti-Patterns to Avoid When Adopting Gitops @ Container Hub's Medium.
- How Engineers are Automating More with Less: Trends in DevOps Tooling @ DevOps.
- Harnessing GitOps on Linux for Seamless, Git-First Infrastructure Management @ Linux Journal.
- Managing Kubernetes Workloads Using the App of Apps Pattern in ArgoCD-2 @ CNCF.
- Anatomy of a Pull Request Generator @ Codefresh.
- Manage Multi-Cluster Deployments with ArgoCD @ DigitalOcean.
- Behind the scenes: Designing Argo CD in Octopus @ Octopus Deploy.
- ArgoCD diffs at scale @ monday engineering.
- How to scale GitOps in the enterprise: From single cluster to fleet management @ Platform Engineering.
- Argo CD 3.3 Brings Safer GitOps Deletions and Smoother Day‑to‑Day Operations @ InfoQ.
- Introduction to ArgoCD: Getting Started with GitOps @ DevOps Daily.
- How to Implement GitOps on Kubernetes Using Argo CD @ freeCodeCamp.
- GitOps policy-as-code: Securing Kubernetes with Argo CD and Kyverno @ CNCF.
Taskcluster is the task execution framework that supports Mozilla's continuous integration and release processes. It is a flexible, scalable open-source framework that can be used to build complex, highly customized CI systems.
Related contents:
Dune is a build system for OCaml projects. Using it, you can build executables, libraries, run tests, and much more.
Related contents:
Jenkins automation server.
Jenkins is the leading open-source automation server. Built with Java, it provides over 1,800 plugins to support automating virtually anything, so that humans can spend their time doing things machines cannot.
Related contents:
- Mastering Docker and Jenkins: Build Robust CI/CD Pipelines Efficiently @ Docker blog.
- GitHub Actions vs. Jenkins: Which one's right for your team? @ Buildkite.
- Jenkins’ Flexibility is its Greatest Strength and its Achilles Heel @ CloudBees.
- CI/CD in Production with Jenkins – Complete DevOps Course @ freeCodeCamp.org's YouTube.
- The Jenkins Threat Landscape @ WIZ.
Reloader can watch changes in ConfigMap and Secret and do rolling upgrades on Pods with their associated DeploymentConfigs, Deployments, Daemonsets Statefulsets and Rollouts.
A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig.
Plan and apply Terraform/OpenTofu via PR automation, using best practices for secure and scalable IaC workflows.
Kubernetes for Prod, Tilt for Dev. A toolkit for fixing the pains of microservice development. Define your dev environment as code. For microservice apps on Kubernetes.
Tilt powers microservice development and makes sure they behave! Run tilt up to work in a complete dev environment configured for your team.
Tilt automates all the steps from a code change to a new process: watching files, building container images, and bringing your environment up-to-date. Think docker build && kubectl apply or docker-compose up.
Related contents:
Easy and Repeatable Kubernetes Development.
Skaffold handles the workflow for building, pushing and deploying your application, allowing you to focus on what matters most: writing code.
Skaffold is a command line tool that facilitates continuous development for Kubernetes applications. You can iterate on your application source code locally then deploy to local or remote Kubernetes clusters. Skaffold handles the workflow for building, pushing and deploying your application. It also provides building blocks and describe customizations for a CI/CD pipeline.
Universal Artifact Repository Manager.
Definitive artifact management for flexible development and trusted delivery at any scale.
JFrog Artifactory is the single solution for housing and managing all the artifacts, binaries, packages, files, containers, and components for use throughout your software supply chain. JFrog Artifactory serves as your central hub for DevOps, integrating with your tools and processes to improve automation, increase integrity, and incorporate best practices along the way.
A Deployment Pipeline Framework That Sticks.
A framework for orchestrating and introspecting delivery pipelines. Integrates with directly with Git, OCI and more (to come). Optional user interface for pipeline introspection and manipulation.
Glu is a framework built to help manage and coordinate multi-environment deployments using configuration stored in Git.
Continuous Deployment & Delivery Software for DevOps teams. Deploy your software to multi-cloud, hybrid, and on-premises environments with ease.
Make your complex deployments simple, reliable, and auditable with Octopus Deploy.
Related contents:
- Introducing Config as Code for Runbooks @ Octopus Deploy Blog.
- Introducing the Octopus Datadog integration @ Octopus Deploy Blog.
- Launching the Octopus MCP Server @ Octopus Deploy.
- Octopus and Elastic with OpenTelemetry @ Octopus Deploy.
- Hidden Gems in Octopus Deploy: Resources You Might Have Missed @ Octopus Deploy.
- GitOps with Octopus and Argo CD @ Octopus Deploy.
Sample Go app repo with test and release pipelines optimized for software supply chain security (S3C).
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
CLI to spin your CI/CD for react-native!
The problem we noticed is that setting up CI is performed once, needs to be researched every time, and is often trial and error driven. The process is repetitive.
We created a tool that bootstraps CI with the most used features, which are ready for customization in the future. Running npx setup-ci generates GitHub workflows for the most popular CI tasks.
Colmena is a simple, stateless NixOS deployment tool modeled after NixOps and morph, written in Rust. It's a thin wrapper over Nix commands like nix-instantiate and nix-copy-closure, and supports parallel deployment.
OPEN SOURCE ORCHESTRATION AND CORRELATION TOOL. ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
ArcherySec allow to interact with continuous integration/continuous delivery (CI/CD) toolchains to specify testing, and control the release of a given build based on results. Its include prioritization functions, enabling you to focus on the most critical vulnerabilities. ArcherySec uses popular open source tools to perform comprehensive scanning for web application and network. The developers can also utilize the tool for implementation of their DevOps CI/CD environment.
The deployment tool for PHP.
The PHP deployment tool with support for popular frameworks out of the box.
validate the structure of your container images.
The Container Structure Tests provide a powerful framework to validate the structure of a container image. These tests can be used to check the output of commands in an image, as well as verify metadata and contents of the filesystem.
Related contents:
Repack docker images to optimize for pulling speed.
This tool repacks a Docker image into a smaller, more efficient version that makes it significantly faster to pull. It does this by using a few different techniques such as removing redundant data and improving compression ratios.
CI/CD orchestrator for Terraform.
Open Source Terraform Orchestration for Teams. Automation, Collaboration and Governance for Terraform within your CI/CD system.
Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline
🦎 a tool to build and deploy software on many servers 🦎
Related contents:
- Terraform Provider for Komodo @ GitHub.
- Komodo is a Free, OpenSource Docker Manager with Inbuilt CI/CD - Check It Out! @ Jim's Garage.
- How To: Automate version updates for your self-hosted Docker containers with Gitea, Renovate, and Komodo @ nickcunningh.am.
- Using Komodo to Run Docker Commands from a Web Interface @ Noted.
- FerretDB Was Eating My CPU: Migrating Komodo from SQLite to Postgres @ mauveRANT.
- Renovate + Komodo - Updating at Scale in a Large Homelab @ FoxxMD Blog.
Markdown to a beautiful Changelog Site.
Transform your Markdown files into stunning changelog sites effortlessly with OpenChangelog. Host, customize, and share product updates seamlessly. Free, open-source, and fully integrated with GitHub.
Multi-cloud continuous delivery for the enterprise.
Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.
Spinnaker provides application management and deployment to help you release software changes with high velocity and confidence. Spinnaker is an open-source, multi-cloud continuous delivery platform that combines a powerful and flexible pipeline management system with integrations to the major cloud providers. If you are looking to standardize your release processes and improve quality, Spinnaker is for you.
Continuous (Preview) Releases for your libraries!
With pkg.pr.new, each of your commits and pull requests will trigger an instant preview release without publishing anything to NPM. This enables users to access features and bug-fixes without the need to wait for release cycles using npm or pull request merges.
View 5 weeks of DevSecOps Series' Articles on DEV Community
The tiniest PaaS you've ever seen. piku, inspired by dokku, allows you do git push deployments to your own servers, no matter how small they are.
piku, inspired by dokku, allows you do git push deployments to your own servers, no matter how small they are.
Related contents:
CI/CD Security Analyzer.
RAVEN (Risk Analysis and Vulnerability Enumeration for CI/CD) is a powerful security tool designed to perform massive scans for GitHub Actions CI workflows and digest the discovered data into a Neo4j database.
Total visibility of your software engineering lifecycle.
Chalk™ captures metadata at build time, and can add a small 'chalk mark' (metadata) to any artifacts, so they can be identified in production. Chalk can also extract chalk marks and collect additional metadata about the operating environment when it does this.
Using Chalk, you can build a graph connecting development and production, so that devops engineers understand what is happening in the development process, and so that developers can understand what is happening in the infrastructure. With this information they can work better together.
Kubernetes-native CI/CD building blocks.
Tekton is a powerful yet flexible Kubernetes-native open source framework for creating continuous integration and delivery (CI/CD) systems. It lets you build, test, and deploy across multiple cloud providers or on-premises systems by abstracting away the underlying implementation details.
Open-Source Feature Flag Management for Enterprises.
Unleash is an open source feature management solution. It improves the workflow of your development team and leads to quicker software delivery. Unleash increases efficiency and gives teams full control of how and when they enable new functionality for end users. Unleash lets teams ship code to production in smaller releases whenever they want.
Flux is a set of continuous and progressive delivery solutions for Kubernetes that are open and extensible.
Related contents:
- (Almost) Every infrastructure decision I endorse or regret after 4 years running infrastructure at a startup @ Jack's home on the web.
- Rebuilding My Talos Cluster from Bare Metal @ Nerdz.
- How to scale GitOps in the enterprise: From single cluster to fleet management @ Platform Engineering.
- Bootstrapping Flux with Terraform, the right way @ Flux.
A fully functional local cloud stack. Develop and test your cloud and serverless apps offline!
LocalStack is an easy-to-use test/mocking framework for developing cloud applications. Using LocalStack, you can spin up a local test environment in seconds, and get the same functionality you would get from a real AWS environment.
Smart automation for DevOps teams and CI/CD pipelines. The AKEless Build System for C#/.NET.
Minisign is a dead simple tool to sign files and verify signatures.
Webhook server for Gitlab, Github and Gitea to run arbitrary commands
Bule-ish CD ripper.
Fully featured CD ripping program able to take out most of the tedium. Fully accurate, has advanced features most rippers don't, yet has no bloat and is cross-platform.
Marketplace of ready-to-use CI/CD templates. Make your GitLab CI/CD simple and reusable.
Dockerfile linter, validate inline bash, written in Haskell.
A smarter Dockerfile linter that helps you build best practice Docker images. The linter parses the Dockerfile into an AST and performs rules on top of the AST. It stands on the shoulders of ShellCheck to lint the Bash code inside RUN instructions.
Your Kubernetes Platform is one Git commit away.
The DevOps Stack provides a standard Kubernetes Platform, bringing together automated Provisioning as Code, Continuous Application Deployment, and readily-made configurations for the best Cloud Native tools in the industry.
Make CI/CD Super Simple.
Earthly is a versatile, approachable CI/CD framework that runs every pipeline inside containers, giving you repeatable builds that you write once and run anywhere. It has a super simple, instantly recognizable syntax that is easy to write and understand – like Dockerfile and Makefile had a baby. And it leverages and augments popular build tools instead of replacing them, so you don’t have to rewrite all your builds no matter what languages you use.
Discover vulnerabilities across a codebase with CodeQL, our industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same.
Fast and powerful Git hooks manager for Node.js, Ruby or any other type of projects.