continuous-delivery
DevOps Platform Powerful. Simple. Git server with CI/CD, kanban, and packages. Seamless integration. Unparalleled experience.
Cut Your GitHub Actions Bill by 90%.
Self-hosted GitHub Actions runners made simple. For AWS. 10x cheaper, 30% faster, and unlimited caching. Best alternative to Actions Runner Controller.
RunsOn is the modern way to run self-hosted GitHub Actions runners of any size, at the cheapest price available. Think of it as your best alternative to the Actions Runner Controller (ARC) for Kubernetes, the Philips terraform module, or any of the third party providers that require deep access to your code and secrets.
The fast lane for your PRs.
Trunk is a developer experience (DevEx) platform that enables you to ship code quickly while maintaining the necessary guardrails for excellent eng teams. Use Trunk to check, test, merge, and monitor your code.
A framework for securing software update systems.
The Update Framework (TUF) maintains the security of software update systems, providing protection even against attackers that compromise the repository or signing keys. TUF provides a flexible framework and specification that developers can adopt into any software update system.
Related contents:
GitLab Runner is the open source project that is used to run your CI/CD jobs and send the results back to GitLab.
Related contents:
GitHub Actions. Twice as fast. Half the cost.
Speed up your GitHub Actions with a one-line code change, by running them on high-performance gaming CPUs instead of GitHub's older server hardware.
Related contents:
Continuous Integration & Delivery.
Semaphore CI/CD helps product teams ship software faster, with quality and security. Semaphore is an open source CI/CD platform. Self-host Semaphore on your own servers or on a cloud provider.
Related contents:
Multi-Stage GitOps Continuous Promotion. Application lifecycle orchestration. Seamlessly orchestrate stage-to-stage deployments, without custom scripts or CI pipelines.
Kargo is a next-generation continuous delivery and application lifecycle orchestration platform for Kubernetes. It builds upon GitOps principles and integrates with existing technologies, like Argo CD, to streamline and automate the progressive rollout of changes across the many stages of an application's lifecycle.
Declarative GitOps CD for Kubernetes. Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
Related contents:
- How to Build a Multi-Tenancy Internal Developer Platform with GitOps and vCluster @ ITNEXT's Medium.
- Unleashing the Power of ArgoCD by Streamlining Kubernetes Deployments @ sitepoint.
- Using ArgoCD ApplicationSet to deploy to multiple clusters @ ITNEXT's Medium.
- Top 30 Argo CD Anti-Patterns to Avoid When Adopting Gitops @ Container Hub's Medium.
- How Engineers are Automating More with Less: Trends in DevOps Tooling @ DevOps.
- Harnessing GitOps on Linux for Seamless, Git-First Infrastructure Management @ Linux Journal.
Taskcluster is the task execution framework that supports Mozilla's continuous integration and release processes. It is a flexible, scalable open-source framework that can be used to build complex, highly customized CI systems.
Related contents:
Dune is a build system for OCaml projects. Using it, you can build executables, libraries, run tests, and much more.
Related contents:
Jenkins automation server.
Jenkins is the leading open-source automation server. Built with Java, it provides over 1,800 plugins to support automating virtually anything, so that humans can spend their time doing things machines cannot.
Related contents:
Reloader can watch changes in ConfigMap and Secret and do rolling upgrades on Pods with their associated DeploymentConfigs, Deployments, Daemonsets Statefulsets and Rollouts.
A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig.
Plan and apply Terraform/OpenTofu via PR automation, using best practices for secure and scalable IaC workflows.
Kubernetes for Prod, Tilt for Dev. A toolkit for fixing the pains of microservice development. Define your dev environment as code. For microservice apps on Kubernetes.
Tilt powers microservice development and makes sure they behave! Run tilt up to work in a complete dev environment configured for your team.
Tilt automates all the steps from a code change to a new process: watching files, building container images, and bringing your environment up-to-date. Think docker build && kubectl apply or docker-compose up.
Related contents:
Easy and Repeatable Kubernetes Development.
Skaffold handles the workflow for building, pushing and deploying your application, allowing you to focus on what matters most: writing code.
Skaffold is a command line tool that facilitates continuous development for Kubernetes applications. You can iterate on your application source code locally then deploy to local or remote Kubernetes clusters. Skaffold handles the workflow for building, pushing and deploying your application. It also provides building blocks and describe customizations for a CI/CD pipeline.
Universal Artifact Repository Manager.
Definitive artifact management for flexible development and trusted delivery at any scale.
JFrog Artifactory is the single solution for housing and managing all the artifacts, binaries, packages, files, containers, and components for use throughout your software supply chain. JFrog Artifactory serves as your central hub for DevOps, integrating with your tools and processes to improve automation, increase integrity, and incorporate best practices along the way.
A Deployment Pipeline Framework That Sticks.
A framework for orchestrating and introspecting delivery pipelines. Integrates with directly with Git, OCI and more (to come). Optional user interface for pipeline introspection and manipulation.
Glu is a framework built to help manage and coordinate multi-environment deployments using configuration stored in Git.
Continuous Deployment & Delivery Software for DevOps teams. Deploy your software to multi-cloud, hybrid, and on-premises environments with ease.
Make your complex deployments simple, reliable, and auditable with Octopus Deploy.
Related contents:
Sample Go app repo with test and release pipelines optimized for software supply chain security (S3C).
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
CLI to spin your CI/CD for react-native!
The problem we noticed is that setting up CI is performed once, needs to be researched every time, and is often trial and error driven. The process is repetitive.
We created a tool that bootstraps CI with the most used features, which are ready for customization in the future. Running npx setup-ci generates GitHub workflows for the most popular CI tasks.
Colmena is a simple, stateless NixOS deployment tool modeled after NixOps and morph, written in Rust. It's a thin wrapper over Nix commands like nix-instantiate and nix-copy-closure, and supports parallel deployment.
OPEN SOURCE ORCHESTRATION AND CORRELATION TOOL. ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
ArcherySec allow to interact with continuous integration/continuous delivery (CI/CD) toolchains to specify testing, and control the release of a given build based on results. Its include prioritization functions, enabling you to focus on the most critical vulnerabilities. ArcherySec uses popular open source tools to perform comprehensive scanning for web application and network. The developers can also utilize the tool for implementation of their DevOps CI/CD environment.
The deployment tool for PHP.
The PHP deployment tool with support for popular frameworks out of the box.
validate the structure of your container images.
The Container Structure Tests provide a powerful framework to validate the structure of a container image. These tests can be used to check the output of commands in an image, as well as verify metadata and contents of the filesystem.
Related contents:
Repack docker images to optimize for pulling speed.
This tool repacks a Docker image into a smaller, more efficient version that makes it significantly faster to pull. It does this by using a few different techniques such as removing redundant data and improving compression ratios.
CI/CD orchestrator for Terraform.
Open Source Terraform Orchestration for Teams. Automation, Collaboration and Governance for Terraform within your CI/CD system.
Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline
Markdown to a beautiful Changelog Site.
Transform your Markdown files into stunning changelog sites effortlessly with OpenChangelog. Host, customize, and share product updates seamlessly. Free, open-source, and fully integrated with GitHub.
Multi-cloud continuous delivery for the enterprise.
Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.
Spinnaker provides application management and deployment to help you release software changes with high velocity and confidence. Spinnaker is an open-source, multi-cloud continuous delivery platform that combines a powerful and flexible pipeline management system with integrations to the major cloud providers. If you are looking to standardize your release processes and improve quality, Spinnaker is for you.
Continuous (Preview) Releases for your libraries!
With pkg.pr.new, each of your commits and pull requests will trigger an instant preview release without publishing anything to NPM. This enables users to access features and bug-fixes without the need to wait for release cycles using npm or pull request merges.
View 5 weeks of DevSecOps Series' Articles on DEV Community
The tiniest PaaS you've ever seen. piku, inspired by dokku, allows you do git push deployments to your own servers, no matter how small they are.
piku, inspired by dokku, allows you do git push deployments to your own servers, no matter how small they are.
Related contents:
CI/CD Security Analyzer.
RAVEN (Risk Analysis and Vulnerability Enumeration for CI/CD) is a powerful security tool designed to perform massive scans for GitHub Actions CI workflows and digest the discovered data into a Neo4j database.
Total visibility of your software engineering lifecycle.
Chalk™ captures metadata at build time, and can add a small 'chalk mark' (metadata) to any artifacts, so they can be identified in production. Chalk can also extract chalk marks and collect additional metadata about the operating environment when it does this.
Using Chalk, you can build a graph connecting development and production, so that devops engineers understand what is happening in the development process, and so that developers can understand what is happening in the infrastructure. With this information they can work better together.
Kubernetes-native CI/CD building blocks.
Tekton is a powerful yet flexible Kubernetes-native open source framework for creating continuous integration and delivery (CI/CD) systems. It lets you build, test, and deploy across multiple cloud providers or on-premises systems by abstracting away the underlying implementation details.
Open-Source Feature Flag Management for Enterprises.
Unleash is an open source feature management solution. It improves the workflow of your development team and leads to quicker software delivery. Unleash increases efficiency and gives teams full control of how and when they enable new functionality for end users. Unleash lets teams ship code to production in smaller releases whenever they want.
Flux is a set of continuous and progressive delivery solutions for Kubernetes that are open and extensible.
Related contents:
A fully functional local cloud stack. Develop and test your cloud and serverless apps offline!
LocalStack is an easy-to-use test/mocking framework for developing cloud applications. Using LocalStack, you can spin up a local test environment in seconds, and get the same functionality you would get from a real AWS environment.
Smart automation for DevOps teams and CI/CD pipelines. The AKEless Build System for C#/.NET.
Minisign is a dead simple tool to sign files and verify signatures.
Webhook server for Gitlab, Github and Gitea to run arbitrary commands
Bule-ish CD ripper.
Fully featured CD ripping program able to take out most of the tedium. Fully accurate, has advanced features most rippers don't, yet has no bloat and is cross-platform.
Marketplace of ready-to-use CI/CD templates. Make your GitLab CI/CD simple and reusable.
Dockerfile linter, validate inline bash, written in Haskell.
A smarter Dockerfile linter that helps you build best practice Docker images. The linter parses the Dockerfile into an AST and performs rules on top of the AST. It stands on the shoulders of ShellCheck to lint the Bash code inside RUN instructions.
Your Kubernetes Platform is one Git commit away.
The DevOps Stack provides a standard Kubernetes Platform, bringing together automated Provisioning as Code, Continuous Application Deployment, and readily-made configurations for the best Cloud Native tools in the industry.
Make CI/CD Super Simple.
Earthly is a versatile, approachable CI/CD framework that runs every pipeline inside containers, giving you repeatable builds that you write once and run anywhere. It has a super simple, instantly recognizable syntax that is easy to write and understand – like Dockerfile and Makefile had a baby. And it leverages and augments popular build tools instead of replacing them, so you don’t have to rewrite all your builds no matter what languages you use.
Discover vulnerabilities across a codebase with CodeQL, our industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same.
Fast and powerful Git hooks manager for Node.js, Ruby or any other type of projects.
Secure your supply chain. Ship with confidence. Socket fights vulnerabilities and provides visibility, defense-in-depth, and proactive supply chain protection for JavaScript and Python dependencies.
The Modern Software Delivery Platform - CI, CD, Feature Flags, Cloud Costs & more.
Harness is the industry’s first Software Delivery Platform to use AI to simplify your DevOps processes - CI, CD & GitOps, Feature Flags, Cloud Costs, and much more.
The product delivery platform.
Deliver for your customers, on every commit.
Tara AI helps you maximize engineering impact and scale product delivery, so you can deliver better customer outcomes.
Progressive Delivery Operator for Kubernetes. Flagger is a progressive delivery tool that automates the release process for applications running on Kubernetes. It reduces the risk of introducing a new software version in production by gradually shifting traffic to the new version while measuring metrics and running conformance tests.
Woodpecker is a simple CI engine with great extensibility. Woodpecker is a community fork of the Drone CI system.
Trivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more.
Transform your Messy CI Scripts into Clean Code. Develop Your CI/CD Pipelines as Code and Run Them Anywhere.
Powerful, programmable open source CI/CD engine that runs your pipelines in containers — pre-push on your local machine and/or post-push in CI. Dagger is a tool that lets you replace your software project's artisanal scripts with a modern API and cross-language scripting engine.
Related contents:
DevOps, Supercharged. Previews, production, and everything in between. Democratize deployments and environment creation with our dependency-aware continuous delivery platform.
check-break helps you to discover compatibility breaks between two git revisions of your code, and to improve decisions-making to determine if a new major version is required. In few words, if you follow semver (or try to stick to it), you must use check-break ;-) check-break itself follows semver and monitors its own changes. For now, it's under heavy development, use it at your own risks, compatibility breaks could happen at every moment.