An open source trusted cloud native registry project that stores, signs, and scans content.

a Docker + Kubernetes network trouble-shooting swiss-army container

All the resources you need to get to Senior Engineer and beyond

NodeJS Kubernetes operator framework

Democratizing GitOps

This is jeho-demo-app

kubectl plugin for Kubernetes OpenID Connect authentication (kubectl oidc-login)

Templating on the command line with sprig.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

YAML/JSON/EYAML/Compatible get/set/merge/validate/scan/convert/diff processors using powerful, intuitive, command-line friendly syntax.

Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

A working place for multi-tenancy related proposals and prototypes.

📦 Find and install kubectl plugins

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems

Application Platform for Linode Kubernetes Engine (and any other conformant K8s)

🔥🔥🔥 The Only Production-Ready AI-Powered Backend Code Generation

Flexible client helper for making and validating calls to OpenAPI backends. For Node and the browser. Runtime lib - no need for code generation!

Server supporting the Signal Private Messenger applications on Android, Desktop, and iOS

Automated setup for Mac with ansible

A Vault swiss-army knife: A CLI tool to init, unseal and configure Vault (auth methods, secret engines).

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Quickstarts to provision Kubernetes with Otomi

Custom & better AppArmor profile generator for Docker containers.

/ˈdʏf/ - diff tool for YAML files, and sometimes JSON

Integrate external secret management systems with Kubernetes

Design by contract with TypeScript.

Simple and flexible tool for managing secrets

Tasks needed by APL to glue all the pieces together

Factory to build and publish open API clients used in the apl-tasks repo

JWT-to-RBAC lets you automatically generate RBAC resources based on JWT tokens