Stars
Karpenter is a Kubernetes Node Autoscaler built for flexibility, performance, and simplicity.
Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD
一个支持多种不同类型数据库,覆盖事前控制、事后监督、标准发布场景,帮助您建立质量规范的SQL全生命周期质量管理平台
Declarative Intent Driven Platform Orchestrator for Internal Developer Platform (IDP).
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
OpenSSF Scorecard - Security health metrics for Open Source
GUAC aggregates software security metadata into a high fidelity graph database.
A QoS-based scheduling system brings optimal layout and status to workloads such as microservices, web services, big data jobs, AI jobs, etc.
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
Kubernetes multi-cluster management and publishing platform
Zadig: An AI-powered, cloud-native, distributed DevOps platform designed for developers
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by t…
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, an…
Support CI generation of SBOMs via golang tooling.
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Official Java client library for kubernetes
Shipwright - a framework for building container images on Kubernetes
Code signing and transparency for containers and binaries
in-toto is a framework to protect supply chain integrity.
The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
A tool for exploring each layer in a docker image
CLI for building apps using Cloud Native Buildpacks
About Application Performance Assessment, diagnosis, monitoring and analysis method.
GitLab4J API (gitlab4j-api) provides a full featured Java client library for working with GitLab repositories via the GitLab REST API
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.