18 مستودعات
Practices for managing application settings, data schemas, and permissions through version-controlled configuration files.
Distinguishing note: Focuses on application-level configuration management rather than raw cloud infrastructure provisioning.
Explore 18 awesome GitHub repositories matching devops & infrastructure · Configuration as Code. Refine with filters or upvote what's useful.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
A system for managing data structures, security policies, and application configurations through version-controlled definitions that synchronize with the deployment environment.
Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific
Translates complex cloud provider settings into declarative code to manage infrastructure as software.
Unleash is an open-source feature management platform designed to decouple feature releases from code deployments. It provides a centralized system for orchestrating software releases, enabling teams to control application behavior in real-time through segmented user targeting and automated lifecycle management. The platform distinguishes itself by utilizing a client-side evaluation engine that executes flag logic locally within the application process, ensuring sub-millisecond decision latency without requiring network round-trips. It supports infrastructure-as-code patterns by allowing feat
Manages feature flag settings through version-controlled code to ensure consistent environment configurations.
This repository serves as a library of reference patterns and scripts for infrastructure automation and configuration management. It provides a collection of standardized examples designed to demonstrate how to define and maintain server environments as code, ensuring consistency across development, testing, and production stages. The project focuses on implementing infrastructure as code best practices by showcasing how to structure automation logic for complex deployments. These examples illustrate the use of declarative modeling to define desired system states, alongside modular task abstr
Defines and maintains server settings as code to ensure consistent environments across development, testing, and production.
Seerr is a self-hosted media request system and automation orchestrator. It provides a web interface for users to search for and request movies and television shows for a home media server, acting as a coordinator between users, media servers, and automation tools to trigger the download and organization of approved content. The system distinguishes itself through a comprehensive request management layer that includes granular, role-based permissions and custom override rules to filter and modify incoming requests. It also features a dedicated notification engine that dispatches real-time sta
Manages application settings and integrations using configuration-as-code for consistent deployments.
Pkl is a configuration-as-code language used to define, validate, and generate structured configuration files. It functions as a type-safe configuration generator that enforces data integrity through a strongly-typed schema, ensuring configuration values meet defined constraints and types during evaluation. The project distinguishes itself by acting as both a configuration file generator and a binding generator. It transforms high-level programmable definitions into static formats such as JSON, YAML, or XML, and produces language-specific source code to synchronize settings and provide type s
Provides a programmable language for managing application settings and data schemas through version-controlled files.
SkyPilot is a multi-cloud AI orchestrator and distributed task scheduler designed to launch and manage AI workloads across various cloud providers, Kubernetes, and Slurm clusters. It functions as an infrastructure-as-code framework that uses declarative files to define resource requirements and setup commands for consistent execution across different environments. The project differentiates itself through automated cost optimization, selecting the most affordable GPU or TPU hardware and managing spot instances to reduce expenses. It also provides a remote development environment that bridges
Defines resource requirements and setup commands in portable files to ensure consistent execution across environments.
Atlas is a SQL database schema management tool and database infrastructure as code framework. It provides a declarative database migration engine that computes the difference between a desired schema state and the current database state to automatically generate the necessary SQL for transitions. The project distinguishes itself through a comprehensive suite of analysis and visualization tools, including a database schema linter that detects destructive changes and data loss risks. It also features a SQL schema visualization tool capable of generating entity-relationship diagrams from extract
Manages database roles, permissions, and row-level security policies as version-controlled code.
This project is a containerized build automation system and self-hosted DevOps platform provided as a Docker image. It serves as a distributed build orchestrator and a Dockerized continuous integration and delivery server, ensuring consistent execution environments across different infrastructure. The system distinguishes itself through a distributed execution model that separates a primary controller from multiple remote agents connected via SSH, TCP, or web sockets. It utilizes a modular extensibility framework that allows the core system functionality to be augmented through the installati
Defines system settings using version-controlled YAML files instead of a manual graphical interface.
OpenCost is an open-source tool for monitoring and allocating Kubernetes and cloud infrastructure costs. It provides real-time visibility into spending by distributing asset costs to workloads based on resource requests and usage, breaking down spend by namespace, deployment, pod, and label. The system functions as both a Kubernetes cost allocation engine and a multi-cloud cost analyzer, ingesting billing data from AWS, Azure, and GCP to present unified cost metrics alongside cluster costs. The tool distinguishes itself through its allocation-based cost model, which compares requested versus
Configures cloud provider billing API credentials via Kubernetes secrets for cost data ingestion.
Kubernetes-based, scale-to-zero, request-driven compute
Creates immutable revision snapshots from configuration changes, enabling rollback and revision tracking.
Fleet is an open-source device management platform that provides centralized control over computing devices running macOS, Linux, Windows, Chromebooks, iOS, and Android. It enables organizations to enroll devices, collect real-time telemetry, enforce security compliance policies, and manage software remotely from a single system. The platform can be deployed as a single binary, run locally for testing, or scaled horizontally across cloud infrastructure on AWS, Kubernetes, GCP, or Render, with support for high availability through database replication and load balancing. The platform distingui
Applies configuration changes declaratively so every state is repeatable and auditable.
OpenStack is an open-source cloud computing platform for building and managing public and private cloud infrastructure at scale. It provides a framework for deploying, configuring, and operating cloud services, orchestrating compute, storage, and networking resources across a datacenter through a unified management layer. The platform is built on a decoupled service architecture where individual cloud services are developed and versioned independently within their own repositories. This meta-repository tracks interoperable versions of all OpenStack components as verified submodules, with each
Configures installation and deployment options for all cloud services through declarative settings.
Terraform Cloud Development Kit هو إطار عمل للبنية التحتية ككود (IaC) يسمح بتعريف موارد السحابة باستخدام لغات برمجة عامة. يعمل كمجمع تكوين (Configuration synthesizer)، حيث يترجم منطق البرمجة عالي المستوى ومخططات المزود إلى ملفات تكوين JSON التي يتم تنفيذها بواسطة محرك Terraform لتوفير البنية التحتية. يوفر إطار العمل مكتبة بنية تحتية متعددة اللغات مع القدرة على إنشاء فئات خاصة باللغة تلقائياً من مخططات المزود. يتيح إنشاء هياكل قابلة لإعادة الاستخدام، مما يسمح بتغليف تكوينات الموارد المعقدة في مكونات مشتركة يمكن حزمها ونشرها عبر لغات مختلفة مدعومة. تتضمن مجموعة الأدوات إمكانيات لإدارة حزم البنية التحتية المعزولة للنشر في بيئات متعددة وتكوين خلفيات الحالة (State backends). كما يوفر أدوات لهيكلة المشاريع، وتحويل HCL، وضمان الجودة من خلال التحقق من بناء جملة التكوين، وتأكيدات خصائص الموارد، واختبار اللقطات (Snapshot testing).
Implements configuration-as-code by converting programming language definitions into JSON files for resource provisioning.
This project is a Telegram API client and media archiving system designed to programmatically retrieve chat histories and export media. It functions as a download manager and message forwarder, allowing users to back up photos, videos, and documents from Telegram chats into structured local archives. The system distinguishes itself through advanced content filtering and forwarding capabilities. It can monitor chats for new messages, apply custom regular expressions to filter media by size or date, and automatically forward content between chats. This includes the ability to export protected c
Offers multiple management interfaces including a web dashboard, bot commands, and a command-line interface.
Strider هو خادم CI/CD مصمم لأتمتة بناء واختبار ونشر البرمجيات من خلال خطوط أنابيب التكامل والتسليم المستمر. يعمل كنظام بناء حاويات ينفذ المهام داخل حاويات معزولة للحفاظ على بيئات متسقة عبر أجهزة مضيفة مختلفة. تطبق المنصة نموذج التكوين ككود، حيث تدير إعدادات المشروع ومتغيرات البيئة من خلال ملفات خاضعة للتحكم في الإصدار لضمان سير عمل قابل للتكرار. كما تتكامل مع خوادم الدليل الخارجية عبر LDAP لإدارة هويات المستخدمين وأذونات الوصول الإداري. يتضمن النظام واجهة برمجة تطبيقات أتمتة RESTful لإدارة الحالة الداخلية وتشغيل خطوط الأنابيب عبر طلبات الويب. يدعم تنفيذ المهام المتزامنة لتقليل وقت المعالجة ويوفر نموذج توسيع قائم على المكونات الإضافية لإضافة خطافات مخصصة وعناصر واجهة مستخدم.
Defines pipeline settings and environment variables in version-controlled files to ensure reproducible deployment workflows.
هذا المشروع هو إطار الإدارة الأساسي لجهاز أمان، ويوفر البنية التحتية الأساسية لإدارة جدار الحماية، ومنع اختراق الشبكة، وشبكات التوفر العالي. يعمل كنظام مركزي للتحكم في سياسات أمان الشبكة، وتصفية حركة المرور، وإدارة لوحة تحكم جهاز الأمان. يتميز النظام بقدرات التوفر العالي، والتي تشمل مزامنة التكوينات وجداول حالة الاتصال عبر العقد المتكررة لتمكين تجاوز الفشل التلقائي للأجهزة. كما يتميز ببنية إضافات معيارية لتوسيع منطق الواجهة الخلفية وواجهات المستخدم، إلى جانب API قائم على JSON للإدارة البرمجية لقواعد جدار الحماية وإعدادات النظام. تغطي المنصة مجموعة واسعة من مجالات القدرة، بما في ذلك تكوين الشبكة لـ IPv4 و IPv6، وأنفاق VPN الآمنة، وإدارة البوابة المقيدة (captive portal)، وأدوات المراقبة والملاحظة الشاملة. كما تدمج إدارة الهوية مع المصادقة متعددة العوامل وتوفر أدوات لنسخ التكوين احتياطياً، وتتبع الإصدار، والنشر عبر أجهزة x86-64.
Compares historical configuration versions using a diff format to identify changes and revert to previous states.
Uptrace is an OpenTelemetry-based observability platform designed to collect, store, and analyze distributed traces, metrics, and logs. It functions as a centralized logging backend, a distributed tracing system, and a metrics engine to monitor application performance and system health. The platform is distinguished by AI-powered operational capabilities, allowing users to query telemetry data and manage monitoring dashboards using natural language. It specifically includes specialized monitoring for generative AI pipelines, tracking token usage and response quality for LLM interactions and r
Defines organizations, projects, and monitors using Terraform or YAML for version-controlled observability configuration.