18 Repos
Practices for managing application settings, data schemas, and permissions through version-controlled configuration files.
Distinguishing note: Focuses on application-level configuration management rather than raw cloud infrastructure provisioning.
Explore 18 awesome GitHub repositories matching devops & infrastructure · Configuration as Code. Refine with filters or upvote what's useful.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
A system for managing data structures, security policies, and application configurations through version-controlled definitions that synchronize with the deployment environment.
Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific
Translates complex cloud provider settings into declarative code to manage infrastructure as software.
Unleash is an open-source feature management platform designed to decouple feature releases from code deployments. It provides a centralized system for orchestrating software releases, enabling teams to control application behavior in real-time through segmented user targeting and automated lifecycle management. The platform distinguishes itself by utilizing a client-side evaluation engine that executes flag logic locally within the application process, ensuring sub-millisecond decision latency without requiring network round-trips. It supports infrastructure-as-code patterns by allowing feat
Manages feature flag settings through version-controlled code to ensure consistent environment configurations.
This repository serves as a library of reference patterns and scripts for infrastructure automation and configuration management. It provides a collection of standardized examples designed to demonstrate how to define and maintain server environments as code, ensuring consistency across development, testing, and production stages. The project focuses on implementing infrastructure as code best practices by showcasing how to structure automation logic for complex deployments. These examples illustrate the use of declarative modeling to define desired system states, alongside modular task abstr
Defines and maintains server settings as code to ensure consistent environments across development, testing, and production.
Seerr is a self-hosted media request system and automation orchestrator. It provides a web interface for users to search for and request movies and television shows for a home media server, acting as a coordinator between users, media servers, and automation tools to trigger the download and organization of approved content. The system distinguishes itself through a comprehensive request management layer that includes granular, role-based permissions and custom override rules to filter and modify incoming requests. It also features a dedicated notification engine that dispatches real-time sta
Manages application settings and integrations using configuration-as-code for consistent deployments.
Pkl is a configuration-as-code language used to define, validate, and generate structured configuration files. It functions as a type-safe configuration generator that enforces data integrity through a strongly-typed schema, ensuring configuration values meet defined constraints and types during evaluation. The project distinguishes itself by acting as both a configuration file generator and a binding generator. It transforms high-level programmable definitions into static formats such as JSON, YAML, or XML, and produces language-specific source code to synchronize settings and provide type s
Provides a programmable language for managing application settings and data schemas through version-controlled files.
SkyPilot is a multi-cloud AI orchestrator and distributed task scheduler designed to launch and manage AI workloads across various cloud providers, Kubernetes, and Slurm clusters. It functions as an infrastructure-as-code framework that uses declarative files to define resource requirements and setup commands for consistent execution across different environments. The project differentiates itself through automated cost optimization, selecting the most affordable GPU or TPU hardware and managing spot instances to reduce expenses. It also provides a remote development environment that bridges
Defines resource requirements and setup commands in portable files to ensure consistent execution across environments.
Atlas is a SQL database schema management tool and database infrastructure as code framework. It provides a declarative database migration engine that computes the difference between a desired schema state and the current database state to automatically generate the necessary SQL for transitions. The project distinguishes itself through a comprehensive suite of analysis and visualization tools, including a database schema linter that detects destructive changes and data loss risks. It also features a SQL schema visualization tool capable of generating entity-relationship diagrams from extract
Manages database roles, permissions, and row-level security policies as version-controlled code.
This project is a containerized build automation system and self-hosted DevOps platform provided as a Docker image. It serves as a distributed build orchestrator and a Dockerized continuous integration and delivery server, ensuring consistent execution environments across different infrastructure. The system distinguishes itself through a distributed execution model that separates a primary controller from multiple remote agents connected via SSH, TCP, or web sockets. It utilizes a modular extensibility framework that allows the core system functionality to be augmented through the installati
Defines system settings using version-controlled YAML files instead of a manual graphical interface.
OpenCost is an open-source tool for monitoring and allocating Kubernetes and cloud infrastructure costs. It provides real-time visibility into spending by distributing asset costs to workloads based on resource requests and usage, breaking down spend by namespace, deployment, pod, and label. The system functions as both a Kubernetes cost allocation engine and a multi-cloud cost analyzer, ingesting billing data from AWS, Azure, and GCP to present unified cost metrics alongside cluster costs. The tool distinguishes itself through its allocation-based cost model, which compares requested versus
Configures cloud provider billing API credentials via Kubernetes secrets for cost data ingestion.
Kubernetes-based, scale-to-zero, request-driven compute
Creates immutable revision snapshots from configuration changes, enabling rollback and revision tracking.
Fleet is an open-source device management platform that provides centralized control over computing devices running macOS, Linux, Windows, Chromebooks, iOS, and Android. It enables organizations to enroll devices, collect real-time telemetry, enforce security compliance policies, and manage software remotely from a single system. The platform can be deployed as a single binary, run locally for testing, or scaled horizontally across cloud infrastructure on AWS, Kubernetes, GCP, or Render, with support for high availability through database replication and load balancing. The platform distingui
Applies configuration changes declaratively so every state is repeatable and auditable.
OpenStack is an open-source cloud computing platform for building and managing public and private cloud infrastructure at scale. It provides a framework for deploying, configuring, and operating cloud services, orchestrating compute, storage, and networking resources across a datacenter through a unified management layer. The platform is built on a decoupled service architecture where individual cloud services are developed and versioned independently within their own repositories. This meta-repository tracks interoperable versions of all OpenStack components as verified submodules, with each
Configures installation and deployment options for all cloud services through declarative settings.
Das Terraform Cloud Development Kit ist ein Infrastructure-as-Code-Framework, das es ermöglicht, Cloud-Ressourcen mit allgemeinen Programmiersprachen zu definieren. Es fungiert als Konfigurations-Synthesizer, der hochgradige Programmierlogik und Provider-Schemata in JSON-Konfigurationsdateien übersetzt, die von der Terraform-Engine zur Bereitstellung der Infrastruktur ausgeführt werden. Das Framework bietet eine sprachübergreifende Infrastruktur-Bibliothek mit der Fähigkeit, automatisch sprachspezifische Klassen aus Provider-Schemata zu generieren. Es ermöglicht die Erstellung wiederverwendbarer Konstrukte, wodurch komplexe Ressourcenkonfigurationen in geteilte Komponenten verpackt und über verschiedene unterstützte Sprachen hinweg veröffentlicht werden können. Das Toolset umfasst Funktionen zur Verwaltung isolierter Infrastruktur-Stacks für Multi-Umgebungs-Deployments und zur Konfiguration von State-Backends. Es bietet zudem Dienstprogramme für Projekt-Scaffolding, HCL-Konvertierung und Qualitätssicherung durch Validierung der Konfigurationssyntax, Ressourcen-Eigenschafts-Assertions und Snapshot-Tests.
Implements configuration-as-code by converting programming language definitions into JSON files for resource provisioning.
This project is a Telegram API client and media archiving system designed to programmatically retrieve chat histories and export media. It functions as a download manager and message forwarder, allowing users to back up photos, videos, and documents from Telegram chats into structured local archives. The system distinguishes itself through advanced content filtering and forwarding capabilities. It can monitor chats for new messages, apply custom regular expressions to filter media by size or date, and automatically forward content between chats. This includes the ability to export protected c
Offers multiple management interfaces including a web dashboard, bot commands, and a command-line interface.
Strider ist ein CI/CD-Server, der darauf ausgelegt ist, das Bauen, Testen und Bereitstellen von Software durch Continuous-Integration- und Delivery-Pipelines zu automatisieren. Er fungiert als containerisiertes Build-System, das Aufgaben innerhalb isolierter Container ausführt, um konsistente Umgebungen über verschiedene Host-Maschinen hinweg beizubehalten. Die Plattform implementiert ein Configuration-as-Code-Modell und verwaltet Projekteinstellungen sowie Umgebungsvariablen über versionskontrollierte Dateien, um reproduzierbare Workflows zu gewährleisten. Zudem integriert sie sich über LDAP mit externen Verzeichnisservern, um Benutzeridentitäten und administrative Zugriffsberechtigungen zu verwalten. Das System enthält eine RESTful-Automatisierungs-API zur Verwaltung des internen Zustands und zum Auslösen von Pipelines über Web-Requests. Es unterstützt die gleichzeitige Job-Ausführung, um die Verarbeitungszeit zu reduzieren, und bietet ein Plugin-basiertes Erweiterungsmodell zum Hinzufügen benutzerdefinierter Hooks und Benutzeroberflächenelemente.
Defines pipeline settings and environment variables in version-controlled files to ensure reproducible deployment workflows.
Dieses Projekt ist das Kern-Management-Framework für eine Sicherheits-Appliance und bietet die primäre Infrastruktur für Firewall-Management, Netzwerkeindringungsschutz und Hochverfügbarkeits-Networking. Es dient als zentrales System zur Steuerung von Netzwerksicherheitsrichtlinien, zur Filterung von Datenverkehr und zur Verwaltung des Dashboards der Sicherheits-Appliance. Das System zeichnet sich durch seine Hochverfügbarkeitsfunktionen aus, die die Synchronisierung von Konfigurationen und Verbindungszustandstabellen über redundante Knoten hinweg umfassen, um ein automatisches Hardware-Failover zu ermöglichen. Es bietet zudem eine modulare Plugin-Architektur zur Erweiterung von Backend-Logik und Benutzeroberflächen sowie eine JSON-basierte API für das programmatische Management von Firewall-Regeln und Systemeinstellungen. Die Plattform deckt ein breites Spektrum an Funktionsbereichen ab, einschließlich Netzwerkkonfiguration für IPv4 und IPv6, sicheres VPN-Tunneling, Captive-Portal-Administration sowie umfassende Monitoring- und Observability-Tools. Sie integriert zudem Identitätsmanagement mit Multi-Faktor-Authentifizierung und bietet Tools für Konfigurations-Backups, Versionsverfolgung und Deployment auf x86-64-Hardware.
Compares historical configuration versions using a diff format to identify changes and revert to previous states.
Uptrace is an OpenTelemetry-based observability platform designed to collect, store, and analyze distributed traces, metrics, and logs. It functions as a centralized logging backend, a distributed tracing system, and a metrics engine to monitor application performance and system health. The platform is distinguished by AI-powered operational capabilities, allowing users to query telemetry data and manage monitoring dashboards using natural language. It specifically includes specialized monitoring for generative AI pipelines, tracking token usage and response quality for LLM interactions and r
Defines organizations, projects, and monitors using Terraform or YAML for version-controlled observability configuration.