# Access Control > Search results for `access control` on awesome-repositories.com. 117 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/access-control **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/access-control).** ## Results - [calcom/cal.com](https://awesome-repositories.com/repository/calcom-cal-com.md) (45,585 ⭐) — Cal.com is a comprehensive scheduling infrastructure platform designed to manage availability, booking workflows, and calendar synchronization across multiple users and external services. It provides a backend service for automated appointment scheduling, enabling the creation, confirmation, and management of booking lifecycles through a centralized state machine. The platform also offers embeddable user interface components that allow developers to integrate interactive booking experiences directly into third-party websites. What distinguishes the platform is its extensible app ecosystem and intelligent automation capabilities. Developers can build custom integrations using a modular plugin architecture, while an AI-driven interface allows for complex scheduling operations and configuration updates via natural language commands. The system includes a sophisticated event routing engine that automatically assigns meetings to hosts based on availability, round-robin rules, and organizational hierarchy, supported by real-time webhook orchestration to keep external systems synchronized. The platform covers a broad capability surface including CRM data synchronization, granular role-based access control, and secure OAuth-based integration management. It supports advanced booking configurations, such as prefilling form data and monitoring state changes, alongside specialized tools for Salesforce connectivity, including assignment traceability and fuzzy account matching. Users can also leverage local or remote server hosting options to maintain control over their infrastructure and security configurations. - [chocobozzz/peertube](https://awesome-repositories.com/repository/chocobozzz-peertube.md) (14,520 ⭐) — PeerTube is a decentralized, open-source video hosting platform that enables users to operate independent, interoperable servers. By utilizing the ActivityPub protocol, it connects these servers into a global, federated network where users can follow channels, discover content, and interact across different instances. The platform is designed to function as a self-hosted video content management system, providing a community-driven alternative to centralized media services. What distinguishes PeerTube is its hybrid approach to content delivery and infrastructure management. It integrates peer-to-peer distribution via WebTorrent to reduce server bandwidth consumption, while simultaneously supporting remote object storage to decouple media assets from local disk capacity. To maintain performance under high load, the platform delegates resource-intensive tasks like video transcoding and transcription to external worker instances, ensuring the primary server remains responsive. The platform offers a comprehensive suite of tools for content management, including live streaming, automated moderation, and granular access controls. Its extensibility is supported by a hook-based plugin architecture, allowing administrators to inject custom logic, modify interface elements, or integrate third-party services. Additionally, the system provides a robust command-line interface and a standardized REST API, enabling programmatic control over administrative tasks, bulk content processing, and platform maintenance. The software is packaged for containerized deployment, simplifying infrastructure management and ensuring consistent execution across various hosting environments. - [expo/expo](https://awesome-repositories.com/repository/expo-expo.md) (50,111 ⭐) — Expo is a universal mobile framework designed to build native iOS and Android applications from a single codebase using web-standard technologies. It provides a comprehensive development environment that includes a unified runtime for testing, cloud-based infrastructure for compiling and signing native binaries, and automated tools for managing the entire mobile release lifecycle, including app store submission. The framework distinguishes itself through a plugin-based native configuration engine that programmatically modifies project files, allowing developers to integrate native modules without manual intervention. It also features a file-based routing system that maps directory structures directly to navigation paths, and an over-the-air update service that enables the deployment of JavaScript and asset changes directly to user devices, bypassing traditional app store review cycles. Beyond these core capabilities, the platform offers a wide range of integrated services for managing project metadata, environment variables, and persistent data storage. It includes a robust set of UI components and utilities for handling hardware-level features such as camera access, geolocation, audio and video playback, and push notifications. Developers can also leverage managed cloud services to orchestrate custom build profiles and automate CI/CD workflows. The project is managed via a command-line interface that facilitates project setup, native module integration, and the generation of custom development builds. Documentation and tooling are provided to support both standalone applications and the integration of Expo into existing native projects. - [accelerationnet/access](https://awesome-repositories.com/repository/accelerationnet-access.md) (91 ⭐) — A common lisp library to unify access to common dictionary-like data-structures - [directus/directus](https://awesome-repositories.com/repository/directus-directus.md) (36,030 ⭐) — Directus is a headless content platform that functions as a backend service, automatically generating REST and GraphQL APIs by performing introspection on existing SQL database schemas. It serves as a unified data orchestration layer, decoupling content management from frontend delivery while providing a secure, stateless gateway for database transactions. The platform distinguishes itself through a granular role-based access control engine that enforces security policies at the field level across all API endpoints. It includes a visual, low-code administrative dashboard that allows non-technical users to manage database records directly, alongside a dynamic query abstraction layer that ensures consistent data access regardless of the underlying storage engine. Beyond its core API generation capabilities, the system supports complex data workflows through an event-driven webhook architecture and a middleware pipeline for custom logic injection. It also provides integrated digital asset management for storing and transforming media files, facilitating the development of internal tools and rapid backend prototyping. - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [block/goose](https://awesome-repositories.com/repository/block-goose.md) (49,564 ⭐) — Goose is an extensible agentic AI platform designed for autonomous task orchestration and developer-centric assistance. It provides a workflow engine that manages complex, multi-step objectives by delegating tasks to specialized subagents, all while maintaining stateful session continuity. The system is built to integrate directly into terminal and coding environments, allowing for automated file manipulation and context-aware interaction. The platform distinguishes itself through a secure, sandboxed runtime environment that enforces granular permission controls and policy-driven guardrails. By utilizing a standardized protocol-based architecture, it allows users to connect external tools, services, and third-party models as modular extensions. This framework supports the creation of reproducible automation recipes, which can be configured, shared, and executed to standardize recurring workflows across different projects. Beyond its core orchestration capabilities, the system includes comprehensive developer tooling for session management, interaction logging, and terminal-based interfaces. It supports advanced automation tasks, including browser-based testing and external service integration, through a flexible extension lifecycle that allows for dynamic toolset adjustments during active sessions. - [java-native-access/jna](https://awesome-repositories.com/repository/java-native-access-jna.md) (8,913 ⭐) — Java Native Access - [cube-js/cube](https://awesome-repositories.com/repository/cube-js-cube.md) (19,521 ⭐) — Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orchestrates these interactions by mapping questions to the underlying semantic model, ensuring that AI-generated insights remain accurate and context-aware. Furthermore, Cube is designed for multi-tenant environments, offering robust infrastructure isolation, row-level security, and dynamic context injection to ensure that data access is strictly governed and personalized for every user or tenant. Beyond its core modeling and AI features, the platform includes a comprehensive suite of tools for performance optimization, including automated pre-aggregation caching and asynchronous query queuing. It supports a wide range of data sources and deployment models, from self-hosted containers to managed cloud environments. The system also provides extensive programmatic control over report management, dashboard publishing, and user identity synchronization, making it suitable for embedding interactive analytics directly into custom software applications. - [springload/react-accessible-accordion](https://awesome-repositories.com/repository/springload-react-accessible-accordion.md) (787 ⭐) — Accessible Accordion component for React - [shareai-lab/learn-claude-code](https://awesome-repositories.com/repository/shareai-lab-learn-claude-code.md) (66,910 ⭐) — This project provides a modular framework for building and orchestrating autonomous AI agents. It functions as an agentic workflow engine that manages the full lifecycle of task execution, including model reasoning, tool invocation, and the integration of results. By utilizing a centralized orchestration platform, the system enables the creation of multi-agent teams that collaborate on complex objectives through structured communication and shared task graphs. The framework distinguishes itself through its focus on persistent, stateful operations and multi-agent coordination. It employs file-based message queuing and atomic task locking to ensure that agents can operate in parallel without resource conflicts or duplicate task firing. Each agent functions within an isolated workspace, and the system maintains long-term memory by persisting facts and preferences across sessions, allowing for consistent behavior in long-running tasks. The platform includes comprehensive capabilities for managing agent intelligence and environment interaction. It features dynamic prompt assembly, context-aware memory management, and a robust tool integration layer that allows agents to interface with external services and local files securely. The system also incorporates advanced planning and error recovery mechanisms, such as automated retries, model fallbacks, and dependency-aware task scheduling, to maintain reliability during autonomous operations. The repository is implemented in Python and includes command-line utilities for managing agent lifecycles, monitoring workspace isolation, and auditing execution events. - [infisical/infisical](https://awesome-repositories.com/repository/infisical-infisical.md) (27,374 ⭐) — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access. The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports complex security workflows by integrating with external identity providers for federated authentication and offering a reverse tunneling gateway that allows secure access to private network resources without exposing inbound ports. Additionally, the system includes an event-driven audit engine that maintains an immutable record of all configuration changes and access requests to support compliance requirements. Beyond core secret storage, the platform provides comprehensive orchestration capabilities, including automated secret injection into containerized environments and infrastructure pipelines. It also features integrated public key infrastructure management for the lifecycle of digital certificates and automated scanning to detect hardcoded secrets in source code and CI pipelines. The platform supports flexible deployment models, allowing teams to either utilize managed cloud services or self-host the infrastructure within their own private networks. It provides a broad ecosystem of SDKs and a command-line interface to facilitate integration across various programming languages and deployment workflows. - [n8n-io/n8n](https://awesome-repositories.com/repository/n8n-io-n8n.md) (192,772 ⭐) — n8n is a workflow automation platform that combines a visual interface with code-based extensibility to design, orchestrate, and manage automated processes. It provides a comprehensive suite of tools for data transformation, filtering, and storage, allowing users to build complex logic through conditional branching, looping, and sub-workflow execution. The platform supports both pre-built integration nodes and custom code execution in JavaScript or Python, enabling connectivity with a wide range of external services and APIs. The platform includes a suite of generative AI capabilities, such as an AI-powered workflow builder, a centralized chat interface for custom agents, and retrieval-augmented generation tools that ground responses in domain-specific data. To support development and production lifecycles, n8n offers version control integration with Git, workflow publishing mechanisms, and administrative tools for managing user roles, security policies, and environment configurations. For monitoring and maintenance, the system provides observability tools that include performance metrics, execution insights, and real-time log streaming. It also features error-handling capabilities, such as automated recovery workflows and manual failure triggering, to ensure system reliability. Users can interact with the platform programmatically via a public REST API or manage administrative tasks through a command-line interface. - [verto-health/astral-accessibility](https://awesome-repositories.com/repository/verto-health-astral-accessibility.md) (30 ⭐) — An open-source accessibility widget - tested for healthcare - [rethinkdb/rethinkdb](https://awesome-repositories.com/repository/rethinkdb-rethinkdb.md) (26,996 ⭐) — RethinkDB is a distributed, document-oriented database designed to store and manage JSON-formatted data across scalable clusters. It utilizes a custom log-structured storage engine with B-Tree indexing to ensure high-performance disk I/O and data persistence. The system maintains high availability through automatic sharding and replication, employing a primary-replica voting consensus mechanism to handle node failures and ensure consistent cluster operations. A defining characteristic of the platform is its reactive changefeed engine, which allows applications to subscribe to live data updates. Instead of polling for changes, developers can maintain persistent cursors on tables to stream document modifications in real-time. This is complemented by a fluent, functional query language that translates native code constructs into optimized, parallelized execution plans. By embedding these queries directly into application code, the system provides a type-safe interface that helps prevent injection vulnerabilities while enabling complex data manipulation and aggregation. The platform provides a comprehensive suite of administrative tools for managing production environments, including granular user permissions, TLS network encryption, and visual cluster monitoring. It supports advanced data modeling through document embedding and cross-table linking, as well as specialized geospatial processing for proximity-based queries. The system is designed for integration with modern web frameworks and message brokers, facilitating real-time synchronization with external services and search engines. RethinkDB is configured via key-value files and command-line interfaces, with support for containerized deployment and automated infrastructure orchestration. - [authelia/authelia](https://awesome-repositories.com/repository/authelia-authelia.md) (26,785 ⭐) — Authelia is a centralized identity and access management server designed to secure web applications through unified authentication and authorization. It functions as an identity authority that enables single sign-on across diverse platforms, allowing users to access multiple services with a single set of credentials. By acting as a standards-compliant provider, it facilitates secure identity propagation and token issuance for client applications. The platform distinguishes itself through its ability to integrate directly with web gateways as a reverse proxy authentication middleware, intercepting requests to validate user identity before granting access to protected resources. It enforces granular access control policies and provides robust multi-factor authentication, supporting various verification methods such as hardware security keys, mobile push notifications, and time-based one-time passwords. To maintain consistency across distributed environments, it utilizes stateless session management via encrypted cookies. Authelia offers a flexible integration surface, featuring a pluggable backend that supports multiple external directory services like LDAP alongside internal database options. Its configuration is managed through a declarative, version-controlled YAML schema, which can be further automated using environment variables. The project provides comprehensive command-line tooling for policy validation and configuration management, with native support for deployment in containerized and orchestrated environments. - [clicon/clixon-controller](https://awesome-repositories.com/repository/clicon-clixon-controller.md) (31 ⭐) — Clixon network controller - [toolness/accessible-color-matrix](https://awesome-repositories.com/repository/toolness-accessible-color-matrix.md) (345 ⭐) — An Elm-based prototype to help designers build accessible color palettes. - [appsmithorg/appsmith](https://awesome-repositories.com/repository/appsmithorg-appsmith.md) (40,051 ⭐) — Appsmith is a low-code platform designed for building internal business tools, such as operational dashboards and administrative panels. It enables developers to construct dynamic user interfaces by dragging and dropping modular widgets onto a canvas and binding them directly to backend data sources. The platform utilizes a reactive framework that automatically updates interface elements and triggers functions whenever underlying data or widget properties change, eliminating the need for manual event handling. The platform distinguishes itself through a server-side proxy architecture that executes database and API queries securely, masking sensitive credentials from the client. It provides a sandboxed JavaScript environment for custom logic, ensuring that application code remains isolated and secure. Developers can manage their projects using integrated Git-based version control, which allows for branching, merging, and tracking changes across deployment pipelines. Beyond core UI construction, the platform includes a visual workflow orchestrator for automating business processes and handling human-in-the-loop tasks. It supports a wide range of data connectivity options, including SQL databases, third-party APIs, and AI-driven query execution. The system is built for enterprise environments, offering granular role-based access control, multi-tenancy support, and containerized deployment options for self-hosted infrastructure. The platform is distributed as a containerized runtime, allowing for consistent deployment across local and cloud environments. It includes comprehensive administrative tools for managing authentication, system telemetry, and instance-level security configurations. - [wagtail/wagtail](https://awesome-repositories.com/repository/wagtail-wagtail.md) (20,179 ⭐) — Wagtail is an open-source content management system built on the Django web framework. It provides a structured, tree-based approach to content modeling, allowing developers to define custom page types and reusable content components that are managed through a highly customizable administrative interface. The platform distinguishes itself through its flexible, block-based content composition system, which enables editors to assemble complex page layouts dynamically. It also offers robust support for multi-site and multi-lingual environments, allowing organizations to manage distinct websites or localized content versions from a single installation. These capabilities are complemented by a headless-ready architecture that exposes structured data through programmable APIs, supporting decoupled frontend implementations. Beyond core content management, the system includes comprehensive tools for editorial workflows, such as scheduled publishing, moderation, and granular permission controls. It also features integrated search indexing, automated media processing, and extensive hooks for system extensibility, enabling developers to tailor the administrative dashboard and backend logic to specific project requirements. The project is distributed as a Python package, providing a standardized structure for bootstrapping new content-managed applications. - [kanidm/kanidm](https://awesome-repositories.com/repository/kanidm-kanidm.md) (4,595 ⭐) — Kanidm is a centralized identity management server designed to handle authentication, authorization, and directory services across distributed infrastructure. It provides a comprehensive framework for managing human and service accounts, utilizing a schema-driven database to store identity records, group memberships, and system attributes. The platform supports a wide range of authentication methods, including passkeys, passwords, and standard protocols like OAuth2, OIDC, LDAP, and RADIUS. The system distinguishes itself through a granular access control engine that enforces security policies based on user, group, and resource attributes. It incorporates advanced security features such as privilege access mode enforcement, which requires reauthentication for sensitive operations, and high-privilege group tainting to prevent lateral movement. Administrators can delegate management tasks for specific entries or groups, ensuring that permissions remain tightly scoped while maintaining operational flexibility. Beyond core identity functions, the platform includes robust tools for system maintenance, including automated backup scheduling, database consistency verification, and multi-node replication to ensure high availability. It also provides deep integration with host operating systems through pluggable authentication modules and supports infrastructure access provisioning by managing SSH keys and POSIX attributes. The project provides a suite of command-line utilities for administrative tasks, session management, and server configuration. Documentation and installation resources are available to guide the deployment of the server and its associated client tools. - [ermetic/access-undenied-aws](https://awesome-repositories.com/repository/ermetic-access-undenied-aws.md) (272 ⭐) — Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-sourced by Ermetic. - [aws/aws-cdk](https://awesome-repositories.com/repository/aws-aws-cdk.md) (12,657 ⭐) — The AWS Cloud Development Kit is an infrastructure-as-code framework that enables developers to define and provision cloud resources using familiar programming languages. By utilizing construct-based synthesis, it translates high-level, object-oriented code into declarative templates, allowing for the automated management of complex cloud environments through a centralized, code-driven control plane. The framework distinguishes itself through its ability to model infrastructure as a dependency-aware resource graph, ensuring that components are provisioned and updated in the correct order. It employs a language-agnostic intermediate representation to synthesize these definitions into platform-specific configurations, while supporting aspect-oriented policy injection to apply security and compliance rules across infrastructure definitions during the synthesis phase. Beyond core provisioning, the project provides a modular component registry for distributing and reusing pre-configured infrastructure building blocks. It supports multi-account orchestration, allowing for the deployment of consistent resource sets across different regions and accounts from a single template, and includes capabilities for detecting infrastructure drift to ensure deployed environments remain aligned with their defined state. The project is distributed as a software development kit, providing programmatic interfaces to manage the full lifecycle of cloud resources and integrate infrastructure definitions directly into application codebases. - [casbin/casbin](https://awesome-repositories.com/repository/casbin-casbin.md) (19,848 ⭐) — Casbin is an authorization library that provides a model-based engine for enforcing access control across diverse application environments. It decouples authorization logic from application code by using a configuration-driven approach, allowing developers to define access rules and evaluation logic independently. The system supports a wide range of access control models, including role-based, attribute-based, and relationship-based patterns, which are evaluated at runtime to determine if a subject is permitted to perform an action on a resource. The project distinguishes itself through a highly modular architecture that includes adapter-based storage abstraction, enabling the engine to connect to various persistent backends for policy management. It supports complex, context-aware policy execution by allowing developers to inject custom functions for domain-specific matching and validation. Furthermore, the engine handles hierarchical role resolution and provides mechanisms for aggregating multiple policy outcomes, such as allow-override or deny-override, to resolve conflicting permissions. The platform covers a broad capability surface, including middleware integration for web frameworks, API gateways, and service mesh architectures. It offers extensive tooling for policy administration, observability, and performance optimization, such as result caching and asynchronous execution. The system also supports multi-tenancy through domain-aware authorization and provides programmatic interfaces for automating policy updates and lifecycle management. The library is designed for integration into existing stacks, offering middleware components and support for distributed deployments to ensure consistent authorization state across multiple service instances. - [github/opensource.guide](https://awesome-repositories.com/repository/github-opensource-guide.md) (15,244 ⭐) — This project serves as a comprehensive repository of best practices and documentation standards for managing open source software. It provides a foundational framework for establishing project governance, defining contributor roles, and structuring the lifecycle of collaborative software development. By centralizing knowledge on community building and operational transparency, it acts as a guide for launching, maintaining, and scaling healthy software projects. The project distinguishes itself by offering actionable strategies for the human and organizational aspects of software development that often fall outside of technical implementation. It covers methodologies for formalizing leadership hierarchies, implementing consensus-based decision-making, and enforcing codes of conduct to foster inclusive environments. Furthermore, it provides specific guidance on long-term sustainability, including frameworks for securing financial support, navigating legal requirements, and managing maintainer well-being to prevent burnout. Beyond its core governance focus, the project encompasses a broad range of operational capabilities. These include standardized workflows for contributor onboarding, security compliance practices such as vulnerability reporting and threat modeling, and quality assurance standards that integrate accessibility and automated maintenance. The documentation is designed to help maintainers navigate the complexities of project health, visibility, and strategic planning throughout the entire lifecycle of an open source initiative. - [irekrog/accessibility-checklist](https://awesome-repositories.com/repository/irekrog-accessibility-checklist.md) (42 ⭐) - [sigstore/policy-controller](https://awesome-repositories.com/repository/sigstore-policy-controller.md) (175 ⭐) — Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign - [kilo-org/kilocode](https://awesome-repositories.com/repository/kilo-org-kilocode.md) (15,616 ⭐) — Kilocode is an autonomous engineering platform designed to orchestrate AI agents for complex software development tasks. It functions as a comprehensive system for automating coding, testing, and repository management by integrating directly with your codebase and terminal. The platform provides a unified gateway for model orchestration, allowing for the management of agentic workflows, event-driven automation, and persistent session state across distributed development environments. The platform distinguishes itself through its federated task management and policy-based access control, which enable secure, collaborative development across independent instances. By maintaining semantic codebase indexing and a centralized model gateway, it ensures that AI agents have context-aware retrieval of project structures while managing authentication, rate limits, and automatic service failover across multiple AI providers. Beyond its core orchestration capabilities, the platform supports a wide range of functional areas including automated code review, security vulnerability triage, and multi-stage workflow planning. It provides granular control over agent permissions and tool execution, allowing teams to define custom operational modes and integrate external services through standardized protocols. The system is designed for extensibility, offering a framework to register custom tools and manage environment configurations through natural language commands. It includes robust monitoring and observability features to track agent performance, token consumption, and organizational adoption metrics. - [requarks/wiki](https://awesome-repositories.com/repository/requarks-wiki.md) (27,909 ⭐) — This project is an enterprise knowledge platform designed for teams to create, manage, and publish structured documentation. Built on a high-performance runtime, it provides a centralized environment where contributors can author content using markdown, HTML, or a visual editor. The system is engineered to handle collaborative workflows, ensuring that technical and non-technical users alike can maintain documentation with consistent rendering and version control. What distinguishes this platform is its focus on secure, scalable, and synchronized content management. It features granular path-based access controls and pluggable authentication middleware that integrates with enterprise identity providers, social logins, and multi-factor security layers. To ensure data persistence and collaborative safety, the platform supports direct synchronization with version control repositories and automated backups to cloud object storage. The system offers a comprehensive suite of tools for managing organizational knowledge, including multilingual localization, media asset management, and detailed content version history. Administrators can further tailor the platform through custom visual themes, site-wide style injections, and flexible search configurations that support both built-in engines and external indexing services. The architecture is designed to scale across diverse infrastructure, from low-power hardware to high-performance cloud environments. - [freshrss/freshrss](https://awesome-repositories.com/repository/freshrss-freshrss.md) (14,059 ⭐) — FreshRSS is an open-source, self-hosted web feed aggregator designed to collect, organize, and display content from multiple websites in a single, centralized interface. It functions as a comprehensive reader for standard syndication formats, allowing users to track updates from various sources while maintaining full control over their data and privacy. The platform supports multi-user environments, enabling individual account management and personalized reading experiences. The application distinguishes itself through its robust synchronization and extensibility capabilities. It provides a standardized interface for external mobile and desktop clients to sync reading progress and subscription lists, ensuring a consistent experience across devices. Users can extend the core functionality through a hook-based system that allows for custom logic, UI modifications, and theme integration without altering the primary codebase. Additionally, the platform includes advanced content processing tools, such as web scraping and full-text extraction, to generate structured feeds from websites that lack native syndication. Beyond core aggregation, the system offers extensive tools for information management, including advanced search queries, automated filtering rules, and category-based organization. It handles background tasks for content retrieval and database maintenance, ensuring that feeds remain current and storage usage is optimized through configurable retention policies. The platform is built on a modular architecture that supports diverse deployment scenarios, including cloud hosting and reverse proxy configurations. The software is distributed as a self-hosted PHP application, providing comprehensive documentation for installation, server configuration, and administrative maintenance via both a graphical interface and command-line utilities. - [air-controller/air-controller-desktop](https://awesome-repositories.com/repository/air-controller-air-controller-desktop.md) (0 ⭐) - [ramzesenok/ios-accessibility-audit-skill](https://awesome-repositories.com/repository/ramzesenok-ios-accessibility-audit-skill.md) (12 ⭐) — A Skill that will help agents audit your app or concrete features against accessibility norms - [flipperdevices/flipperzero-firmware](https://awesome-repositories.com/repository/flipperdevices-flipperzero-firmware.md) (15,563 ⭐) — This project provides an open-source firmware platform and complete build environment for portable multi-tool hardware. It functions as an embedded operating system designed to manage radio, infrared, and physical interface components, enabling users to develop custom applications and system logic for specialized hardware devices. The firmware distinguishes itself through a modular architecture that organizes system functionality into isolated units, allowing for the development of custom user interfaces and logic. It includes a comprehensive collection of low-level drivers and applications specifically engineered for wireless protocol analysis, signal manipulation, and hardware debugging. The system supports a broad range of capabilities, including the ability to capture, decode, and transmit radio frequency signals to evaluate wireless access control systems. It facilitates low-level hardware interaction and diagnostics, allowing for the execution of local computing tasks and the management of electronic peripherals. The repository contains the full source codebase and a dedicated build toolchain required to compile custom operating system images. These images can be deployed to hardware via physical debugging interfaces to update or recover system software. - [bitwarden/server](https://awesome-repositories.com/repository/bitwarden-server.md) (18,074 ⭐) — This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials. The platform distinguishes itself through its focus on both human-centric security and automated machine-to-machine workflows. It supports advanced authentication methods including hardware security keys, passkeys, and biometric unlocking, while simultaneously offering programmatic interfaces for injecting secrets directly into development pipelines and automated infrastructure deployments. This dual-purpose design allows teams to maintain strict data sovereignty through local hosting and containerized deployments while enforcing granular governance across their entire user base. Beyond core storage, the system includes extensive observability and compliance tools, such as immutable audit logging, credential risk analysis, and integration with external security information and event management platforms. It also facilitates secure collaboration through encrypted information sharing, emergency access delegation, and automated identity provisioning. The software is designed for flexible deployment across diverse infrastructure environments and includes command-line utilities for administrative tasks, bulk data migration, and secret retrieval. - [gebeto/flipper-xbox-controller](https://awesome-repositories.com/repository/gebeto-flipper-xbox-controller.md) (163 ⭐) — Flipper Zero IR Xbox Controller - [flutter/flutter](https://awesome-repositories.com/repository/flutter-flutter.md) (176,956 ⭐) — This project is a multi-platform UI framework designed for building applications that target mobile, web, and desktop environments from a single codebase. It utilizes a declarative paradigm where the user interface is defined as a function of application state, supported by a layered architecture that includes a high-performance rendering engine and a multi-platform compilation model. The framework provides a comprehensive suite of developer tools, including hot reloading for real-time code injection and diagnostic utilities for monitoring application state and performance. It features a modular component system, a constraint-based layout engine, and built-in support for navigation, localization, and accessibility. Developers can extend functionality through a native integration model that supports platform-specific APIs, foreign function interfaces, and a package management system for dependency distribution. Beyond core UI development, the project includes infrastructure for application packaging and distribution across various app stores and web environments. It also incorporates concurrency models for background task management, security utilities for code obfuscation, and tools for integrating generative AI into the development workflow. - [elysiajs/elysia](https://awesome-repositories.com/repository/elysiajs-elysia.md) (18,531 ⭐) — Elysia is a high-performance TypeScript web framework designed for building type-safe backend services. It provides a modular, plugin-based architecture that allows developers to compose server logic, middleware, and validation schemas into scalable application instances. By leveraging native web standards, the framework ensures portability across diverse JavaScript runtimes, including Node.js, Deno, and various edge computing environments. The framework distinguishes itself through its focus on end-to-end type safety, automatically synchronizing request and response definitions between the server and client. It features a sophisticated plugin system that enables granular control over the request lifecycle, allowing for scoped validation, dependency injection, and shared state management. Additionally, it includes built-in support for real-time communication via WebSockets and provides automated generation of interactive API documentation directly from server routes. Beyond its core routing and validation capabilities, the framework offers a comprehensive suite of tools for managing the request-response lifecycle, including custom payload parsing, reactive cookie management, and streaming responses. It also integrates observability features such as request tracing and performance monitoring, alongside testing utilities that allow for in-memory request simulation without requiring a live network connection. The project is designed for flexibility in deployment, supporting everything from standard server environments to serverless and edge platforms, with options for bundling applications into portable binaries. - [ethz-adrl/control-toolbox](https://awesome-repositories.com/repository/ethz-adrl-control-toolbox.md) (1,686 ⭐) — The Control Toolbox - An Open-Source C++ Library for Robotics, Optimal and Model Predictive Control - [googlechrome/lighthouse](https://awesome-repositories.com/repository/googlechrome-lighthouse.md) (30,355 ⭐) — Lighthouse is an automated diagnostic tool that evaluates web pages against industry standards for performance, accessibility, and search engine optimization. It functions as a programmatic analysis engine and a command-line utility, allowing developers to integrate comprehensive web quality checks directly into continuous integration pipelines and local development workflows. The project distinguishes itself through a modular architecture that utilizes artifact-based data collection to ensure consistent analysis across different environments. It supports a headless execution mode for automated testing and provides a plugin-driven framework, enabling developers to register custom audit logic and specialized reporting categories to meet unique project requirements. Beyond its core auditing capabilities, the tool detects underlying web frameworks and content management systems to provide tailored optimization recommendations. It generates structured, machine-readable reports and offers multiple interfaces, including a browser-integrated panel and a dedicated extension, to facilitate real-time feedback during the development process. - [chromium/chromium](https://awesome-repositories.com/repository/chromium-chromium.md) (22,997 ⭐) — Chromium is an open-source browser platform that provides the foundational codebase for building cross-platform web browsers. At its core, it functions as a web browser engine that interprets standard web technologies to render interactive content and manage the complex lifecycle of web page navigation. The project utilizes a multi-process architecture that separates the browser interface from rendering engines into distinct operating system processes. This design ensures application stability by preventing a single tab crash from affecting the entire browser. Security is maintained through sandbox-based isolation, which restricts untrusted web content to low-privilege subprocesses to prevent unauthorized access to host system resources or sensitive user data. Beyond its core rendering capabilities, the platform includes a framework for browser automation. This allows for the execution of programmatic quality assurance workflows to verify web application performance and functional reliability across various computing environments. The codebase is designed to support hardware-accelerated compositing, offloading visual assembly to the graphics processing unit to facilitate consistent page rendering. - [yassi/dj-control-room](https://awesome-repositories.com/repository/yassi-dj-control-room.md) (488 ⭐) — The control room for your Django app - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks. Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments. Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows. - [flet-dev/flet](https://awesome-repositories.com/repository/flet-dev-flet.md) (15,611 ⭐) — Flet is a cross-platform framework that enables developers to build interactive desktop, mobile, and web applications using only Python. By utilizing a declarative programming model, it allows for the construction of complex user interfaces through a hierarchical structure of components, removing the need for specialized knowledge of web-specific languages like HTML, CSS, or JavaScript. The framework distinguishes itself by offloading visual rendering to a high-performance graphics engine while maintaining application logic within a centralized server-side environment. This architecture synchronizes state and user interactions between the interface and the backend through a persistent connection, ensuring consistent behavior across different operating systems. The platform provides a comprehensive suite of tools for the entire software lifecycle, including native hardware access, automated build pipelines, and the ability to package applications into standalone executables. It supports flexible layout management, custom component creation, and integration with third-party identity providers, allowing for the development of feature-rich applications that function natively on desktop or within a web browser. - [druage/flatui-controls-qml](https://awesome-repositories.com/repository/druage-flatui-controls-qml.md) (93 ⭐) — This is custom made and themed QML controls. The controls are made to look and behave just like Flat UI Toolkit. - [kamranahmedse/developer-roadmap](https://awesome-repositories.com/repository/kamranahmedse-developer-roadmap.md) (357,434 ⭐) — Developer Roadmap is a community-driven platform that provides structured, graph-based learning paths for software engineering. It serves as a comprehensive knowledge repository where technical domains are organized into visual sequences to guide professional skill acquisition and career growth. The project distinguishes itself through a collaborative ecosystem that enables users to contribute roadmaps, curate industry best practices, and maintain professional profiles. It integrates diagnostic assessment frameworks to evaluate technical proficiency, helping developers identify knowledge gaps and prepare for professional interviews through targeted learning sequences. Beyond its core mapping capabilities, the platform offers practical project ideas and interactive tutoring to reinforce engineering concepts. It provides a centralized space for the community to share resources, track progressive skill development, and navigate complex technical landscapes. - [jurajnyiri/homeassistant-tapo-control](https://awesome-repositories.com/repository/jurajnyiri-homeassistant-tapo-control.md) (1,914 ⭐) — Control for Tapo cameras as a Home Assistant component - [dani-garcia/vaultwarden](https://awesome-repositories.com/repository/dani-garcia-vaultwarden.md) (62,417 ⭐) — Vaultwarden is a self-hosted password management server designed to store and synchronize sensitive credentials, identities, and organizational data across multiple client devices. It functions as a database-backed web application that provides an API layer for secure client-server communication, enabling users to manage personal vaults and organizational data sharing with multi-factor authentication. The project distinguishes itself through a comprehensive administrative infrastructure that provides centralized control over server configuration, user accounts, and system diagnostics via a dedicated web-based dashboard. Security is prioritized through token-based administrative access, where management interfaces are protected by hashed authentication tokens, and administrative sessions are strictly controlled through configurable durations and connection invalidation. The architecture is built for consistent execution across diverse environments, utilizing a container-based deployment model that packages the application with all necessary dependencies. It supports flexible infrastructure integration by decoupling reverse proxy traffic routing, allowing external gateways to handle TLS termination and security header enforcement while preserving client IP addresses for accurate logging. The software is distributed as container images for orchestration and deployment, with support for various database backends enabled through compile-time feature flagging. Documentation and maintenance are supported by automated database schema migration tools and regular image updates to ensure ongoing compatibility. - [kubernetes/kubernetes](https://awesome-repositories.com/repository/kubernetes-kubernetes.md) (123,069 ⭐) — Kubernetes is a distributed container orchestration platform that automates the deployment, scaling, and management of containerized applications across clusters of computing nodes. It functions as a declarative infrastructure controller, utilizing a control loop architecture that continuously monitors the current system state against user-defined configurations to ensure desired operational outcomes. The system relies on a centralized API-driven interface and a replicated key-value store to maintain a consistent source of truth for all cluster objects. The platform distinguishes itself through a highly extensible design that allows users to define domain-specific objects using the same native API and control loop infrastructure. It employs a standardized abstraction layer for container runtimes, enabling modular execution engines, and utilizes a pluggable controller pattern that supports third-party integrations without requiring modifications to the core codebase. An algorithmic bin-packing engine further optimizes hardware utilization by dynamically matching workload requirements with available cluster capacity. Beyond core orchestration, the system provides comprehensive operational support for distributed environments, including automated lifecycle management, horizontal and vertical scaling, and self-healing mechanisms that maintain service availability. It encompasses integrated solutions for networking, persistent storage orchestration, and secure secret management. Diagnostic utilities for monitoring performance metrics, aggregating logs, and troubleshooting infrastructure-level issues are also included to support cluster health and reliability. - [quarkusio/quarkus](https://awesome-repositories.com/repository/quarkusio-quarkus.md) (15,479 ⭐) — Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative programming, allowing developers to mix non-blocking, event-driven logic with traditional blocking code. It features a specialized dependency injection container optimized for build-time resolution and supports virtual thread concurrency to improve throughput in high-concurrency environments. Its container-native lifecycle management ensures seamless integration with cloud infrastructure, providing automated health monitoring and service orchestration. Quarkus covers a broad capability surface, including comprehensive support for RESTful web services, event-driven messaging, and secure identity management. It integrates with standard enterprise specifications and provides extensive tooling for automated infrastructure provisioning, distributed tracing, and observability. The platform also includes a developer-focused dashboard and live-coding capabilities to streamline the development lifecycle. The project provides extensive documentation and a modular extension system that allows developers to add features while maintaining native compatibility. It is designed to be installed and managed through standard build automation tools, supporting a wide range of deployment targets including serverless functions and managed Kubernetes clusters. - [googlechrome/chrome-extensions-samples](https://awesome-repositories.com/repository/googlechrome-chrome-extensions-samples.md) (17,353 ⭐) — This repository serves as a comprehensive reference library for browser extension development, providing a collection of code samples and implementation patterns. It is designed to help developers understand the requirements for building extensions that adhere to current manifest standards, specifically focusing on the transition to and implementation of version three specifications. The project provides functional examples for core extension capabilities, including the use of event-driven background service workers, isolated content script injection, and message-passing for inter-process communication. It demonstrates how to configure extension metadata, manage browser UI customizations like action-triggered popups, and integrate various web APIs to modify browser behavior. These resources cover the full lifecycle of extension development, from initial manifest configuration and local directory loading for debugging to the final packaging and publication process. The repository is structured to assist with both learning individual API usage and building complex, multi-component extensions using standard web technologies.