# Infrastructure as code and provisioning > Search results for `Infrastructure as code and provisioning` on awesome-repositories.com. 115 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/infrastructure-as-code-and-provisioning **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/infrastructure-as-code-and-provisioning).** ## Results - [activepieces/activepieces](https://awesome-repositories.com/repository/activepieces-activepieces.md) (20,887 ⭐) — Activepieces is an open-source, self-hosted workflow automation platform designed to connect third-party applications through modular triggers and actions. It provides a low-code integration framework that allows users to build, manage, and execute complex business logic sequences within isolated, sandboxed environments. The platform distinguishes itself through its focus on embeddability and enterprise-grade security. It features an embedded automation builder that can be integrated into external applications via iframes, supported by comprehensive identity and access management tools such as single sign-on, SCIM provisioning, and granular role-based access control. These capabilities allow organizations to maintain programmatic control over their automation infrastructure while ensuring secure user provisioning and centralized credential management. Beyond its core automation engine, the system includes robust lifecycle management tools for versioning, deploying, and promoting workflows across different environments. It supports advanced operational requirements through distributed worker scaling, event queuing, and detailed observability features, including execution history inspection and telemetry exports. Developers can extend the platform by creating custom connectors using TypeScript, which can be validated, packaged, and synchronized with version control systems. The project is built with TypeScript and provides a comprehensive CLI for managing database migrations, integration testing, and infrastructure provisioning. - [coder/code-server](https://awesome-repositories.com/repository/coder-code-server.md) (78,024 ⭐) — This project provides a remote development platform that enables users to access a full-featured integrated development environment through a standard web browser. By decoupling the user interface from the server-side filesystem, it allows for persistent coding workspaces to be hosted on remote servers, virtual machines, or cloud-native infrastructure, ensuring a consistent development experience from any device. The platform distinguishes itself through a secure gateway architecture that manages traffic, authentication, and encryption at the edge. It utilizes persistent WebSocket connections to synchronize editor state and terminal input-output between the remote server and the browser. Furthermore, it includes built-in service proxying capabilities that allow developers to expose locally running web applications via secure subdomains or subpaths, complete with integrated identity verification and traffic management. To support diverse infrastructure requirements, the system offers flexible deployment options including containerized environments and automated provisioning workflows. It maintains state continuity through filesystem-mounted persistence, ensuring that configurations and project data remain intact across restarts. The platform also enforces network security by managing TLS certificates for HTTPS traffic and providing integration layers for external authentication providers. Installation is supported across various host architectures through shell scripts, package managers, or standalone archives, with built-in utilities for managing the application lifecycle. - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks. Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments. Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows. - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history. - [daytonaio/daytona](https://awesome-repositories.com/repository/daytonaio-daytona.md) (72,416 ⭐) — Daytona is a cloud-native development environment platform designed to orchestrate ephemeral, containerized workspaces. It provides a centralized system for managing reproducible coding environments as code, ensuring consistency across distributed teams by abstracting the underlying infrastructure. By utilizing declarative configuration, the platform automates the entire lifecycle of development sandboxes, from initial provisioning to resource governance. The platform distinguishes itself through its infrastructure-agnostic runner layer, which allows development environments to be deployed across local machines, cloud services, or self-managed clusters. It incorporates multi-tenant resource governance to enforce organizational security policies and access controls, alongside event-driven automation that triggers workflows based on infrastructure changes. Furthermore, it enables secure remote connectivity, allowing developers to interact with isolated sandboxes through authenticated tunnels and remote IDE integration. Beyond core orchestration, the platform supports a wide range of development tasks, including integrated terminal access, file system management, and persistent storage mounting. It provides comprehensive observability tools for auditing system activity, monitoring resource consumption, and capturing visual session data. The platform also facilitates advanced automation through programmatic API access, enabling the integration of AI agents and custom workflows directly within the isolated execution environments. The project is implemented in TypeScript and provides a command-line interface and RESTful API for programmatic control over environment lifecycles and infrastructure settings. - [anasoid/jmeter-as-code](https://awesome-repositories.com/repository/anasoid-jmeter-as-code.md) (0 ⭐) — An API that give access to full Jmeter feature as code, All designed object in GUI can be written as code. - [encoredev/encore](https://awesome-repositories.com/repository/encoredev-encore.md) (12,049 ⭐) — Encore is a distributed systems framework designed to unify backend development, infrastructure provisioning, and observability. It functions as an infrastructure-as-code platform that allows developers to define cloud resources, databases, and messaging topics directly within their application code. By analyzing these declarations at compile-time, the system automatically manages the deployment of cloud resources and security policies, ensuring parity between local development and production environments. The platform distinguishes itself through its integrated development experience, which includes a local workspace that mirrors production infrastructure to facilitate testing and debugging. It provides automated AI-assisted development tools that leverage application metadata and runtime telemetry to aid in code generation and performance analysis. Furthermore, the framework enforces architectural standards and automates the creation of ephemeral, production-like environments for every pull request, streamlining the validation process before deployment. Beyond its core orchestration capabilities, the framework includes a comprehensive suite for building type-safe APIs and event-driven services. It handles the complexities of service communication, including automated client library generation, request validation, and distributed tracing instrumentation. The system also incorporates robust security primitives, such as identity token validation, secret management, and automated traffic control, to support the development of secure, scalable backend architectures. - [geerlingguy/mac-dev-playbook](https://awesome-repositories.com/repository/geerlingguy-mac-dev-playbook.md) (6,985 ⭐) — This project is an Ansible-based automation suite designed to provision macOS development environments. It utilizes a set of playbooks to automate the installation of software, the configuration of system settings, and the setup of tools required for software engineering. The system distinguishes itself through variable-driven configuration and symlink-based dotfile syncing, allowing users to override default package lists and synchronize preferences from a central store. It supports both local setup and remote machine provisioning via SSH. The automation surface covers idempotent state management, system font installation, and selective task execution using tags to filter specific configuration subsets. It manages the deployment of shells, editors, and command-line packages to establish a consistent local development workspace. - [nis2shield/infrastructure](https://awesome-repositories.com/repository/nis2shield-infrastructure.md) (2 ⭐) — 🐳 Secure Docker infrastructure for NIS2 compliance - Hardened containers, log segregation, automated backups - [code-and-comment/code-and-comment](https://awesome-repositories.com/repository/code-and-comment-code-and-comment.md) (0 ⭐) - [twpayne/chezmoi](https://awesome-repositories.com/repository/twpayne-chezmoi.md) (18,075 ⭐) — chezmoi is a command-line utility designed to manage and synchronize system configuration files across multiple machines. It uses a local Git repository as the single source of truth, allowing users to track, version, and distribute dotfiles while maintaining a consistent state across diverse operating systems and hardware architectures. The project distinguishes itself through a declarative reconciliation model that computes the difference between the current filesystem and the desired state defined in the repository. It features a robust templating engine that processes configuration files as dynamic templates, enabling the injection of machine-specific data, environment variables, and system metadata. To maintain security, it includes a transparent encryption layer and integrates directly with third-party password managers and key vaults, allowing sensitive credentials to be retrieved at runtime rather than stored in plain text. Beyond core synchronization, the tool provides extensive automation capabilities for environment provisioning and lifecycle management. It supports custom hook-based scripts that execute before or after configuration operations, facilitating automated dependency installation and system-level setup. The platform also handles complex file management tasks, including symbolic link creation, external dependency fetching, and the ability to manage configurations within ephemeral container environments. The project is distributed as a standalone binary, providing a comprehensive command-line interface for auditing configuration drift, previewing changes, and bootstrapping new environments. - [nixos/nix.dev](https://awesome-repositories.com/repository/nixos-nix-dev.md) (3,630 ⭐) — This project provides a functional package manager and a reproducible build system designed to ensure identical build inputs always produce the same outputs. It serves as the foundation for a declarative Linux distribution where the entire system state is defined in a configuration file, enabling predictable deployments and full-system rollbacks. The system uses a deterministic functional language and a lazy-evaluation expression engine to manage software dependencies and isolate build environments. It distinguishes itself through a content-addressable store that allows multiple versions of software to coexist without conflict and a binary-cache mechanism for sharing pre-compiled artifacts across different machines. Capabilities cover a broad surface including deterministic package management, infrastructure-as-code provisioning for virtual machines and bootable images, and the creation of reproducible development shells. It also supports distributed build infrastructure, allowing compilation tasks to be offloaded to remote servers via SSH. This repository hosts the comprehensive technical documentation, configuration manuals, and administration guides for the package manager and the associated operating system. - [diet103/claude-code-infrastructure-showcase](https://awesome-repositories.com/repository/diet103-claude-code-infrastructure-showcase.md) (9,707 ⭐) — This project is a collection of patterns and configurations for deploying AI agents with specialized technical skills and personas. It provides a framework for agentic software engineering, defining standards for AI-driven development workflows and the management of modular technical capabilities. The system features a skill framework that activates technical guidelines based on prompt intent and a context management system that preserves project state using persistent plans and checklists across session resets. It employs a modular organization of guidelines to prevent context window overflow and utilizes custom lifecycle hooks to extend AI functionality. The project covers a broad range of capabilities including automated technical debt reduction, full-stack architecture standardization, and the generation of technical documentation. It also includes utilities for resolving TypeScript compilation errors, validating authenticated API endpoints, and enforcing development guardrails to prevent breaking changes. - [cube-js/cube](https://awesome-repositories.com/repository/cube-js-cube.md) (20,251 ⭐) — Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orchestrates these interactions by mapping questions to the underlying semantic model, ensuring that AI-generated insights remain accurate and context-aware. Furthermore, Cube is designed for multi-tenant environments, offering robust infrastructure isolation, row-level security, and dynamic context injection to ensure that data access is strictly governed and personalized for every user or tenant. Beyond its core modeling and AI features, the platform includes a comprehensive suite of tools for performance optimization, including automated pre-aggregation caching and asynchronous query queuing. It supports a wide range of data sources and deployment models, from self-hosted containers to managed cloud environments. The system also provides extensive programmatic control over report management, dashboard publishing, and user identity synchronization, making it suitable for embedding interactive analytics directly into custom software applications. - [grafana/grafana](https://awesome-repositories.com/repository/grafana-grafana.md) (74,456 ⭐) — Grafana is an observability data platform designed to aggregate metrics, logs, and traces from diverse sources into a unified environment. It functions as a centralized interface for visualizing complex telemetry data, transforming raw streams into interactive dashboards that support real-time system health tracking and performance monitoring. The platform distinguishes itself through a plugin-based modular architecture that integrates disparate databases, cloud services, and monitoring tools via a standardized data abstraction layer. This framework allows for the dynamic loading of external components to support varied data sources and visualization types without requiring modifications to the core codebase. Additionally, the system incorporates a rule-based alerting engine that evaluates incoming data streams against defined thresholds to trigger automated notifications for incident response. Beyond its core visualization and alerting capabilities, the platform provides tools for infrastructure performance monitoring and operational data analysis. It utilizes a declarative, component-driven interface to manage dashboard states and a compiled backend to process high-throughput queries and API requests. The system maintains configuration persistence and state consistency across distributed instances through a centralized metadata storage layer. - [experience-monks/math-as-code](https://awesome-repositories.com/repository/experience-monks-math-as-code.md) (15,482 ⭐) — This project is a mathematics programming pattern library and translation guide designed to map academic mathematical symbols and formulas into programmable logic. It serves as a reference for converting complex notations into software implementations. The resource provides mapping guides for translating calculus, linear algebra, and set theory into iterative loops, functional code, and boolean expressions. It includes specific patterns for implementing piecewise functions, matrix operations, and standard mathematical operators using conditional logic and built-in language functions. The library covers a broad range of capabilities including the conversion of summation and derivative symbols into loops, the translation of vector and matrix notations for dot products and Euclidean norms, and the mapping of set membership constraints to data structures. - [bin456789/reinstall](https://awesome-repositories.com/repository/bin456789-reinstall.md) (12,251 ⭐) — Reinstall is an automated operating system deployer and bare metal provisioning tool designed for virtual private servers and remote hardware. It functions as a remote disk imaging utility and OS management tool, enabling the deployment and reinstallation of Linux and Windows operating systems without requiring physical access to the machine. The project distinguishes itself by automating complex installation hurdles, such as bypassing hardware requirements for RAM, TPM, and SecureBoot. It manages critical low-level tasks including hardware-aware driver injection, raw disk image deployment with automatic volume expansion, and the establishment of reverse-proxy tunnels to maintain server access during the replacement process. Its broader capabilities cover network connectivity configuration for IPv4 and IPv6, automated disk partitioning, and administrator account management. It also includes observability features that stream real-time installation logs via WebSockets and recovery utilities that boot the system into memory-resident environments for manual repairs. The project is implemented primarily as a set of Shell scripts. - [appsmithorg/appsmith](https://awesome-repositories.com/repository/appsmithorg-appsmith.md) (40,051 ⭐) — Appsmith is a low-code platform designed for building internal business tools, such as operational dashboards and administrative panels. It enables developers to construct dynamic user interfaces by dragging and dropping modular widgets onto a canvas and binding them directly to backend data sources. The platform utilizes a reactive framework that automatically updates interface elements and triggers functions whenever underlying data or widget properties change, eliminating the need for manual event handling. The platform distinguishes itself through a server-side proxy architecture that executes database and API queries securely, masking sensitive credentials from the client. It provides a sandboxed JavaScript environment for custom logic, ensuring that application code remains isolated and secure. Developers can manage their projects using integrated Git-based version control, which allows for branching, merging, and tracking changes across deployment pipelines. Beyond core UI construction, the platform includes a visual workflow orchestrator for automating business processes and handling human-in-the-loop tasks. It supports a wide range of data connectivity options, including SQL databases, third-party APIs, and AI-driven query execution. The system is built for enterprise environments, offering granular role-based access control, multi-tenancy support, and containerized deployment options for self-hosted infrastructure. The platform is distributed as a containerized runtime, allowing for consistent deployment across local and cloud environments. It includes comprehensive administrative tools for managing authentication, system telemetry, and instance-level security configurations. - [jam3/math-as-code](https://awesome-repositories.com/repository/jam3-math-as-code.md) (0 ⭐) - [bregman-arie/devops-exercises](https://awesome-repositories.com/repository/bregman-arie-devops-exercises.md) (82,879 ⭐) — This project is a comprehensive educational curriculum designed to build proficiency across modern infrastructure, cloud-native technologies, and systems administration. It functions as a reference library and interview preparation resource, offering a structured collection of conceptual questions, practical coding challenges, and hands-on scenarios that cover the full spectrum of software delivery and operational workflows. The repository distinguishes itself through a modular, domain-specific structure that links instructional problem statements with verified implementation examples. By employing a standardized documentation schema, it provides a predictable learning path for mastering complex technical concepts, ranging from infrastructure-as-code patterns and container orchestration to cloud platform administration and security best practices. The content spans a wide array of technical domains, including automated configuration management, distributed system monitoring, database operations, and version control. It provides deep dives into specific tooling for cloud provisioning, container networking, and service deployment, ensuring that learners can validate their technical skills through isolated, practical exercises. All instructional materials are organized into a unified taxonomy of markdown-based documents, allowing users to navigate and study specific technical topics at their own pace. - [danielmiessler/personal_ai_infrastructure](https://awesome-repositories.com/repository/danielmiessler-personal-ai-infrastructure.md) (8,901 ⭐) — This project is a comprehensive AI infrastructure that combines an LLM agent orchestration framework, an autonomous research system, and a local AI environment. It centers on the creation of a personal knowledge graph and a programmatic prompt engineering library to provide long-term memory and optimized reasoning for artificial intelligence tasks. The system is distinguished by its ability to compose multi-agent teams using specialized personas and deterministic skills to execute complex workflows. It features an autonomous research pipeline capable of deep investigations and adversarial analysis, as well as a typed graph memory system that captures personal learnings and activities to serve as historical context. Broad capabilities include automated web data extraction via tiered strategies, structured problem analysis using cognitive reasoning patterns, and programmatic media generation. The infrastructure also supports local environment management through filesystem context indexing, capability deployment packages, and system backup management. The system includes monitoring and observability tools for agent performance evaluation and structured root cause analysis to iteratively optimize system efficiency. - [clearml/clearml](https://awesome-repositories.com/repository/clearml-clearml.md) (6,740 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the end-to-end machine learning lifecycle, from initial experimentation to production deployment. It provides a suite of integrated tools including a pipeline orchestrator for automating workflows, an experiment tracking tool for logging hyperparameters and metrics, and a metadata-driven data versioning system for managing large-scale datasets and model artifacts. The platform is distinguished by its advanced compute management and serving capabilities. It features a GPU compute manager that supports fractional resource slicing and priority scheduling across hybrid cloud environments. Additionally, it includes a dedicated serving framework for hosting large language models and agentic workflows through secure APIs with integrated autoscaling. The system covers a broad range of operational capabilities, including real-time infrastructure cost tracking, multi-tenant resource isolation, and automated execution environment reproduction. It also provides observability tools for monitoring inference endpoints, auditing AI workflows, and analyzing system-level hardware utilization. The orchestration engine can be deployed via containerized or cloud-image based installations to host the platform's lifecycle infrastructure. - [six2dez/reconftw](https://awesome-repositories.com/repository/six2dez-reconftw.md) (7,226 ⭐) — reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the discovery, mapping, and monitoring of external digital assets. It operates as a modular tool-chain pipeline that coordinates a sequence of security tools to perform intelligence gathering and vulnerability scanning. The project distinguishes itself through a cloud-native deployment model that parallelizes scanning workloads across a fleet of remote VPS instances to bypass local resource constraints. It utilizes container-based environment isolation to ensure consistent execution across different cloud providers and features a checkpoint system to resume interrupted workflows from the last point of failure. The toolkit covers a broad range of capabilities, including passive and active subdomain enumeration, open-source intelligence gathering, and network infrastructure analysis. It also incorporates automated vulnerability scanning for common web flaws and CVEs, differential asset tracking to identify new targets, and the generation of security reports using artificial intelligence. The environment can be deployed via container orchestration and integrated into CI/CD pipelines for recurring security checks. - [dataminr-ai/event-extraction-as-question-generation-and-answering](https://awesome-repositories.com/repository/dataminr-ai-event-extraction-as-question-generation-and-answering.md) (0 ⭐) — This repository contains the code for our ACL 2023 paper Event Extraction as Question Generation and Answering . - [allegroai/clearml](https://awesome-repositories.com/repository/allegroai-clearml.md) (6,733 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the entire machine learning lifecycle. It functions as an experiment tracking tool, a data versioning system, and a pipeline orchestrator, while providing infrastructure for GPU cluster management and model serving. The platform is distinguished by its ability to handle hybrid-cloud compute scheduling and fractional GPU allocation, allowing multiple workloads to share a single hardware accelerator. It employs a metadata-based approach to data versioning, using virtual views to track large datasets and artifacts without duplicating raw files. The system covers a broad range of capabilities including automated machine learning pipeline orchestration via task-graph dependencies, hyperparameter optimization, and distributed model training. It also provides an integrated AI workbench for remote development and a centralized control plane for tracking models from training through to production deployment. Governance and observability are integrated through multi-tenant resource isolation, role-based access control, and real-time monitoring of compute resources and model performance. - [xamarinhq/xamu-infrastructure](https://awesome-repositories.com/repository/xamarinhq-xamu-infrastructure.md) (0 ⭐) — This is a set of useful classes for Xamarin and Xamarin.Forms development which are used in a varity of labs in Xamarin University. - [hashicorp/nomad](https://awesome-repositories.com/repository/hashicorp-nomad.md) (16,211 ⭐) — Nomad is a distributed workload orchestrator and infrastructure automation platform designed to manage the lifecycle of applications across large-scale, heterogeneous environments. It functions as a multi-cloud orchestration engine, providing a unified control plane to deploy, scale, and govern containers, virtual machines, and legacy applications. By utilizing declarative job specifications, the system ensures infrastructure convergence and maintains the desired state across distributed data centers and geographic regions. The platform distinguishes itself through a flexible, plugin-based architecture that supports diverse execution drivers and specialized hardware, such as GPUs and FPGAs. It employs a hierarchical regional federation model, allowing organizations to manage independent clusters as a cohesive system while enforcing fine-grained security policies, resource quotas, and multi-tenancy through namespace segmentation. Its scheduling engine is built on a strongly consistent consensus protocol, ensuring high availability and fault tolerance even across complex, multi-cloud topologies. Beyond core orchestration, the system provides comprehensive infrastructure governance, including integrated service discovery, secret management, and policy-as-code enforcement. It handles the full operational lifecycle of cluster nodes, from automated bootstrapping and health monitoring to rolling version upgrades and capacity scaling. The platform also offers deep observability through system metrics, audit logging, and reactive query mechanisms to maintain operational visibility. Nomad is distributed as a single binary, supporting deployment patterns ranging from lightweight local development environments to massive, multi-region production clusters. - [parai/as](https://awesome-repositories.com/repository/parai-as.md) (0 ⭐) — automotive software and its tool-chain - [hashicorp/terraform](https://awesome-repositories.com/repository/hashicorp-terraform.md) (48,720 ⭐) — Terraform is a declarative infrastructure-as-code tool designed to manage the lifecycle of cloud and on-premises resources. It functions as a workflow engine that reconciles a defined desired state against real-world infrastructure, using a persistent state-tracking layer to maintain consistency and visibility across distributed environments. By mapping infrastructure components into a directed acyclic graph, the system calculates the optimal order for provisioning, updating, or destroying resources. The platform is distinguished by its extensible plugin-based architecture, which decouples core orchestration logic from vendor-specific service APIs. This allows users to manage diverse infrastructure across multiple providers through a unified workflow. The system enforces predictability by separating operations into a three-stage lifecycle—planning, applying, and state-updating—and supports policy-as-code evaluation to validate changes against security and compliance rules before any modifications are executed. Beyond core orchestration, the tool provides robust support for collaborative management, including workspace isolation for environment separation and module sharing for distributing standardized infrastructure patterns. It integrates into broader development ecosystems through support for programmatic definition in various languages, external system hooks, and comprehensive tooling for configuration debugging and editor assistance. - [prefecthq/prefect](https://awesome-repositories.com/repository/prefecthq-prefect.md) (21,640 ⭐) — Prefect is a workflow orchestration platform designed to define, schedule, and monitor complex data pipelines as Python code. It functions as a container-native engine that wraps individual tasks in isolated environments, ensuring consistent dependencies and resource allocation across diverse infrastructure. By utilizing a state-machine-based orchestration model, the system tracks execution progress through discrete transitions and persistent event logs to maintain reliable and observable task processing. The platform distinguishes itself through a decoupled worker-API architecture, which separates task scheduling from execution by allowing remote workers to poll a central API for pending work units. This design enables distributed task concurrency, allowing parallel workloads to scale horizontally across clusters or remote nodes. Furthermore, the system supports event-driven workflow triggering, enabling pipelines to initiate or resume automatically in response to system state changes or external signals. The project provides a comprehensive capability surface for managing the entire lifecycle of data operations. This includes modular block-based configuration for injecting credentials and infrastructure settings, result persistence caching for optimizing redundant computations, and extensive integration support for cloud services, databases, and version control systems. Users can also leverage built-in tools for infrastructure automation, data lineage tracking, and automated notification management. The software is distributed as a Python-based framework, with documentation and installation guides available to assist in configuring self-hosted deployments or connecting to managed orchestration services. - [ros-infrastructure/superflore](https://awesome-repositories.com/repository/ros-infrastructure-superflore.md) (60 ⭐) — An extended platform release manager for Robot Operating System - [crystal-lang/crystal](https://awesome-repositories.com/repository/crystal-lang-crystal.md) (20,299 ⭐) — Crystal is a statically typed, compiled programming language designed for high performance and memory safety. It leverages an LLVM-based compiler to translate source code into optimized machine-executable binaries, while its type-inference-based static analysis enforces strict safety rules during the build process. The language distinguishes itself through a fiber-based concurrent runtime that manages lightweight execution units for asynchronous input and output without blocking the main process. It also features a powerful compile-time macro system that allows for the inspection and transformation of the abstract syntax tree, enabling developers to automate repetitive tasks and generate code dynamically during compilation. Furthermore, Crystal provides a native foreign function interface that maps native memory layouts and function signatures to local identifiers, facilitating direct interaction with external system libraries. Beyond its core language features, Crystal includes a comprehensive suite of tooling for the entire software lifecycle. This includes dependency management, automated testing frameworks, documentation generation, and project scaffolding utilities. The ecosystem supports high-performance systems programming, cross-architecture compilation, and the production of statically linked binaries to simplify deployment across diverse environments. - [ventoy/ventoy](https://awesome-repositories.com/repository/ventoy-ventoy.md) (77,243 ⭐) — Ventoy is a cross-platform boot manager that enables users to launch multiple operating system installers and live environments from a single portable storage device. By intercepting the BIOS or UEFI startup sequence, it provides a unified menu that allows for the direct execution of disk image files without requiring file extraction or manual reformatting of the drive. The tool distinguishes itself through a modular, plugin-driven architecture that maps raw image files directly into system memory as block devices. Users can navigate local directories to select bootable files and utilize a web-based interface to generate configuration files, which manage custom scripts and environment variables during the boot process. This approach allows for the injection of drivers and parameters to support automated system provisioning and specialized maintenance tasks. The software supports a wide range of image formats, including ISO, WIM, IMG, VHD, and EFI files. It functions by traversing filesystem structures at runtime to locate and index these images, regardless of their physical placement on the storage media. - [ros-infrastructure/bloom](https://awesome-repositories.com/repository/ros-infrastructure-bloom.md) (72 ⭐) — A release automation tool which makes releasing catkin (http://ros.org/wiki/catkin) packages easier. - [azure/azure-quickstart-templates](https://awesome-repositories.com/repository/azure-azure-quickstart-templates.md) (14,711 ⭐) — This project is a centralized library of community-contributed, declarative configuration files designed for automating the deployment of cloud infrastructure and services. It serves as a repository of machine-readable templates that define the desired state of cloud environments, enabling consistent and repeatable resource provisioning. The collection provides pre-configured scripts that streamline the setup of virtual machines, databases, and networking components. By utilizing these templates, users can standardize the deployment of cloud services and automate the creation of development, testing, and production environments. These templates leverage infrastructure-as-code practices to define resource topologies, ensuring that cloud environments are configured through structured schemas. The repository supports the automation of complex cloud environments by providing verified configurations that reduce manual setup time and configuration errors. - [gravitl/netmaker](https://awesome-repositories.com/repository/gravitl-netmaker.md) (11,630 ⭐) — Netmaker is a platform for automating and managing virtual mesh networks built on WireGuard. It functions as a centralized control plane that orchestrates encrypted, peer-to-peer tunnels across distributed infrastructure, including cloud environments, on-premise data centers, and containerized clusters. By automating the configuration of routing tables and access policies, the system enables secure, private connectivity between diverse devices and services without requiring manual network administration. The platform distinguishes itself through its focus on zero-trust network access and software-defined perimeters, which hide network resources from the public internet while enforcing granular, identity-based security policies. It supports complex network topologies by providing dynamic relay-based routing for firewall-traversal and gateway-based bridging for isolated subnets. These capabilities allow for the creation of scalable, high-performance overlays that maintain consistent connectivity even when direct peer-to-peer paths are unavailable. Beyond core connectivity, the project provides a comprehensive suite of management tools, including automated node provisioning, private service discovery via integrated DNS, and multi-tenant infrastructure support. It also offers robust observability features, such as administrative audit logging and network health monitoring, to ensure operational visibility. The entire networking stack can be self-hosted to maintain data sovereignty, and the platform integrates with external identity providers to streamline authentication and device onboarding. - [bluscreenofjeff/red-team-infrastructure-wiki](https://awesome-repositories.com/repository/bluscreenofjeff-red-team-infrastructure-wiki.md) (0 ⭐) — This wiki is intended to provide a resource for setting up a resilient Red Team infrastructure. It was made to complement Steve Borosh (@424f424f) and Jeff Dimmock's (@bluscreenofjeff) BSides NoVa 2017 talk "Doomsday Preppers: Fortifying Your Red Team Infrastructure" (slides) - [aws/aws-cdk](https://awesome-repositories.com/repository/aws-aws-cdk.md) (12,817 ⭐) — The AWS Cloud Development Kit is an infrastructure-as-code framework that enables developers to define and provision cloud resources using familiar programming languages. By utilizing construct-based synthesis, it translates high-level, object-oriented code into declarative templates, allowing for the automated management of complex cloud environments through a centralized, code-driven control plane. The framework distinguishes itself through its ability to model infrastructure as a dependency-aware resource graph, ensuring that components are provisioned and updated in the correct order. It employs a language-agnostic intermediate representation to synthesize these definitions into platform-specific configurations, while supporting aspect-oriented policy injection to apply security and compliance rules across infrastructure definitions during the synthesis phase. Beyond core provisioning, the project provides a modular component registry for distributing and reusing pre-configured infrastructure building blocks. It supports multi-account orchestration, allowing for the deployment of consistent resource sets across different regions and accounts from a single template, and includes capabilities for detecting infrastructure drift to ensure deployed environments remain aligned with their defined state. The project is distributed as a software development kit, providing programmatic interfaces to manage the full lifecycle of cloud resources and integrate infrastructure definitions directly into application codebases. - [code-cracker/code-cracker](https://awesome-repositories.com/repository/code-cracker-code-cracker.md) (0 ⭐) — An analyzer library for C# and VB that uses Roslyn to produce refactorings, code analysis, and other niceties. - [microsoft/ml-for-beginners](https://awesome-repositories.com/repository/microsoft-ml-for-beginners.md) (86,919 ⭐) — This project is an open-source educational curriculum designed to provide a structured path for developers to master machine learning and generative AI. It functions as a technical skill development platform, offering comprehensive study materials that guide learners through fundamental concepts, algorithms, and the practical implementation of artificial intelligence models from scratch. The curriculum distinguishes itself through a pedagogy centered on interactive Jupyter Notebooks, which allow students to execute code cells directly within narrative documents for immediate visual feedback. To bridge the gap between theory and practice, the repository integrates cloud-based resource provisioning and containerized development environments, ensuring that learners can deploy infrastructure and maintain consistent dependency management across different machines. The content covers a broad spectrum of technical domains, including data science skill acquisition, cloud-native AI deployment, and the development of applications powered by large language models. The materials are organized into modular, independent units that support flexible, non-linear navigation through complex topics. The repository is authored using a markdown-centric structure to facilitate portability and collaboration. It serves as a central hub for a wider series of educational resources covering topics such as AI-assisted software development, agentic workflows, and modern orchestration frameworks. - [healthchecks/healthchecks](https://awesome-repositories.com/repository/healthchecks-healthchecks.md) (9,891 ⭐) — Healthchecks is a heartbeat monitoring service and cron job monitoring tool designed to track the execution and success of scheduled tasks and systemd timers. It functions as a dead man switch, alerting users when expected periodic signals from remote processes fail to arrive. The system accepts health signals via HTTP and SMTP, allowing it to track infrastructure heartbeats from sources ranging from CI/CD workflows to network routers. It distinguishes itself by supporting the capture of diagnostic data, including exit codes and execution logs, and by calculating the duration between start and success signals to detect hanging jobs. The platform includes a health dashboard, status badge generation, and a Prometheus-compatible metrics exporter for external observability. Alerts are routed through a multi-channel notification system including webhooks and SMS, while large request payloads can be offloaded to S3-compatible object storage. User security is managed through WebAuthn two-factor authentication and optional reverse proxy identity integration. - [pschina/deepseek-as-subagent](https://awesome-repositories.com/repository/pschina-deepseek-as-subagent.md) (5 ⭐) — Run DeepSeek as a real sub-agent inside Claude Code / Codex CLI — DeepSeek gets its own 7-tool agent loop in a sandboxed workspace, not just a single LLM call. - [iam-veeramalla/azure-zero-to-hero](https://awesome-repositories.com/repository/iam-veeramalla-azure-zero-to-hero.md) (4,773 ⭐) — Azure-zero-to-hero is a comprehensive learning path and technical curriculum designed for mastering cloud infrastructure, security, and deployment on Azure. It consists of a series of courses, guides, and training modules that provide a structured approach to learning the Azure ecosystem. The project provides practical walkthroughs and tutorials covering the orchestration of containerized applications via Kubernetes, the construction of CI/CD pipelines using Azure DevOps, and the provisioning of core infrastructure including virtual machines and virtual networks. It also includes dedicated training for implementing role-based access control and managing sensitive credentials. The curriculum covers broader capability areas such as serverless workflow automation, cloud resource monitoring, and network security configuration. It demonstrates the use of declarative templates for infrastructure deployment and the integration of centralized secret vaulting. - [boto/boto3](https://awesome-repositories.com/repository/boto-boto3.md) (9,834 ⭐) — Boto3 is the AWS SDK for Python, providing a programmatic interface for managing and automating AWS cloud infrastructure and services. It serves as a cloud management API client and resource manager for provisioning, configuring, and scaling virtual servers, databases, and storage. The library enables the implementation of infrastructure-as-code through declarative templates and scripts, allowing for the deployment of identical resource stacks across multiple accounts and geographic regions. It also provides a framework for coordinating distributed workflows, serverless functions, and containerized applications within the cloud ecosystem. The toolkit covers a broad range of operational capabilities, including generative AI orchestration, identity and access control, and detailed cloud resource monitoring. It further extends to data lifecycle management, including automated backups and migrations, as well as comprehensive billing and cost optimization tools. - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [hellomuffin/exif-as-language](https://awesome-repositories.com/repository/hellomuffin-exif-as-language.md) (0 ⭐) — This is the official repo for the paper "EXIF as Language: Learning Cross-Modal Associations Between Images and Camera Metadata". - [conda-forge/miniforge](https://awesome-repositories.com/repository/conda-forge-miniforge.md) (9,899 ⭐) — Miniforge is a minimal installer for the Conda package management system that provides access to community-maintained software channels. It serves as a lightweight tool for setting up isolated software environments and distributing pre-compiled binary packages to ensure cross-platform compatibility. The project enables the installation of a minimal environment and facilitates the migration of package channels from vendor repositories to community-driven distributions. It allows users to retrieve and manage software packages built by a community to extend the available tools in a local environment. The system covers a broad range of package maintenance and distribution capabilities, including cross-platform build automation, global software dependency pinning, and the management of package feedstocks. It also supports the creation of package recipes and the automation of version tracking and pipeline distributions. - [goinaction/code](https://awesome-repositories.com/repository/goinaction-code.md) (4,329 ⭐) — This repository is a Go programming tutorial structured as an interactive coding course. It teaches Go syntax and concepts through a series of hands-on, chapter-based code examples that let learners explore core language mechanics and implement programming patterns directly. The project is built as a static site generator, with educational content authored in plain markdown files. These files are parsed and transformed into a complete, deployable HTML site using template-based rendering and a CSS grid layout for responsive navigation. The documentation surface is the generated site itself, which presents the structured chapters and exercises for learners to follow. - [khuedoan/homelab](https://awesome-repositories.com/repository/khuedoan-homelab.md) (9,109 ⭐) — This project is a GitOps infrastructure framework designed for managing bare metal servers, container clusters, and networking. It serves as a declarative system for orchestrating the deployment and lifecycle of self-hosted services, using Git as the source of truth to synchronize the desired state of the environment. The framework differentiates itself through a comprehensive automation suite that covers the entire hardware-to-service pipeline. It includes a PXE-based bare metal provisioner for network booting and operating system installation, alongside a lightweight container orchestration layer for managing clusters. Secure service exposure is handled via encrypted tunnels and automated SSL certificate issuance using the ACME protocol. The project's capability surface extends to distributed block storage for resilient data access and centralized identity management for single sign-on across all hosted services. It also provides integrated secret management for secure credential distribution and tools for continuous integration, system monitoring, and automated volume backups. The environment can be provisioned and managed via a command-line interface, which supports executing workflows across multiple nodes and simulating deployments in local sandboxes. - [drizzle-team/drizzle-orm](https://awesome-repositories.com/repository/drizzle-team-drizzle-orm.md) (34,835 ⭐) — Drizzle ORM is a TypeScript-native database toolkit providing type-safe SQL query building, schema management, and automated migrations across PostgreSQL, MySQL, SQLite, and SingleStore.