# Secret Management Platforms > Search results for `manage environment secrets across teams and environments` on awesome-repositories.com. 112 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/manage-environment-secrets-across-teams-and-environments **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/manage-environment-secrets-across-teams-and-environments).** ## Results - [cert-manager/cert-manager](https://awesome-repositories.com/repository/cert-manager-cert-manager.md) (13,578 ⭐) — This project is a Kubernetes controller that automates the issuance, renewal, and lifecycle management of TLS certificates. It functions as a native extension to the cluster API, using custom resource definitions and reconciliation loops to maintain the desired state of certificates and trust bundles across distributed services. By integrating directly with the cluster's admission control and secret storage systems, it ensures that cryptographic identities are consistently provisioned and available for application workloads. The project distinguishes itself through its extensive support for automated domain validation and multi-provider integration. It orchestrates complex challenge processes—including those for private or split-horizon networks—to prove domain ownership without manual intervention. Beyond standard certificate management, it provides granular policy enforcement, allowing administrators to restrict issuance permissions, delegate certificate requests to specific service accounts, and enforce security requirements through custom metadata and issuer configurations. The platform covers a broad capability surface for securing network traffic and service communication. It supports diverse issuance workflows, ranging from public certificate authorities and ACME-based automation to private internal PKI infrastructures. The system also includes robust observability tools, such as operational metrics and status inspection, alongside administrative features for managing resource configurations, performing API migrations, and scaling controller components for high-availability environments. Installation and management are facilitated through standard cluster deployment workflows, with comprehensive command-line tools available for troubleshooting, configuration export, and lifecycle verification. - [expo/expo](https://awesome-repositories.com/repository/expo-expo.md) (50,111 ⭐) — Expo is a universal mobile framework designed to build native iOS and Android applications from a single codebase using web-standard technologies. It provides a comprehensive development environment that includes a unified runtime for testing, cloud-based infrastructure for compiling and signing native binaries, and automated tools for managing the entire mobile release lifecycle, including app store submission. The framework distinguishes itself through a plugin-based native configuration engine that programmatically modifies project files, allowing developers to integrate native modules without manual intervention. It also features a file-based routing system that maps directory structures directly to navigation paths, and an over-the-air update service that enables the deployment of JavaScript and asset changes directly to user devices, bypassing traditional app store review cycles. Beyond these core capabilities, the platform offers a wide range of integrated services for managing project metadata, environment variables, and persistent data storage. It includes a robust set of UI components and utilities for handling hardware-level features such as camera access, geolocation, audio and video playback, and push notifications. Developers can also leverage managed cloud services to orchestrate custom build profiles and automate CI/CD workflows. The project is managed via a command-line interface that facilitates project setup, native module integration, and the generation of custom development builds. Documentation and tooling are provided to support both standalone applications and the integration of Expo into existing native projects. - [bitwarden/clients](https://awesome-repositories.com/repository/bitwarden-clients.md) (13,114 ⭐) — This project is a comprehensive zero-knowledge security suite designed for enterprise credential management, secrets orchestration, and password management. It provides a secure, end-to-end encrypted vault that allows users to store, synchronize, and manage sensitive information, including passwords, passkeys, and infrastructure secrets, across desktop, mobile, and browser environments. The platform distinguishes itself through a strict zero-knowledge architecture where all encryption and decryption occur locally on the client, ensuring that plaintext data remains inaccessible to the server. It supports flexible deployment models, allowing organizations to choose between managed cloud services or self-hosted infrastructure to meet specific data sovereignty and compliance requirements. Furthermore, the system integrates with external identity providers to streamline user provisioning and authentication, while offering advanced administrative controls for policy enforcement and security auditing. Beyond core storage, the platform provides extensive tools for DevOps and automated workflows, including command-line interfaces for secret injection and programmatic SDKs for custom integrations. It also includes robust collaboration features for secure data sharing, team resource management, and credential health monitoring to help organizations maintain a strong security posture. - [infisical/infisical](https://awesome-repositories.com/repository/infisical-infisical.md) (27,374 ⭐) — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access. The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports complex security workflows by integrating with external identity providers for federated authentication and offering a reverse tunneling gateway that allows secure access to private network resources without exposing inbound ports. Additionally, the system includes an event-driven audit engine that maintains an immutable record of all configuration changes and access requests to support compliance requirements. Beyond core secret storage, the platform provides comprehensive orchestration capabilities, including automated secret injection into containerized environments and infrastructure pipelines. It also features integrated public key infrastructure management for the lifecycle of digital certificates and automated scanning to detect hardcoded secrets in source code and CI pipelines. The platform supports flexible deployment models, allowing teams to either utilize managed cloud services or self-host the infrastructure within their own private networks. It provides a broad ecosystem of SDKs and a command-line interface to facilitate integration across various programming languages and deployment workflows. - [bitwarden/server](https://awesome-repositories.com/repository/bitwarden-server.md) (18,074 ⭐) — This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials. The platform distinguishes itself through its focus on both human-centric security and automated machine-to-machine workflows. It supports advanced authentication methods including hardware security keys, passkeys, and biometric unlocking, while simultaneously offering programmatic interfaces for injecting secrets directly into development pipelines and automated infrastructure deployments. This dual-purpose design allows teams to maintain strict data sovereignty through local hosting and containerized deployments while enforcing granular governance across their entire user base. Beyond core storage, the system includes extensive observability and compliance tools, such as immutable audit logging, credential risk analysis, and integration with external security information and event management platforms. It also facilitates secure collaboration through encrypted information sharing, emergency access delegation, and automated identity provisioning. The software is designed for flexible deployment across diverse infrastructure environments and includes command-line utilities for administrative tasks, bulk data migration, and secret retrieval. - [activepieces/activepieces](https://awesome-repositories.com/repository/activepieces-activepieces.md) (20,887 ⭐) — Activepieces is an open-source, self-hosted workflow automation platform designed to connect third-party applications through modular triggers and actions. It provides a low-code integration framework that allows users to build, manage, and execute complex business logic sequences within isolated, sandboxed environments. The platform distinguishes itself through its focus on embeddability and enterprise-grade security. It features an embedded automation builder that can be integrated into external applications via iframes, supported by comprehensive identity and access management tools such as single sign-on, SCIM provisioning, and granular role-based access control. These capabilities allow organizations to maintain programmatic control over their automation infrastructure while ensuring secure user provisioning and centralized credential management. Beyond its core automation engine, the system includes robust lifecycle management tools for versioning, deploying, and promoting workflows across different environments. It supports advanced operational requirements through distributed worker scaling, event queuing, and detailed observability features, including execution history inspection and telemetry exports. Developers can extend the platform by creating custom connectors using TypeScript, which can be validated, packaged, and synchronized with version control systems. The project is built with TypeScript and provides a comprehensive CLI for managing database migrations, integration testing, and infrastructure provisioning. - [bitnami-labs/sealed-secrets](https://awesome-repositories.com/repository/bitnami-labs-sealed-secrets.md) (8,925 ⭐) — Sealed Secrets is a Kubernetes secret encryption tool and controller designed for GitOps security. It provides a mechanism to encrypt sensitive data into specialized resources that can be safely stored in public version control systems and decrypted only within a cluster. The system uses an asymmetric encryption manager to seal secrets with a public key, ensuring that only the corresponding private key held within the cluster can unseal them. It includes utilities for security key rotation, secret re-encryption, and offline private key recovery to maintain data access during disaster recovery scenarios. The controller manages the automated transformation of encrypted resources into standard Kubernetes secrets. It supports decryption scope control based on resource names and namespaces, as well as encrypted secret validation to verify resources without performing an actual unsealing process. - [hoppscotch/hoppscotch](https://awesome-repositories.com/repository/hoppscotch-hoppscotch.md) (79,618 ⭐) — Hoppscotch is an open-source API development ecosystem designed for building, testing, and debugging REST, GraphQL, and real-time APIs. It provides a unified platform that functions across web browsers, desktop applications, and command-line interfaces, allowing developers to manage the entire API lifecycle from a single environment. The platform distinguishes itself through a highly interactive, command-driven interface that utilizes a global spotlight palette and keyboard shortcuts to streamline complex workflows. It supports advanced request manipulation and validation by executing JavaScript-based scripts and assertions within a sandboxed runtime. Furthermore, it integrates AI-assisted tools to automate the generation of request payloads, test scripts, and documentation, while maintaining compatibility with existing API definitions and collections from other formats. Beyond core testing capabilities, the project offers a collaborative workspace for teams to organize, share, and synchronize API collections and environment variables. It includes robust support for diverse authorization methods, proxy interception for network requests, and enterprise-grade features such as SCIM user provisioning and activity auditing. The software is available for self-hosted deployment via containerized architectures, ensuring consistent behavior across various production and development environments. - [sebastianbergmann/environment](https://awesome-repositories.com/repository/sebastianbergmann-environment.md) (6,778 ⭐) — This project is a PHP environment abstraction layer and runtime detection library. It functions as a logic router designed to identify the active execution engine and trigger specific code paths based on the runtime environment. The library enables cross-engine PHP development by routing application logic through different branches and managing behaviors depending on the detected context. This allows for the implementation of environment-specific configurations and conditional execution logic to ensure compatibility across various setups. The system covers runtime detection, execution path management, and provides compatibility for static analysis to help resolve potential execution paths. - [nicotsx/zerobyte](https://awesome-repositories.com/repository/nicotsx-zerobyte.md) (6,572 ⭐) — ZeroByte is a backup management platform built around the Restic backup engine, providing encrypted, deduplicated, and compressed snapshots across multiple storage backends. It offers a web interface for scheduling, monitoring, and managing backup operations, with support for cron-based job scheduling and configurable retention policies that automatically prune older snapshots. The platform distinguishes itself through comprehensive multi-protocol volume mounting, allowing backup ingestion from NFS, SMB, WebDAV, SFTP, and rclone-backed sources alongside local directories. It includes a snapshot mirroring mechanism that copies backups to additional repositories after each run for geographic redundancy, and supports OIDC-based single sign-on with organization membership enforcement for team access management. All sensitive credentials are encrypted before storage, with support for environment variable and Docker secret references. Backup operations can be monitored in real-time through the web interface, which streams file counts and data transfer progress during runs. The notification system delivers alerts across multiple channels including email, Slack, Discord, and webhooks, with configurable pre and post-backup HTTP requests. Storage backends span local disks, S3-compatible services, Google Cloud, Azure Blob, and over 40 rclone-supported providers, with the ability to reuse existing Restic repositories. The application supports both local directory backup deployment and remote mount capability deployment, with a provisioning file system that reads JSON configuration at startup to define repositories and volumes. - [sloria/environs](https://awesome-repositories.com/repository/sloria-environs.md) (1,367 ⭐) — simplified environment variable parsing - [ansible-semaphore/semaphore](https://awesome-repositories.com/repository/ansible-semaphore-semaphore.md) (13,766 ⭐) — Semaphore is a web interface and API for running and scheduling Ansible playbooks and other infrastructure automation tools. It serves as an infrastructure automation dashboard and DevOps task scheduler for orchestrating deployments. The platform functions as a multi-tool automation hub, providing a centralized dashboard for managing infrastructure as code using Ansible, Terraform, OpenTofu, and Terragrunt. It includes an inventory management tool for organizing target servers and containers, alongside a secret management service for storing sensitive environment variables required during execution. The system covers a broad range of automation capabilities, including the execution of automation scripts, the scheduling of recurring tasks, and the organization of project resources. It also incorporates role-based access control to manage deployment access and a notification system to alert users of task failures. - [mozilla/sops](https://awesome-repositories.com/repository/mozilla-sops.md) (22,116 ⭐) — Sops is a secrets encryption tool designed to encrypt and decrypt sensitive values within configuration files. It functions as a manager for secrets that integrates with cloud key vaults and PGP keys to secure data stored in version-controlled files. The tool utilizes structure-preserving encryption to encrypt individual values while keeping the overall file format and non-sensitive keys intact. It employs a KMS-backed encryption model, interfacing with external key management services from AWS, GCP, and Azure to handle cryptographic operations without exposing private keys locally. The project covers secret configuration management for GitOps workflows and automated secrets deployment within CI/CD pipelines. It provides a framework for metadata-driven decryption and symmetric-key envelope encryption through pluggable cryptographic backends. - [googlecontainertools/skaffold](https://awesome-repositories.com/repository/googlecontainertools-skaffold.md) (15,856 ⭐) — Skaffold is a command-line tool that automates the build, push, and deployment lifecycle for containerized applications on Kubernetes. It functions as a continuous development engine, monitoring source code for changes to trigger incremental updates, manifest hydration, and automated deployments to a cluster. By abstracting the underlying build and deployment tools, it provides a unified interface for managing the inner development loop. The platform distinguishes itself through its environment-aware configuration and flexible build orchestration. It supports diverse build strategies, including local, remote, and in-cluster image construction, and allows developers to switch between environment-specific profiles automatically based on the active cluster context. To accelerate development, it includes features for direct file synchronization into running containers and remote debugging bridges that connect local tools to processes within a cluster. Beyond core orchestration, the tool manages the entire application lifecycle, from project bootstrapping and dependency definition to log streaming and port forwarding. It integrates with common package managers and supports complex workflows through modular configuration composition and automated manifest generation. The system also provides observability tools, such as structured log parsing and integration test coverage collection, to assist in monitoring and troubleshooting applications during the development process. - [joke2k/django-environ](https://awesome-repositories.com/repository/joke2k-django-environ.md) (3,159 ⭐) — Django-environ allows you to utilize 12factor inspired environment variables to configure your Django application. - [m2000interpreter/environment](https://awesome-repositories.com/repository/m2000interpreter-environment.md) (0 ⭐) - [pipecat-ai/pipecat](https://awesome-repositories.com/repository/pipecat-ai-pipecat.md) (12,846 ⭐) — Pipecat is a framework and software development kit for building real-time multimodal AI agents and speech-to-speech systems. It utilizes a frame-based data pipeline to route audio, video, and text through a modular sequence of processors, enabling the orchestration of low-latency conversational AI. The project is distinguished by its ability to coordinate complex multimodal services, including speech-to-text, language models, and text-to-speech, within a single pipeline. It features semantic voice activity detection for natural turn-taking, state-machine conversation flows for dialogue management, and WebRTC-based streaming for bidirectional media connectivity. The framework covers a broad surface of capabilities, including AI integration with various foundation models, asynchronous tool execution for external function calls, and telephony integration with providers such as Twilio and Genesys Cloud. It also includes tools for distributed session management, long-term agent memory, and cloud deployment orchestration for scaling agent instances. The project provides command-line utilities for project scaffolding, deployment auditing, and technical documentation indexing. - [adrianalbert/urban-environments](https://awesome-repositories.com/repository/adrianalbert-urban-environments.md) (0 ⭐) — This repository contains code related to the paper Using convolutional networks and satellite imagery to identify patterns in urban environments at a large scale. A slightly modified version of the paper appears in the proceedings of the ACM KDD 2017 conference. - [fingerprintjs/fingerprintjs](https://awesome-repositories.com/repository/fingerprintjs-fingerprintjs.md) (27,334 ⭐) — Fingerprint is a visitor identification and fraud detection platform that generates persistent, unique identifiers by analyzing browser and device attributes. By extracting technical signals from the client environment, it enables reliable user tracking across sessions without relying on traditional cookies. The platform distinguishes itself through its focus on high-accuracy identification and security-first architecture. It employs edge-side proxying to bypass ad-blockers and privacy restrictions, ensuring consistent data collection. To maintain data integrity, it uses cryptographic payload sealing and server-side verification flows, which prevent tampering by ensuring that identification data is processed securely on the backend rather than solely on the client. Beyond core identification, the project provides a comprehensive suite for bot detection and security. It analyzes network metadata, device reputation, and behavioral patterns to identify malicious traffic, AI agents, and automated scrapers. These capabilities are supported by granular risk assessment tools, including confidence scoring and protection rulesets that allow for automated blocking of suspicious interactions. The platform offers extensive administrative and integration features, including multi-environment resource isolation, regional data residency controls, and programmatic API management. It supports diverse deployment environments through framework-specific SDKs, mobile integration, and automated proxy infrastructure deployment. - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history. - [boto/boto3](https://awesome-repositories.com/repository/boto-boto3.md) (9,834 ⭐) — Boto3 is the AWS SDK for Python, providing a programmatic interface for managing and automating AWS cloud infrastructure and services. It serves as a cloud management API client and resource manager for provisioning, configuring, and scaling virtual servers, databases, and storage. The library enables the implementation of infrastructure-as-code through declarative templates and scripts, allowing for the deployment of identical resource stacks across multiple accounts and geographic regions. It also provides a framework for coordinating distributed workflows, serverless functions, and containerized applications within the cloud ecosystem. The toolkit covers a broad range of operational capabilities, including generative AI orchestration, identity and access control, and detailed cloud resource monitoring. It further extends to data lifecycle management, including automated backups and migrations, as well as comprehensive billing and cost optimization tools. - [nadavbh12/retro-learning-environment](https://awesome-repositories.com/repository/nadavbh12-retro-learning-environment.md) (186 ⭐) — The Retro Learning Environment (RLE) -- a learning framework for AI - [quarto-ext/latex-environment](https://awesome-repositories.com/repository/quarto-ext-latex-environment.md) (0 ⭐) — This is Quarto extension that enables divs to be output as a custom environment in LaTeX. This is useful when you'd like to share content between LaTeX and other formats, but need the content to be placed in an environment when emitting LaTeX. - [yunaiv/yudao-cloud](https://awesome-repositories.com/repository/yunaiv-yudao-cloud.md) (19,143 ⭐) — Yudao-cloud is a Java-based enterprise application platform designed for building scalable backend systems. It provides a modular architecture that supports both monolithic deployment for simplified development and microservices-based scaling for complex distributed environments. The platform functions as a comprehensive development framework that utilizes Spring Boot and distributed service orchestration patterns. It includes a centralized configuration manager to handle service discovery, dynamic settings, and reliable communication between independent components within a cloud-native environment. The system integrates essential infrastructure, including databases, caches, and message queues, to support the data storage and background processing requirements of large-scale business applications. It also features an API gateway to centralize request routing, authentication, and traffic management across the service network. - [motdotla/dotenv](https://awesome-repositories.com/repository/motdotla-dotenv.md) (20,284 ⭐) — Dotenv is a configuration management library designed to load environment variables from local files into the process environment. By separating application settings from source code, it enables developers to maintain consistent configurations across different deployment stages and team environments. The utility provides mechanisms to transform plain text configuration files into encrypted formats, allowing sensitive secrets to be stored securely within version control systems. It handles the parsing and normalization of key-value pairs, ensuring that configuration data is consistently processed and injected into the runtime process memory. The library supports the synchronization of environment variables across multiple machines, facilitating parity between local development and production settings. It respects existing system-level environment variables by preventing the overwriting of values already defined in the host environment. - [brunty/laravel-environment](https://awesome-repositories.com/repository/brunty-laravel-environment.md) (0 ⭐) - [biwei-huang/causal-discovery-and-forecasting-in-nonstationary-environments](https://awesome-repositories.com/repository/biwei-huang-causal-discovery-and-forecasting-in-nonstationary-environments.md) (0 ⭐) — Causal discovery and forecasting in nonstationary environments with state-space models - [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows. The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by automatically synchronizing response data to CRMs, databases, and communication tools, while providing programmatic interfaces for managing resources and automating feedback loops. Beyond core collection, the system includes advanced logic for conditional branching, scoring, and personalized routing to create adaptive survey experiences. It offers extensive customization options, including white-labeling, CSS overrides, and multi-channel distribution across web, mobile, and email environments. The platform is built for self-hosting, supporting containerized deployments with built-in multi-tenant data isolation and enterprise-grade security features like single sign-on and role-based access control. - [amnweb/yasb](https://awesome-repositories.com/repository/amnweb-yasb.md) (4,209 ⭐) — YASB is a customizable status bar framework and desktop shell component for Windows. It provides a toolkit for building personalized information bars using a modular class-based widget architecture and CSS-based styling. The framework distinguishes itself through deep integration with Windows tiling window managers, allowing users to display active workspaces, tiling layouts, and window focus states. It also features automated visual consistency by generating system color schemes based on the current desktop wallpaper. The project covers a wide range of capabilities, including real-time system hardware monitoring for CPU, GPU, and memory, as well as productivity tools such as clipboard history, Pomodoro timers, and task lists. It further integrates external data through API dashboards for weather, cryptocurrency, and GitHub notifications, while providing developer utilities for unit conversion and encoding. Configuration is managed via YAML files with schema-based validation to ensure correctness before runtime. - [alibaba/ali-dbhub](https://awesome-repositories.com/repository/alibaba-ali-dbhub.md) (7,994 ⭐) — ali-dbhub is a database asset management hub and inventory system. It serves as a centralized registry for tracking and organizing database resources, configurations, and instances across multiple development and production environments. The system functions as an environment-isolated configuration manager and a multi-database resource manager. It separates database settings by environment to prevent configuration drift and cross-contamination while coordinating the allocation and lifecycle of database assets through a single administrative interface. The platform provides capabilities for centralized database administration and inventory tracking. It maintains a record of database physical endpoints and logical identifiers to ensure consistent infrastructure access and coordination across different deployment stages. - [josean-dev/dev-environment-files](https://awesome-repositories.com/repository/josean-dev-dev-environment-files.md) (3,939 ⭐) — This project is a collection of environment configuration files, known as dotfiles, designed to standardize a development setup. It provides specific configuration sets for the Neovim modal editor, a tiling window manager, the Tmux terminal multiplexer, and the Zsh shell. The repository includes a curated Unix command line toolset featuring modern utility alternatives and fuzzy finding tools for file navigation. It also contains a suite of settings for managing terminal sessions, window layouts, and custom keybindings to streamline development workflows. The configuration surface covers visual customization through ANSI color schemes and terminal appearance settings, as well as system-level automation for window tiling, workspace organization, and system menu bar widgets. Editor extensibility is handled through plugin management and language server integration. - [elie222/inbox-zero](https://awesome-repositories.com/repository/elie222-inbox-zero.md) (10,101 ⭐) — Inbox Zero is an AI-powered email automation platform and inbox organizer. It uses large language models to automatically categorize, label, and archive emails, while providing a conversational interface for managing workflows and drafting responses through natural language. The project distinguishes itself by integrating real-time calendar availability into its drafting process and generating AI-summarized meeting briefings. It supports a pluggable AI provider interface with model fallback chains, allowing it to connect to various cloud or local LLM providers. Users can also control their inbox via external messaging channels like Slack and Telegram. The system includes broad capabilities for productivity analytics, such as tracking response times and communication trends. It handles enterprise identity through SAML SSO and OAuth for Google and Microsoft services, and utilizes an asynchronous worker queue for bulk inbox cleanup and high-volume processing. The software supports self-hosting via Docker Compose, Kubernetes, and AWS, and includes a command-line interface for rule management and API execution. - [fastapi/full-stack-fastapi-template](https://awesome-repositories.com/repository/fastapi-full-stack-fastapi-template.md) (43,815 ⭐) — This project is a full-stack web application scaffolder designed to initialize production-ready projects with pre-configured database, authentication, and deployment settings. It provides a standardized starting point for development by generating a complete application structure that includes integrated backend, frontend, and database components. The template distinguishes itself through a type-safe integration layer that automatically synchronizes backend API definitions with frontend client code, ensuring consistent data exchange. It also features a containerized development environment that supports live code synchronization and interactive debugging, allowing developers to iterate on services without rebuilding images. The project covers a broad capability surface, including automated database migrations, continuous deployment pipelines, and a built-in administrative dashboard for user and data management. It also incorporates infrastructure tools such as reverse-proxy routing and environment-variable-based configuration to maintain consistency across local development and remote production environments. The repository is intended to be used as a template for new projects, supporting rapid initialization through a command-line scaffolding tool. - [honojs/hono](https://awesome-repositories.com/repository/honojs-hono.md) (30,994 ⭐) — Hono is a lightweight web framework built on Web Standard APIs that executes across JavaScript runtimes including Cloudflare Workers, Deno, Bun, and Node.js. - [say8425/aws-secrets-manager-actions](https://awesome-repositories.com/repository/say8425-aws-secrets-manager-actions.md) (64 ⭐) — 🔒 GitHub Action for AWS Secrets Manager - [cloudflare/workerd](https://awesome-repositories.com/repository/cloudflare-workerd.md) (8,346 ⭐) — workerd is a serverless edge runtime designed for executing lightweight, distributed functions at the network edge. It utilizes a V8-based JavaScript engine to provide fast startup and low memory overhead, while maintaining a WebAssembly-compatible execution environment that allows modules to run alongside JavaScript for high-performance computational tasks. The runtime supports isolate-based multi-tenancy to run multiple independent execution contexts within a single process. It implements an event-driven execution model that triggers code based on network requests or scheduled events and includes support for privileged socket inheritance to operate under unprivileged user accounts. The project covers a broad set of capabilities including serverless API development, AI inference deployment using GPU hardware and vector databases, and automated browser orchestration for web scraping. Additional functionality encompasses global state management via SQL databases and key-value stores, background job scheduling with message queues, and the delivery of static assets through a content delivery network. Development is supported by a command-line interface for project management, custom build pipelines, and tools for pinning runtime behavior to specific dates to ensure consistency. - [piercus/serverless-local-environment](https://awesome-repositories.com/repository/piercus-serverless-local-environment.md) (0 ⭐) — This plugin helps you add some conf that will only work for serverless invoke local - [external-secrets/external-secrets](https://awesome-repositories.com/repository/external-secrets-external-secrets.md) (6,697 ⭐) — External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets. - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [external-secrets/kubernetes-external-secrets](https://awesome-repositories.com/repository/external-secrets-kubernetes-external-secrets.md) (2,584 ⭐) — This project has been deprecated. Please take a look at ESO (External Secrets Operator) instead https://github.com/external-secrets/external-secrets - [coollabsio/coolify](https://awesome-repositories.com/repository/coollabsio-coolify.md) (57,055 ⭐) — This project is a self-hosted platform-as-a-service that provides a centralized management interface for deploying, configuring, and monitoring containerized applications and databases on private infrastructure. It functions as a visual control plane, automating the end-to-end lifecycle of services from source code to production. By managing container orchestration, networking, and resource allocation, it allows users to maintain full control over their own hardware while streamlining the delivery of software. The platform distinguishes itself through its agentless architecture, which uses secure shell connections to execute administrative tasks and manage remote servers without requiring persistent local software. It integrates directly with version control systems to trigger automated build and deployment pipelines, including the creation of temporary, isolated preview environments for every pull request. This workflow is supported by a declarative engine that uses templates to standardize the deployment of complex multi-container architectures and persistent database engines. Beyond core orchestration, the system handles the operational requirements of hosted services by managing dynamic reverse-proxy routing and automated SSL certificate lifecycles. It provides a comprehensive suite of infrastructure management tools, including browser-based terminal access for debugging, automated system dependency installation, and persistent state management via a central database. These capabilities ensure that infrastructure remains synchronized and consistent across multiple remote environments. - [llsourcell/a-guide-to-deepminds-starcraft-ai-environment](https://awesome-repositories.com/repository/llsourcell-a-guide-to-deepminds-starcraft-ai-environment.md) (0 ⭐) — This is the code for "A Guide to DeepMind's StarCraft AI Environment" by Siraj Raval on Youtube - [appsmithorg/appsmith](https://awesome-repositories.com/repository/appsmithorg-appsmith.md) (40,051 ⭐) — Appsmith is a low-code platform designed for building internal business tools, such as operational dashboards and administrative panels. It enables developers to construct dynamic user interfaces by dragging and dropping modular widgets onto a canvas and binding them directly to backend data sources. The platform utilizes a reactive framework that automatically updates interface elements and triggers functions whenever underlying data or widget properties change, eliminating the need for manual event handling. The platform distinguishes itself through a server-side proxy architecture that executes database and API queries securely, masking sensitive credentials from the client. It provides a sandboxed JavaScript environment for custom logic, ensuring that application code remains isolated and secure. Developers can manage their projects using integrated Git-based version control, which allows for branching, merging, and tracking changes across deployment pipelines. Beyond core UI construction, the platform includes a visual workflow orchestrator for automating business processes and handling human-in-the-loop tasks. It supports a wide range of data connectivity options, including SQL databases, third-party APIs, and AI-driven query execution. The system is built for enterprise environments, offering granular role-based access control, multi-tenancy support, and containerized deployment options for self-hosted infrastructure. The platform is distributed as a containerized runtime, allowing for consistent deployment across local and cloud environments. It includes comprehensive administrative tools for managing authentication, system telemetry, and instance-level security configurations. - [jkroepke/helm-secrets](https://awesome-repositories.com/repository/jkroepke-helm-secrets.md) (2,010 ⭐) — A helm plugin that help manage secrets with Git workflow and store them anywhere - [encoredev/encore](https://awesome-repositories.com/repository/encoredev-encore.md) (12,049 ⭐) — Encore is a distributed systems framework designed to unify backend development, infrastructure provisioning, and observability. It functions as an infrastructure-as-code platform that allows developers to define cloud resources, databases, and messaging topics directly within their application code. By analyzing these declarations at compile-time, the system automatically manages the deployment of cloud resources and security policies, ensuring parity between local development and production environments. The platform distinguishes itself through its integrated development experience, which includes a local workspace that mirrors production infrastructure to facilitate testing and debugging. It provides automated AI-assisted development tools that leverage application metadata and runtime telemetry to aid in code generation and performance analysis. Furthermore, the framework enforces architectural standards and automates the creation of ephemeral, production-like environments for every pull request, streamlining the validation process before deployment. Beyond its core orchestration capabilities, the framework includes a comprehensive suite for building type-safe APIs and event-driven services. It handles the complexities of service communication, including automated client library generation, request validation, and distributed tracing instrumentation. The system also incorporates robust security primitives, such as identity token validation, secret management, and automated traffic control, to support the development of secure, scalable backend architectures. - [mem0ai/mem0](https://awesome-repositories.com/repository/mem0ai-mem0.md) (58,698 ⭐) — Mem0 is an agent-agnostic memory layer designed to provide intelligent agents with long-term persistence and cross-session state management. By acting as a centralized service, it allows diverse AI agents to recall user preferences, past interactions, and historical context, ensuring continuity across multiple workflows and independent agent systems. The platform distinguishes itself through a multi-signal retrieval engine that combines semantic vectors, keyword matching, and entity-linked metadata to surface the most relevant information. It employs an adaptive memory engine that automatically extracts, compresses, and updates data, while applying temporal decay logic to prioritize recent information and reduce noise. To support enterprise requirements, the system provides hierarchical multi-tenancy, enforcing strict data isolation and access control boundaries between different organizations, projects, and user groups. Beyond its core storage capabilities, the project offers a comprehensive suite of tools for managing the information lifecycle, including asynchronous event orchestration, webhook integration, and schema-based data structuring. It supports both self-hosted and cloud-based deployments, allowing developers to maintain full control over their infrastructure and data privacy. The project provides a Python-based initialization process and a command-line interface for managing memory records and configuring agent environments. Detailed documentation and integration guides are available to assist with implementation across various technology stacks. - [capawesome-team/capacitor-managed-configurations](https://awesome-repositories.com/repository/capawesome-team-capacitor-managed-configurations.md) (0 ⭐) — Managed Configuration @capawesome/capacitor-managed-configurations Capacitor plugin to access managed configuration settings. - [anthropics/claude-code](https://awesome-repositories.com/repository/anthropics-claude-code.md) (132,728 ⭐) — Anthropic's terminal-native AI coding agent. - [tooljet/tooljet](https://awesome-repositories.com/repository/tooljet-tooljet.md) (38,027 ⭐) — ToolJet is a low-code development platform designed for building and deploying internal business applications. It provides a visual interface where users can drag and drop components to design layouts, connect to various data sources, and execute custom logic. The platform is built on a containerized architecture, ensuring that applications remain portable and consistent across different cloud and server environments. The platform distinguishes itself through integrated artificial intelligence capabilities that assist in the generation of user interfaces, database schemas, and data queries from natural language requirements. Beyond interface design, it includes a backend orchestration engine that automates complex business processes by chaining together API calls, database operations, and conditional logic. Developers can also manage the entire application lifecycle, including version control, multi-environment deployments, and granular role-based access security. The system supports a broad range of operational needs, including built-in relational database management, external service integrations, and observability tools for monitoring performance. It also offers mechanisms for embedding interactive tools into third-party websites and managing user authentication through identity provider synchronization. The platform is designed for containerized deployment and provides comprehensive documentation for installation, infrastructure configuration, and version upgrades. - [medusajs/medusa](https://awesome-repositories.com/repository/medusajs-medusa.md) (34,404 ⭐) — Medusa is a headless commerce engine designed as a modular, API-first platform for building custom digital storefronts and business applications. Its architecture is built on a decoupled system where core business logic is encapsulated into independent, swappable modules that communicate through defined interfaces, allowing developers to incrementally adopt or replace components to fit specific operational needs. The platform distinguishes itself through a highly extensible design that supports complex commerce requirements, including multi-vendor marketplace operations, B2B purchasing workflows, and multi-location inventory management. It provides a service-oriented API layer and a flexible administrative interface that allows for the injection of custom views and tools, ensuring that the management experience can be tailored to unique business processes. Beyond its core commerce capabilities, the platform includes a comprehensive suite of features for managing the entire order lifecycle, product catalogs, and dynamic pricing rules. It integrates with a wide range of third-party services for payments, logistics, and content management, while offering built-in support for transactional emails, API caching, and multi-tenant resource isolation. Developers can accelerate project initialization using pre-built starters and managed cloud deployment pipelines. The platform also provides specialized command-line tooling and AI-assisted development agents to streamline infrastructure management, debugging, and deployment workflows.