30 open-source projects similar to kubernetes-client/python, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Python alternative.
The Operator SDK is a framework for building, packaging, and managing custom controllers that extend the Kubernetes API. It serves as a toolset for defining new API types and implementing reconcile loops to automate the lifecycles of complex applications. The project provides specialized support for creating operators based on Helm charts or Ansible playbooks, allowing users to maintain a desired cluster state using existing automation tools. It includes a dedicated system for packaging controllers into standardized container image bundles for distribution via the Operator Lifecycle Manager.
Rancher is a Kubernetes management platform and multi-cluster orchestrator. It provides a centralized dashboard and container management interface for deploying, scaling, and administering multiple Kubernetes clusters across on-premises and cloud environments. The system includes a cluster provisioner that automates the creation and bootstrapping of clusters using standardized configurations. It secures management traffic through SSL certificate management and termination, supporting both custom certificates and automated validation via Let's Encrypt. The platform covers enterprise API audit
github-script is a GitHub Actions JavaScript runner that executes asynchronous scripts to interact with the GitHub API. It serves as a JavaScript workflow scripting runtime and API client, providing a pre-configured authenticated client for automating tasks within GitHub Actions pipelines. The project enables the implementation of custom workflow logic that exceeds standard YAML syntax, including the ability to perform REST API calls and execute GraphQL queries for complex data extraction. It supports the management of multiple authenticated clients to facilitate cross-organization repository
docker-py is a Python library and SDK that serves as a programmatic client for the Docker Engine API. It provides a programmatic interface for controlling containers, images, and clusters, allowing for the automation of containerized applications and engine resources. The library enables remote Docker administration through various transport methods, including Unix domain sockets, TCP ports, and encrypted SSH tunnels. It handles real-time data links by using WebSockets to stream input and output from active containers. The project covers container lifecycle control, image management for buil
kops is a Kubernetes cluster provisioner and lifecycle manager designed to automate the creation, maintenance, and destruction of production-grade clusters on cloud infrastructure. It functions as a declarative infrastructure manager, synchronizing the live state of a cluster with versioned manifests stored in remote object storage to ensure idempotent operations. The project distinguishes itself by offering comprehensive automation for the entire cluster lifecycle, including high-availability control plane deployment, incremental rolling updates, and automated version upgrades. It also serve
Gatekeeper is a Kubernetes admission control and policy enforcement engine used to ensure cluster resources comply with organizational security and configuration standards. It intercepts API requests to validate or reject non-compliant resources before they are persisted in the cluster. The project uses a parameterized policy library and custom resource definitions to create reusable templates and enforcement rules. It distinguishes itself through a hub-and-spoke management model, allowing a controller in a management cluster to enforce policies across separate target clusters. Beyond admiss
LXD is a unified platform for managing both system containers and virtual machines through a single REST API and command-line interface. It provides a programmatic HTTP interface for controlling the full lifecycle of instances, enabling automation and integration with external tools. The system runs unprivileged containers with per-instance UID/GID mappings, seccomp filters, and AppArmor profiles for kernel-level isolation, while supporting multiple storage backends including directory, Btrfs, LVM, ZFS, Ceph, LINSTOR, and TrueNAS through a unified driver interface. The platform distinguishes
Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program
This project is a comprehensive library of reusable configuration patterns for the Apache web server. It provides a collection of server-side directives designed to manage security, performance, and request routing through decentralized configuration files. The repository serves as a reference for implementing server-level settings without requiring global restarts. It includes specialized patterns for enforcing secure connections, managing cross-origin resource sharing, and protecting sensitive system files from public exposure. Users can leverage these snippets to implement clickjacking pro
Lens is a multi-cluster management platform and desktop application for administering Kubernetes environments. It provides a graphical interface for deploying Helm charts, editing YAML manifests, and managing the lifecycle of pods and deployments. The project features an AI-powered cluster assistant that enables users to query cluster state, perform autonomous troubleshooting, and translate natural language requests into system commands. It also supports collaborative team access through shared spaces, utilizing encrypted cluster sharing and role-based access control to manage credentials and
Cluster API is a declarative framework and multi-cluster management system for automating the creation, scaling, and destruction of Kubernetes clusters across diverse infrastructures. It acts as a cluster provisioning orchestrator and infrastructure provisioner, using a centralized management cluster to operate the full lifecycle of multiple remote workload clusters. The project employs a provider-based plugin architecture that decouples core orchestration logic from specific cloud or bare-metal implementations. This allows the system to standardize the deployment of control planes, the boots
Agones is a Kubernetes game server orchestrator designed for hosting, scaling, and managing dedicated multiplayer game servers. It extends the Kubernetes control plane using custom resource definitions to define game server and fleet objects, utilizing a dedicated fleet manager to maintain pools of warm server instances. The system provides a game server SDK and language-specific client libraries that allow server processes to signal readiness, health, and shutdown states directly to the controller. It distinguishes itself through specialized scaling logic, including the use of WebAssembly mo
Freelens is a graphical web dashboard for Kubernetes cluster administration and monitoring. It provides a centralized interface for managing container orchestration environments, featuring a log aggregator for simultaneous multi-pod log viewing, a resource visualizer for mapping system dependencies via force-directed graphs, and a security auditor for reviewing vulnerability reports and certificate expiration dates. The project integrates a generative artificial intelligence operator to automate complex administrative tasks and translate requests into cluster configurations. It further distin
KubeSphere is a distributed operating system for cloud-native application management that provides a centralized control plane for Kubernetes clusters. It functions as a comprehensive DevOps portal, enabling teams to orchestrate containerized workloads, manage CI/CD pipelines, and enforce security policies across hybrid cloud, datacenter, and edge environments. The platform distinguishes itself through its multi-cluster federation capabilities and robust multi-tenancy model, which allow for logical resource isolation and granular access control across shared infrastructure. It integrates a mo
cpr is a C++ networking library that provides a high-level HTTP request client. It functions as a wrapper around libcurl to simplify the process of sending and receiving data from web servers, specifically managing GET and POST calls and multipart form uploads. The library provides both synchronous and asynchronous execution models, allowing network requests to run on background threads to prevent application freezing. It integrates with the C++ Standard Library to map low-level pointers to standard strings and containers, utilizing RAII for automatic resource management. The project covers
This project is a GitOps infrastructure framework designed for managing bare metal servers, container clusters, and networking. It serves as a declarative system for orchestrating the deployment and lifecycle of self-hosted services, using Git as the source of truth to synchronize the desired state of the environment. The framework differentiates itself through a comprehensive automation suite that covers the entire hardware-to-service pipeline. It includes a PXE-based bare metal provisioner for network booting and operating system installation, alongside a lightweight container orchestration
Octelium is a zero-trust network access platform and identity-aware proxy designed to secure private HTTP, SSH, and SQL resources. It functions as a secure gateway that validates human and workload identities using OIDC, SAML, and FIDO2 passkeys before granting access to internal applications and SaaS APIs. The system is distinguished by its secretless access broker, which injects credentials—such as API keys, passwords, and AWS Sigv4 signatures—at the gateway level so users can access databases and cloud resources without managing secrets. It further specializes in AI gateway administration,
Headlamp is a Kubernetes web interface that runs as either a desktop application or a browser-based dashboard, providing a unified view for managing resources across multiple clusters. It supports authentication through OpenID Connect providers and kubeconfig files, and renders the UI according to the user's Kubernetes RBAC permissions, hiding or disabling actions that are not permitted. The project distinguishes itself through a plugin system that allows extending the dashboard with custom views, components, and business logic without modifying the core code. Plugins can be installed from a
jx is a GitOps delivery platform and Kubernetes CI/CD orchestrator designed to automate the building and deployment of applications. It functions as a cloud native pipeline manager that executes container-based build and deployment sequences using a catalog of reusable tasks. The project distinguishes itself through the automated orchestration of preview environments, which are created and destroyed based on pull request activity to enable validation before merging. It employs a GitOps-based state synchronization model to maintain the desired state of clusters by polling git repositories and
Kubescape is a Kubernetes security posture management platform designed to scan clusters, manifests, and images for misconfigurations, vulnerabilities, and compliance risks. It functions as a comprehensive security suite incorporating a compliance scanner, a container image vulnerability scanner, an admission controller for policy enforcement, and a runtime security monitor. The platform distinguishes itself through runtime-aware vulnerability filtering, which maps libraries loaded in memory to determine if vulnerabilities are actually reachable. It also integrates with AI assistants via a Mo
Fog is a Ruby cloud infrastructure SDK that provides a standardized interface for managing compute, storage, and network resources across multiple cloud providers. It utilizes a multi-cloud abstraction layer to translate generic resource requests into provider-specific API calls, unifying infrastructure control through a consistent set of Ruby objects. The project includes a cloud API mocking framework that simulates provider responses and resource behavior in memory. This allows for the testing of infrastructure integration logic without making actual network requests or incurring provider c
hello.js is a JavaScript REST API client and social media API wrapper designed for authenticating users and aggregating data across multiple social network providers. It provides a unified interface to standardize requests and response formats, allowing for consistent data retrieval from diverse external services. The project implements a secure OAuth2 handshake process that utilizes a proxy-based credential masking system to hide private API keys from the client side. It includes a token manager that handles the full authentication lifecycle, including scope-based permission mapping and an a
Flurl is a .NET fluent URL builder and HTTP client wrapper designed for constructing complex web addresses and sending requests with a chainable interface. It functions as a URL manipulation library and an HTTP mocking framework to facilitate network interaction and testing. The project distinguishes itself through a fluent interface that allows for the incremental construction of paths, query parameters, and fragments. It provides a dedicated mocking system to intercept outgoing network traffic and return predefined responses, enabling isolated unit testing without a live server. Its broade
kubefwd is a Kubernetes network tunneling and service forwarding utility that maps remote cluster services to local loopback addresses. It synchronizes the local hosts file to resolve Kubernetes service names to local IP addresses, enabling local development environments to use production hostnames. The project implements a Model Context Protocol server, allowing external AI assistants to discover, browse, and control network forwarding through a standardized interface. It also provides a terminal user interface for managing service forwards, monitoring real-time network traffic, and streamin
Devspace is a Kubernetes development workflow tool and declarative deployment orchestrator. It automates the build, deploy, and debug cycle for applications running inside Kubernetes clusters, functioning as a container image pipeline automator and a remote Kubernetes debugger. The project features a Kubernetes hot reloading engine that provides real-time code synchronization and bi-directional file synchronization between local filesystems and running containers. This allows for updates without requiring image rebuilds or restarts. It further enables environment parity by running build, test
This project is a command-line plugin for Kubernetes that provides direct root shell access to the underlying host operating system of a cluster node. It is designed to facilitate administrative tasks, system maintenance, and diagnostic operations on nodes, including those running immutable or container-optimized operating systems that lack native shell environments. The tool functions by dynamically scheduling ephemeral, privileged pods that share the host's process, network, and filesystem namespaces. By leveraging node affinity constraints, it ensures that these diagnostic sessions are exe
Stern is a Kubernetes command-line debugging tool and log aggregator designed for streaming and filtering logs from multiple pods and containers. It functions as a log tailing utility that consolidates real-time data from distributed resources into a single, color-coded output. The tool uses regular expressions to select pods and filter log content, allowing for the isolation of specific system events. It automatically tracks the lifecycle of resources, using a watch mechanism to attach to new pods that match filter criteria and removing deleted ones from the active view. Capabilities includ
Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific
Crossplane is a Kubernetes-based control plane framework that functions as a cloud resource orchestrator and infrastructure-as-code platform. It enables the management of heterogeneous infrastructure by extending the Kubernetes API to provision and maintain external cloud services through declarative configuration. By utilizing custom resource controllers, it continuously reconciles the state of external infrastructure with defined desired states, ensuring consistent deployment and lifecycle management across multiple cloud providers. The platform distinguishes itself through its composition-
This project is an AI model API gateway and proxy server designed to provide a unified interface for interacting with diverse artificial intelligence service providers. It functions as a centralized middleware platform that routes, load balances, and translates API requests across multiple models, enabling developers to access text, image, audio, and video generation capabilities through a single, standardized integration. The gateway distinguishes itself through comprehensive administrative and financial controls, including event-driven usage accounting, real-time token consumption tracking,