18 个仓库
Practices for managing application settings, data schemas, and permissions through version-controlled configuration files.
Distinguishing note: Focuses on application-level configuration management rather than raw cloud infrastructure provisioning.
Explore 18 awesome GitHub repositories matching devops & infrastructure · Configuration as Code. Refine with filters or upvote what's useful.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
A system for managing data structures, security policies, and application configurations through version-controlled definitions that synchronize with the deployment environment.
Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific
Translates complex cloud provider settings into declarative code to manage infrastructure as software.
Unleash is an open-source feature management platform designed to decouple feature releases from code deployments. It provides a centralized system for orchestrating software releases, enabling teams to control application behavior in real-time through segmented user targeting and automated lifecycle management. The platform distinguishes itself by utilizing a client-side evaluation engine that executes flag logic locally within the application process, ensuring sub-millisecond decision latency without requiring network round-trips. It supports infrastructure-as-code patterns by allowing feat
Manages feature flag settings through version-controlled code to ensure consistent environment configurations.
This repository serves as a library of reference patterns and scripts for infrastructure automation and configuration management. It provides a collection of standardized examples designed to demonstrate how to define and maintain server environments as code, ensuring consistency across development, testing, and production stages. The project focuses on implementing infrastructure as code best practices by showcasing how to structure automation logic for complex deployments. These examples illustrate the use of declarative modeling to define desired system states, alongside modular task abstr
Defines and maintains server settings as code to ensure consistent environments across development, testing, and production.
Seerr is a self-hosted media request system and automation orchestrator. It provides a web interface for users to search for and request movies and television shows for a home media server, acting as a coordinator between users, media servers, and automation tools to trigger the download and organization of approved content. The system distinguishes itself through a comprehensive request management layer that includes granular, role-based permissions and custom override rules to filter and modify incoming requests. It also features a dedicated notification engine that dispatches real-time sta
Manages application settings and integrations using configuration-as-code for consistent deployments.
Pkl is a configuration-as-code language used to define, validate, and generate structured configuration files. It functions as a type-safe configuration generator that enforces data integrity through a strongly-typed schema, ensuring configuration values meet defined constraints and types during evaluation. The project distinguishes itself by acting as both a configuration file generator and a binding generator. It transforms high-level programmable definitions into static formats such as JSON, YAML, or XML, and produces language-specific source code to synchronize settings and provide type s
Provides a programmable language for managing application settings and data schemas through version-controlled files.
SkyPilot is a multi-cloud AI orchestrator and distributed task scheduler designed to launch and manage AI workloads across various cloud providers, Kubernetes, and Slurm clusters. It functions as an infrastructure-as-code framework that uses declarative files to define resource requirements and setup commands for consistent execution across different environments. The project differentiates itself through automated cost optimization, selecting the most affordable GPU or TPU hardware and managing spot instances to reduce expenses. It also provides a remote development environment that bridges
Defines resource requirements and setup commands in portable files to ensure consistent execution across environments.
Atlas is a SQL database schema management tool and database infrastructure as code framework. It provides a declarative database migration engine that computes the difference between a desired schema state and the current database state to automatically generate the necessary SQL for transitions. The project distinguishes itself through a comprehensive suite of analysis and visualization tools, including a database schema linter that detects destructive changes and data loss risks. It also features a SQL schema visualization tool capable of generating entity-relationship diagrams from extract
Manages database roles, permissions, and row-level security policies as version-controlled code.
This project is a containerized build automation system and self-hosted DevOps platform provided as a Docker image. It serves as a distributed build orchestrator and a Dockerized continuous integration and delivery server, ensuring consistent execution environments across different infrastructure. The system distinguishes itself through a distributed execution model that separates a primary controller from multiple remote agents connected via SSH, TCP, or web sockets. It utilizes a modular extensibility framework that allows the core system functionality to be augmented through the installati
Defines system settings using version-controlled YAML files instead of a manual graphical interface.
OpenCost is an open-source tool for monitoring and allocating Kubernetes and cloud infrastructure costs. It provides real-time visibility into spending by distributing asset costs to workloads based on resource requests and usage, breaking down spend by namespace, deployment, pod, and label. The system functions as both a Kubernetes cost allocation engine and a multi-cloud cost analyzer, ingesting billing data from AWS, Azure, and GCP to present unified cost metrics alongside cluster costs. The tool distinguishes itself through its allocation-based cost model, which compares requested versus
Configures cloud provider billing API credentials via Kubernetes secrets for cost data ingestion.
Kubernetes-based, scale-to-zero, request-driven compute
Creates immutable revision snapshots from configuration changes, enabling rollback and revision tracking.
Fleet is an open-source device management platform that provides centralized control over computing devices running macOS, Linux, Windows, Chromebooks, iOS, and Android. It enables organizations to enroll devices, collect real-time telemetry, enforce security compliance policies, and manage software remotely from a single system. The platform can be deployed as a single binary, run locally for testing, or scaled horizontally across cloud infrastructure on AWS, Kubernetes, GCP, or Render, with support for high availability through database replication and load balancing. The platform distingui
Applies configuration changes declaratively so every state is repeatable and auditable.
OpenStack is an open-source cloud computing platform for building and managing public and private cloud infrastructure at scale. It provides a framework for deploying, configuring, and operating cloud services, orchestrating compute, storage, and networking resources across a datacenter through a unified management layer. The platform is built on a decoupled service architecture where individual cloud services are developed and versioned independently within their own repositories. This meta-repository tracks interoperable versions of all OpenStack components as verified submodules, with each
Configures installation and deployment options for all cloud services through declarative settings.
Terraform Cloud Development Kit 是一个基础设施即代码(IaC)框架,允许使用通用编程语言定义云资源。它作为一个配置合成器,将高层编程逻辑和提供商模式转换为由 Terraform 引擎执行以配置基础设施的 JSON 配置文件。 该框架提供了一个多语言基础设施库,能够从提供商模式自动生成特定语言的类。它支持创建可重用的构造(constructs),允许将复杂的资源配置封装为可在不同支持语言间打包和发布的共享组件。 该工具集包括用于管理多环境部署的隔离基础设施栈和配置状态后端的各种功能。它还提供项目脚手架、HCL 转换以及通过配置语法验证、资源属性断言和快照测试进行质量保证的实用程序。
Implements configuration-as-code by converting programming language definitions into JSON files for resource provisioning.
This project is a Telegram API client and media archiving system designed to programmatically retrieve chat histories and export media. It functions as a download manager and message forwarder, allowing users to back up photos, videos, and documents from Telegram chats into structured local archives. The system distinguishes itself through advanced content filtering and forwarding capabilities. It can monitor chats for new messages, apply custom regular expressions to filter media by size or date, and automatically forward content between chats. This includes the ability to export protected c
Offers multiple management interfaces including a web dashboard, bot commands, and a command-line interface.
Strider 是一个 CI/CD 服务器,旨在通过持续集成和交付流水线自动化软件的构建、测试和部署。它作为一个容器化构建系统,在隔离的容器内执行任务,以在不同宿主机器上保持一致的环境。 该平台实现了配置即代码模型,通过版本控制文件管理项目设置和环境变量,以确保可重现的工作流。它还通过 LDAP 与外部目录服务器集成,以管理用户身份和管理访问权限。 该系统包含一个用于管理内部状态并通过 Web 请求触发流水线的 RESTful 自动化 API。它支持并发作业执行以减少处理时间,并提供用于添加自定义钩子和用户界面元素的基于插件的扩展模型。
Defines pipeline settings and environment variables in version-controlled files to ensure reproducible deployment workflows.
该项目是安全设备的核心管理框架,为防火墙管理、网络入侵防御和高可用性网络提供主要基础设施。它作为控制网络安全策略、过滤流量和管理安全设备仪表板的集中式系统。 该系统以其高可用性功能而著称,包括在冗余节点之间同步配置和连接状态表,以实现自动硬件故障转移。它还具有用于扩展后端逻辑和用户界面的模块化插件架构,以及用于防火墙规则和系统设置程序化管理的基于 JSON 的 API。 该平台涵盖了广泛的功能领域,包括 IPv4 和 IPv6 的网络配置、安全 VPN 隧道、强制门户 (captive portal) 管理以及全面的监控和可观测性工具。它进一步集成了具有多因素身份验证的身份管理,并提供了用于配置备份、版本跟踪和跨 x86-64 硬件部署的工具。
Compares historical configuration versions using a diff format to identify changes and revert to previous states.
Uptrace is an OpenTelemetry-based observability platform designed to collect, store, and analyze distributed traces, metrics, and logs. It functions as a centralized logging backend, a distributed tracing system, and a metrics engine to monitor application performance and system health. The platform is distinguished by AI-powered operational capabilities, allowing users to query telemetry data and manage monitoring dashboards using natural language. It specifically includes specialized monitoring for generative AI pipelines, tracking token usage and response quality for LLM interactions and r
Defines organizations, projects, and monitors using Terraform or YAML for version-controlled observability configuration.