SaaSHub helps you find the best software and product alternatives Learn more β
Top 23 Go Container Projects
-
-
Moby
The Moby Project - a collaborative project for the container ecosystem to assemble container-based systems
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
dapr
Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge.
-
-
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
-
Pulumi
Pulumi - Infrastructure as Code in any programming language. Build infrastructure intuitively on any cloud using familiar languages π
-
-
Lean and Mean Docker containers
Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
-
-
-
-
-
-
-
-
-
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Said audience member here. "The Kubernetes project" includes a bit more than just https://github.com/kubernetes/kubernetes, but yes that's accurate.
Here's our GCP spend for the past month: https://imgur.com/a/VVJTSKx. Note that does not include a separate AWS cluster that we are migrating jobs too.
A large chunk of this comes from the nature of distributed tests. We need to reproduce the environment, spin up compute, etc. We do have a large problem with flaky tests on the project as well. Whether that's timeouts, memory/cpu consumption creep over time, loads of other things. We talk about how one day we'd like to get to the granulairty of being able to go to a SIG and say, "this flaky test of yours is costing the project $x in retries. Please dedicate some resources to fix it".
How we distribute the artifacts is a whole different conversation. The container world is unique in that voluntary mirrors are not as possible as with linux packages and other binaries.
If this space interests you please join us at either [SIG K8s Infra](https://github.com/kubernetes/community/tree/master/sig-k8s-...) or [SIG Testing](https://github.com/kubernetes/community/blob/master/sig-test...)!
Project mention: An open framework to assemble specialized container systems | news.ycombinator.com | 2024-05-06
Project mention: .NET Aspire is the best way to experiment with Dapr during local development | dev.to | 2024-05-04Dapr provides a set of building blocks that abstract concepts commonly used in distributed systems. This includes secured synchronous and asynchronous communication between services, caching, workflows, resiliency, secret management and much more. Not having to implement these features yourself eliminates boilerplate, reduce complexity and allows you to focus on developing your business features.
Did something happen to the Apache 2 rancher? https://github.com/rancher/rancher/blob/v2.7.5/LICENSE RKE2 is similarly Apache 2: https://github.com/rancher/rke2/blob/v1.26.7%2Brke2r1/LICENS...
cat << EOF wget \ https://github.com/goharbor/harbor/releases/download/v2.9.4/\ harbor-offline-installer-v2.9.4.tgz EOF
Project mention: Show HN: Pico: An open-source Ngrok alternative built for production traffic | news.ycombinator.com | 2024-05-14
4. Trivy: https://github.com/aquasecurity/trivy Trivy is a versatile tool that scans for vulnerabilities in your containers, and also checks for vulnerabilities in your application dependencies.
If you are following this blog series, you should already know the benefits of using Terraform to define and deploy your AWS resources and configuration. Other IaC solutions such as AWS CloudFormation, AWS CDK, and Pulumi work the same way but differs in the programming or configuration language.
Project mention: Cisco to Acquire Cloud Native Networking and Security Leader Isovalent | news.ycombinator.com | 2023-12-21They would have had to add a few externals to get to Graduated but it's definitely a minority:
https://github.com/cilium/cilium/blob/main/MAINTAINERS.md
SlimToolkit empowers developers to create better, smaller, and more secure containers without sacrificing their existing workflows. Explore the project on GitHub or visit the official website to learn more.
While looking into the issue with Podman, I came across colima. Apart from being able to run AMD64 images out of the box, there were additional benefits to it, one of which was, unlike podman, colima could use Rosetta 2 for x64 emulation (which is significantly more performant).
Project mention: Exploring 5 Docker Alternatives: Containerization Choices for 2024 | dev.to | 2024-03-18Containerd and nerdctl
Project mention: CVE-2023-1943: Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode Issue #15539 kubernetes/kops | /r/devopsish | 2023-06-22
Project mention: Ask HN: Interesting TUIs (text user interfaces), maybe forgotten ones? | news.ycombinator.com | 2024-05-06
Project mention: My VM is lighter (and safer) than your container | news.ycombinator.com | 2024-05-14
I can speak to this. Containers, and by extension k8s, break a well known security boundary that has existed for a very long time - whether you are using a real (hardware) server or a virtual machine on the cloud if you pop that instance/server generally speaking you only have access to that server. Yeh, you might find a db config with connection details if you landed on say a web app host but in general you still have to work to start popping the next N servers.
That's not the case when you are running in k8s and the last container breakout was just announced ~1 month ago: https://github.com/opencontainers/runc/security/advisories/G... .
At the end of the day it is simply not a security boundary. It can solve other problems but not security ones.
Project mention: I looked through attacks in my access logs. Here's what I found | news.ycombinator.com | 2024-01-28Besides pointing pentester tools like metasploit at yourself, there are some nice scanners out there.
https://github.com/quay/clair
https://github.com/anchore/grype/
Install Kompose - a conversion tool that allows you to convert your Docker Compose code to Kubernetes configuration files Run kompose convert in the same directory as your docker-compose.yml to generate the config files for your Kubernetes cluster
did anyone adopt in production https://crossplane.io ?
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
Go Containers related posts
-
A Brief History Of Serverless
-
A new philosophy: Pipeline As Code
-
Optimize Your Containerized App with SlimToolkit
-
An open framework to assemble specialized container systems
-
Show HN: gpudeploy.com β "Airbnb" for GPUs
-
How I ended up using Colima for Docker on Apple Silicon
-
Dagger: Programmable open source CI/CD engine that runs pipelines in containers
-
A note from our sponsor - SaaSHub
www.saashub.com | 17 May 2024
Index
What are some of the best open-source Container projects in Go? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | kubernetes | 107,212 |
| 2 | Moby | 67,824 |
| 3 | minikube | 28,434 |
| 4 | dapr | 23,351 |
| 5 | rancher | 22,588 |
| 6 | Harbor | 22,643 |
| 7 | podman | 21,889 |
| 8 | trivy | 21,525 |
| 9 | Pulumi | 20,063 |
| 10 | cilium | 18,672 |
| 11 | Lean and Mean Docker containers | 18,287 |
| 12 | colima | 17,071 |
| 13 | containerd | 16,408 |
| 14 | kops | 15,572 |
| 15 | ctop | 15,195 |
| 16 | gvisor | 15,134 |
| 17 | skaffold | 14,695 |
| 18 | kaniko | 13,989 |
| 19 | runc | 11,451 |
| 20 | dagger | 10,358 |
| 21 | clair | 10,056 |
| 22 | kompose | 9,201 |
| 23 | crossplane | 8,847 |
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com