205 projects
Rendered at: 2025-07-09T03:23:26.840Z
Cloud Native Computing Foundation (CNCF)
The Cloud Native Computing Foundation (CNCF) is an open-source organization under the Linux Foundation that promotes the development and adoption of cloud-native technologies. It serves as a hub for projects that enable scalable, resilient, and portable applications in modern cloud environments.
614,482 contributors
$27B
Kubernetes
Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of containerized applications.
121,169
21,852
$5.5B
Helm
Helm helps you manage Kubernetes applications — Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.
46,705
7,434
$19M
OpenTelemetry
OpenTelemetry makes robust, portable telemetry a built-in feature of cloud-native software. OpenTelemetry provides a single set of APIs, libraries, agents, and collector services to capture distributed traces and metrics from your application. You can analyze them using Prometheus, Jaeger, and other observability tools.
26,637
4,723
$223M
Argo
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
23,045
5,214
$92M
gRPC
gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed computing to connect devices, mobile applications and browsers to backend services.
22,698
4,388
$144M
Prometheus
Prometheus is an open-source systems monitoring and alerting toolkit originally built at SoundCloud. Since its inception in 2012, many companies and organizations have adopted Prometheus, and the project has a very active developer and user community. It is now a standalone open source project and maintained independently of any company.
20,620
4,974
$35M
Keycloak
Keycloak is an open source Identity and access management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Keycloak is based on standard protocols with an aim toward modern use cases and the flexibility to integrate with other solutions and prevent vendor lock in. Supported protocols include: OAuth2, OpenID Connect, User Managed Access 2.0 (UMA) and SAML 2.0.
16,249
2,345
$1.7B
Istio
Istio extends Kubernetes to establish a programmable, application-aware network using the powerful Envoy service proxy. Working with both Kubernetes and traditional workloads, Istio brings standard, universal traffic management, telemetry, and security to complex deployments.
13,803
2,779
$378M
Cloud Native Computing Foundation (CNCF)
The Cloud Native Computing Foundation (CNCF) hosts critical components of the global technology infrastructure. CNCF brings together the world’s top developers, end users, and vendors and runs the largest open source developer conferences.
13,516
3,313
$1.9B
Fluentd
Fluentd is an open source data collector for unified logging layer. Fluentd allows you to unify data collection and consumption for a better use and understanding of data.
13,425
2,745
$158M
Podman Container Management Tool
Podman: A tool for managing OCI containers and pods.
11,348
2,943
$154M
Envoy
ENVOY IS AN OPEN SOURCE EDGE AND SERVICE PROXY, DESIGNED FOR CLOUD-NATIVE APPLICATIONS.
10,358
1,982
$2.9B
Harbor
Harbor is an open source container image registry that secures images with role-based access control, scans images for vulnerabilities, and signs images as trusted.
9,746
2,014
$40M
Kubeflow
Kubeflow project is an extendable Machine Learning (ML) platform made of multiple distinct components to address specific stages of the ML lifecycle, including: Mode Development, Model Training, Pipelines, and Multi-framework supports.
9,198
1,643
$488M
Etcd
A distributed, reliable key-value store for the most critical data of a distributed system.
8,381
1,748
$69M
Flux
Flux is a tool that automatically ensures that the state of your Kubernetes cluster matches the configuration you’ve supplied in Git. It uses an operator in the cluster to trigger deployments inside Kubernetes, which means that you don’t need a separate continuous delivery tool.
8,333
2,084
$18M
Backstage
Backstage is an open platform for building developer portals. Powered by a centralized software catalog, Backstage restores order to your microservices and infrastructure and enables your product teams to ship high-quality code quickly — without compromising autonomy.
7,732
1,966
$114M
NATS
NATS.io is a simple, secure and high performance open source messaging system for cloud native applications, IoT messaging, and microservices architectures.
7,606
1,608
$79M
cert-manager
cert-manager is a Kubernetes add-on to automate the management and issuance of TLS certificates from various issuing sources.
7,574
2,687
$29M
Cilium
Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.
7,134
1,979
$998M
Distribution
A container registry project that is now a sandbox project from Docker.
6,565
1,312
$104K
Dapr
Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge.
6,348
974
$49M
k3s
K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.
6,129
1,876
$8.9M
Jaeger
Monitor and troubleshoot transactions in complex distributed systems. As on-the-ground microservice practitioners are quickly realizing, the majority of operational problems that arise when moving to a distributed architecture are ultimately grounded in two areas: networking and observability.
5,850
1,367
$46M
Containerd
An industry-standard container runtime with an emphasis on simplicity, robustness and portability
5,792
1,573
$101M
Open Policy Agent
Stop using a different policy language, policy model, and policy API for every product and service you use. Use OPA for a unified toolset and framework for policy across the cloud native stack. Whether for one service or for all your services, use OPA to decouple policy from the service's code so you can release, analyze, and review policies (which security and compliance teams love) without sacrificing availability or performance.
4,799
1,139
$329M
Rook
Rook turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.
4,331
1,246
$11M
Linkerd
Linkerd is a service mesh for Kubernetes and other frameworks. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code.
4,206
1,148
$114M
KEDA
KEDA is a Kubernetes-based event-driven autoscaler. KEDA determines how any container in Kubernetes should be scaled based on the number of events that need to be processed. KEDA is a single-purpose and lightweight component that can be added to any Kubernetes cluster. It works alongside standard Kubernetes components like the Horizontal Pod Autoscaler and can extend functionality without overwriting or duplication. With KEDA you can specify the that apps you want to scale in an event-driven way while other apps continue to function. This makes KEDA a flexible and safe option to run alongside other Kubernetes applications and frameworks.
4,116
1,054
$199M
Thanos
Open source, highly available Prometheus setup with long term storage capabilities.
3,955
1,081
$11M
Meshery
Lifecycle, performance, and configuration management across any service mesh.
3,841
515
$156M
Knative
Knative is an Open-Source Enterprise-level solution to build Serverless and Event Driven Applications.
3,810
912
$745M
Atlantis
Atlantis is PR automation application that allows users to create PRs against a repository to run terraform via command comments.
3,692
965
$4.1M
Connect
Connect is a simple, cross-language framework for Protobuf RPC.
3,566
328
$5.5M
Strimzi
Strimzi provides a way to run an Apache Kafka cluster on Kubernetes in various deployment configurations.
3,540
805
$299M
Longhorn
Cloud native distributed block storage for Kubernetes
3,491
930
$371M
Score
We believe that developers shouldn’t have to fight a symphony orchestra of tech and tooling when preparing their code for its journey toward production. Instead, we advocate for a workload-centric approach to software development. This means that the platform or tools of the target environment are responsible for satisfying the workload runtime requirements rather than the other way around.
3,371
54
$2.2M
External Secrets Operator
"External Secrets Operator (ESO) is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret. ESO provides a user-friendly abstraction for the external API that stores the secrets for you. It allows you to manage access to the secret store for different tenants within your cluster and keeps the Kubernetes secrets in sync.
3,336
946
$7.2M
Kyverno
Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies.
3,326
901
$75M
KubeVirt
KubeVirt technology addresses the needs of development teams that have adopted or want to adopt Kubernetes but possess existing Virtual Machine-based workloads that cannot be easily containerized. More specifically, the technology provides a unified development platform where developers can build, modify, and deploy applications residing in both Application Containers as well as Virtual Machines in a common, shared environment.
3,262
610
$3B
TiKV
A distributed transactional key-value database. Based on the design of Google Spanner and HBase, but simpler to manage and without dependencies on any distributed filesystem
3,030
638
$299M
CoreDNS
CoreDNS is a DNS server. It is written in Go. It can be used in a multitude of environments because of its flexibility.
3,029
901
$1.8M
Falco
Falco, the open source cloud-native runtime security project, is the defacto Kubernetes threat detection engine. Falco detects unexpected application behavior and alerts on threats at runtime.
2,993
711
$50M
Fluid Project
Fluid is an open, collaborative project to improve the user experience and inclusiveness of open source software. The Fluid community consists of an international team of partners, individuals, and institutions focused on designing inclusive, flexible, customizable, user-centered interfaces.
2,720
73
$83M
Notary
Notary is a project that allows anyone to have trust over arbitrary collections of data
2,661
220
$28M
OpenEBS
OpenEBS is the leading storage solution for Kubernetes Kubernetes native; runs in userspace Open Source; no vendor lock-in The only multi cloud storage solution
2,563
594
$109M
Cortex
A horizontally scalable, highly available, multi-tenant, long term Prometheus.
2,429
425
$98M
Cloud Custodian
Cloud Custodian enables users to be well managed in the cloud. The simple YAML DSL allows you to easily define rules to enable a well-managed cloud infrastructure, that's both secure and cost optimized.
2,361
386
$36M
Volcano
Volcano is a batch system built on Kubernetes.
2,313
274
$42M
KubeEdge
KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge.It is built upon kubernetes and provides fundamental infrastructure support for network, app. deployment and metadata synchronization between cloud and edge.
2,241
369
$372M
Telepresence
Telepresence is an open source tool that lets you run a single service locally, while connecting that service to a remote Kubernetes cluster.
2,211
609
$4.3M
Vitess
Vitess is a database solution for deploying, scaling and managing large clusters of open-source database instances. It currently supports MySQL and MariaDB. It’s architected to run as effectively in a public or private cloud architecture as it does on dedicated hardware. It combines and extends many important SQL features with the scalability of a NoSQL database
2,161
465
$81M
LitmusChaos
Litmus is one of the most promising open source chaos engineering frameworks that takes into account proper chaos engineering principles while providing autonomy and extensibility to the users.
2,079
379
$52M
CloudNativePG
A comprehensive open source platform designed to seamlessly manage PostgreSQL databases within Kubernetes environments.
2,040
590
$76M
Dex
Dex is an identity service that uses OpenID Connect to drive authentication for other apps.
2,031
852
$196K
Kubescape
Kubescape is an open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA hardening guidance and the MITRE ATT&CK® . Kubescape scans K8s clusters, YAML files, and HELM charts, and detect misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline and provides a risk score instantly and risk trends over time. Kubescape integrates natively with other DevOps tools, including Jenkins, CircleCI and Github workflows. Kubescape policies are based on Open Policy Agent and the REGO language. A key idea behind Kubescape it to put security capabilities at the hands of the Developers and the DevOps teams. Our vision is to create a wide open-source Kubernetes security project with capabilities that will span across configuration control, vulnerabilities, RBAC management and runtime security - all made for developers and DevOps to add to their tools in a native way.
1,972
332
$88M
Crossplane
Crossplane is an open source Kubernetes add-on that enables platform teams to assemble infrastructure from multiple vendors, and expose higher level self-service APIs for application teams to consume, without having to write any code.
1,937
700
$107M
Curve
Curve is a distributed storage system designed and developed independently by NetEase, featured with high performance, easy operation, cloud native. Curve is composed with CurveBS(Curve Block Storage) and CurveFS(Curve FileSystem). CurveBS supports snapshot, clone, and recover, also supports virtual machines with qemu and physical machine with nbd. CurveFS supports POSIX based on Fuse. Curve is widely used in Netease, and is also test by other users. Curve provides storage service for core business of YouDao, YanXuan, Music, Lofter, YouXi in Netease. In the past 2 years, a single Curve cluster has stored tens of thousands of volumes, with a storage capacity of PB.
1,931
111
$65M
emissary-ingress
An open source ingress controller and API Gateway for Kubernetes.
1,920
653
$37M
Capsule
Capsule implements a multi-tenant and policy-based environment in your Kubernetes cluster. It is designed as a micro-services-based ecosystem with the minimalist approach, leveraging only on upstream Kubernetes.
1,864
134
$3M