LFX Platform

Know more about LFX Platform

Search projects, repositories, or collections

⇧+K

Cloud Native Computing Foundation (CNCF)

The Cloud Native Computing Foundation (CNCF) is an open-source organization under the Linux Foundation that promotes the development and adoption of cloud-native technologies. It serves as a hub for projects that enable scalable, resilient, and portable applications in modern cloud environments.

234 projects

622,479 contributors

$42B

Most contributors

Kubernetes

Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of containerized applications.

116,433

21,977

$5.8B

Helm

Helm helps you manage Kubernetes applications — Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.

27,233

5,546

$22M

OpenTelemetry

OpenTelemetry makes robust, portable telemetry a built-in feature of cloud-native software. OpenTelemetry provides a single set of APIs, libraries, agents, and collector services to capture distributed traces and metrics from your application. You can analyze them using Prometheus, Jaeger, and other observability tools.

25,697

5,383

$303M

Argo

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.

23,320

5,508

$118M

gRPC

gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed computing to connect devices, mobile applications and browsers to backend services.

21,908

5,709

$151M

Prometheus

Prometheus is an open-source systems monitoring and alerting toolkit originally built at SoundCloud. Since its inception in 2012, many companies and organizations have adopted Prometheus, and the project has a very active developer and user community. It is now a standalone open source project and maintained independently of any company.

20,858

5,306

$38M

Keycloak

Keycloak is an open source Identity and access management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Keycloak is based on standard protocols with an aim toward modern use cases and the flexibility to integrate with other solutions and prevent vendor lock in. Supported protocols include: OAuth2, OpenID Connect, User Managed Access 2.0 (UMA) and SAML 2.0.

17,061

2,704

$3.5B

Fluentd

Fluentd is an open source data collector for unified logging layer. Fluentd allows you to unify data collection and consumption for a better use and understanding of data.

13,582

2,989

$168M

Istio

Istio extends Kubernetes to establish a programmable, application-aware network using the powerful Envoy service proxy. Working with both Kubernetes and traditional workloads, Istio brings standard, universal traffic management, telemetry, and security to complex deployments.

13,519

2,945

$428M

Cloud Native Computing Foundation (CNCF)

The Cloud Native Computing Foundation (CNCF) hosts critical components of the global technology infrastructure. CNCF brings together the world’s top developers, end users, and vendors and runs the largest open source developer conferences.

12,635

3,507

$3.5B

Podman Container Management Tool

Podman: A tool for managing OCI containers and pods.

11,599

3,037

$149M

Kubeflow

Kubeflow is an open source machine learning platform built on Kubernetes that makes deploying and managing ML workflows on Kubernetes simple, portable and scalable. It provides end-to-end orchestration of machine learning pipelines, model training, serving, and experiment tracking.

10,614

2,296

$433M

Envoy

ENVOY IS AN OPEN SOURCE EDGE AND SERVICE PROXY, DESIGNED FOR CLOUD-NATIVE APPLICATIONS.

9,963

2,191

$3.8B

Harbor

Harbor is an open source container image registry that secures images with role-based access control, scans images for vulnerabilities, and signs images as trusted.

9,229

2,155

$41M

Backstage

Backstage is an open platform for building developer portals that helps organizations streamline software development by centralizing technical documentation, APIs, services, and tools into a unified interface. It provides a microservices architecture, plugin system, and tools for service catalogs, documentation, and infrastructure management.

8,002

2,235

$127M

cert-manager

cert-manager is a Kubernetes add-on to automate the management and issuance of TLS certificates from various issuing sources.

7,800

2,766

$32M

Cilium

Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.

7,713

2,187

$1.1B

Etcd

A distributed, reliable key-value store for the most critical data of a distributed system.

7,622

1,868

$69M

NATS

NATS.io is a simple, secure and high performance open source messaging system for cloud native applications, IoT messaging, and microservices architectures.

7,596

1,799

$84M

Flux

Flux is a tool that automatically ensures that the state of your Kubernetes cluster matches the configuration you’ve supplied in Git. It uses an operator in the cluster to trigger deployments inside Kubernetes, which means that you don’t need a separate continuous delivery tool.

7,069

2,182

$19M

k3s

K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.

6,443

1,989

$14M

Containerd

An industry-standard container runtime with an emphasis on simplicity, robustness and portability

5,925

1,697

$104M

Jaeger

Monitor and troubleshoot transactions in complex distributed systems. As on-the-ground microservice practitioners are quickly realizing, the majority of operational problems that arise when moving to a distributed architecture are ultimately grounded in two areas: networking and observability.

5,672

1,466

$42M

Thanos

Open source, highly available Prometheus setup with long term storage capabilities.

4,962

1,394

$22M

Dapr

Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge.

4,912

1,073

$57M

Crossplane

Crossplane is an open source Kubernetes add-on that enables platform teams to assemble infrastructure from multiple vendors, and expose higher level self-service APIs for application teams to consume, without having to write any code.

4,701

1,287

$726M

Open Policy Agent

Stop using a different policy language, policy model, and policy API for every product and service you use. Use OPA for a unified toolset and framework for policy across the cloud native stack. Whether for one service or for all your services, use OPA to decouple policy from the service's code so you can release, analyze, and review policies (which security and compliance teams love) without sacrificing availability or performance.

4,530

1,214

$257M

KEDA

KEDA is a Kubernetes-based event-driven autoscaler. KEDA determines how any container in Kubernetes should be scaled based on the number of events that need to be processed. KEDA is a single-purpose and lightweight component that can be added to any Kubernetes cluster. It works alongside standard Kubernetes components like the Horizontal Pod Autoscaler and can extend functionality without overwriting or duplication. With KEDA you can specify the that apps you want to scale in an event-driven way while other apps continue to function. This makes KEDA a flexible and safe option to run alongside other Kubernetes applications and frameworks.

4,413

1,173

$218M

Rook

Rook turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.

4,345

1,328

$12M

Meshery

Lifecycle, performance, and configuration management across any service mesh.

4,202

752

$279M

Distribution

A container registry project that is now a sandbox project from Docker.

3,985

1,348

$42M

Linkerd

Linkerd is a service mesh for Kubernetes and other frameworks. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code.

3,974

1,191

$114M

OAuth2 Proxy

OAuth2 Proxy is a reverse proxy and static file server that provides authentication using OAuth2 providers to secure HTTP endpoints. It acts as a middleware to protect web applications by requiring users to authenticate via an OAuth2 provider before accessing protected resources.

3,874

1,235

$4.5M

Knative

Knative is an Open-Source Enterprise-level solution to build Serverless and Event Driven Applications.

3,741

1,001

$755M

Strimzi

Strimzi provides a way to run an Apache Kafka cluster on Kubernetes in various deployment configurations.

3,639

864

$334M

External Secrets Operator

"External Secrets Operator (ESO) is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret. ESO provides a user-friendly abstraction for the external API that stores the secrets for you. It allows you to manage access to the secret store for different tenants within your cluster and keeps the Kubernetes secrets in sync.

3,617

1,142

$9.1M

Atlantis

Atlantis is PR automation application that allows users to create PRs against a repository to run terraform via command comments.

3,581

1,043

$4.3M

Longhorn

Cloud native distributed block storage for Kubernetes

3,533

1,013

$437M

Kyverno

Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies.

3,489

1,028

$95M

KubeVirt

KubeVirt technology addresses the needs of development teams that have adopted or want to adopt Kubernetes but possess existing Virtual Machine-based workloads that cannot be easily containerized. More specifically, the technology provides a unified development platform where developers can build, modify, and deploy applications residing in both Application Containers as well as Virtual Machines in a common, shared environment.

3,466

689

$3.3B

CoreDNS

CoreDNS is a DNS server. It is written in Go. It can be used in a multitude of environments because of its flexibility.

3,087

936

$4.3M

TiKV

A distributed transactional key-value database. Based on the design of Google Spanner and HBase, but simpler to manage and without dependencies on any distributed filesystem

2,923

721

$301M

Falco

Falco, the open source cloud-native runtime security project, is the defacto Kubernetes threat detection engine. Falco detects unexpected application behavior and alerts on threats at runtime.

2,902

779

$61M

Fluid Project

Fluid is an open, collaborative project to improve the user experience and inclusiveness of open source software. The Fluid community consists of an international team of partners, individuals, and institutions focused on designing inclusive, ﬂexible, customizable, user-centered interfaces.

2,809

76

$90M

CloudNativePG

A comprehensive open source platform designed to seamlessly manage PostgreSQL databases within Kubernetes environments.

2,663

874

$82M

OpenEBS

OpenEBS is the leading storage solution for Kubernetes Kubernetes native; runs in userspace Open Source; no vendor lock-in The only multi cloud storage solution

2,510

674

$113M

Cloud Custodian

Cloud Custodian enables users to be well managed in the cloud. The simple YAML DSL allows you to easily define rules to enable a well-managed cloud infrastructure, that's both secure and cost optimized.

2,434

435

$40M

KubeEdge

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge.It is built upon kubernetes and provides fundamental infrastructure support for network, app. deployment and metadata synchronization between cloud and edge.

2,275

400

$345M

Kserve

The mission of the Project is to develop a highly scalable and standards based model inference platform on Kubernetes for Trusted AI.

2,148

435

$229M

Dex

Dex is an identity service that uses OpenID Connect to drive authentication for other apps.

2,103

901

$2.5M

Telepresence

Telepresence is an open source tool that lets you run a single service locally, while connecting that service to a remote Kubernetes cluster.

2,033

640

$9M

Vitess

Vitess is a database solution for deploying, scaling and managing large clusters of open-source database instances. It currently supports MySQL and MariaDB. It’s architected to run as effectively in a public or private cloud architecture as it does on dedicated hardware. It combines and extends many important SQL features with the scalability of a NoSQL database

1,948

493

$88M

emissary-ingress

An open source ingress controller and API Gateway for Kubernetes.

1,928

661

$37M

MetalLB

MetalLB is a load-balancer implementation for bare metal Kubernetes clusters, using standard routing protocols.

1,835

572

$8.9M

LitmusChaos

Litmus is one of the most promising open source chaos engineering frameworks that takes into account proper chaos engineering principles while providing autonomy and extensibility to the users.

1,778

433

$57M

Flatcar

Flatcar Container Linux is a container-optimized Linux distribution focused on security, reliability and ease of maintenance. It provides an immutable Linux operating system designed to run containerized applications, with automated updates and minimal overhead.

1,743

446

$209M

SOPS

SOPS (Secrets OPerationS) is an editor in the form of a command-line tool and SDK designed to help manage encrypted files in a variety of structured (YAML, JSON, ENV, INI) and BINARY formats using a one of the supported Key Management Systems (KMS), PGP, or age.

1,709

758

$979K

Contour

Contour is a Kubernetes ingress controller using Envoy proxy.

1,695

480

$30M

Inclavare Containers

An innovation of container runtime with the novel approach of launching and attesting confidential container in hardware-enforced Trusted Execution Environment (TEE).

1,649

384

$130M

CRI-O

CRI-O is an implementation of the Kubernetes CRI (Container Runtime Interface) to enable using OCI (Open Container Initiative) compatible runtimes. It is a lightweight alternative to using Docker as the runtime for kubernetes. It allows Kubernetes to use any OCI-compliant runtime as the container runtime for running pods.

1,623

517

$145M

Looking for a project that’s not listed?