LFX Platform

Know more about LFX Platform

LFX Insights

Cloud Native Computing Foundation (CNCF)

The Cloud Native Computing Foundation (CNCF) is an open-source organization under the Linux Foundation that promotes the development and adoption of cloud-native technologies. It serves as a hub for projects that enable scalable, resilient, and portable applications in modern cloud environments.

197 projects

580,738 contributors

$22B

Kubernetes

Kubernetes (K8s) is an open-source system for automating deployment, scaling, and management of containerized applications.

Contributors

95,836

Organizations

18,109

Software value

$1.2B

Helm

Helm helps you manage Kubernetes applications — Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.

Contributors

53,685

Organizations

7,514

Software value

$19M

OpenTelemetry

OpenTelemetry makes robust, portable telemetry a built-in feature of cloud-native software. OpenTelemetry provides a single set of APIs, libraries, agents, and collector services to capture distributed traces and metrics from your application. You can analyze them using Prometheus, Jaeger, and other observability tools.

Contributors

26,452

Organizations

4,590

Software value

$220M

Argo

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.

Contributors

22,832

Organizations

4,961

Software value

$91M

gRPC

gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed computing to connect devices, mobile applications and browsers to backend services.

Contributors

22,675

Organizations

4,351

Software value

$142M

Prometheus

Prometheus is an open-source systems monitoring and alerting toolkit originally built at SoundCloud. Since its inception in 2012, many companies and organizations have adopted Prometheus, and the project has a very active developer and user community. It is now a standalone open source project and maintained independently of any company.

Contributors

20,526

Organizations

4,929

Software value

$34M

Keycloak

Keycloak is an open source Identity and access management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Keycloak is based on standard protocols with an aim toward modern use cases and the flexibility to integrate with other solutions and prevent vendor lock in. Supported protocols include: OAuth2, OpenID Connect, User Managed Access 2.0 (UMA) and SAML 2.0.

Contributors

16,142

Organizations

2,295

Software value

$1.6B

Istio

Istio extends Kubernetes to establish a programmable, application-aware network using the powerful Envoy service proxy. Working with both Kubernetes and traditional workloads, Istio brings standard, universal traffic management, telemetry, and security to complex deployments.

Contributors

13,741

Organizations

2,748

Software value

$376M

Cloud Native Computing Foundation (CNCF)

The Cloud Native Computing Foundation (CNCF) hosts critical components of the global technology infrastructure. CNCF brings together the world’s top developers, end users, and vendors and runs the largest open source developer conferences.

Contributors

13,536

Organizations

3,231

Software value

$1.6B

Fluentd

Fluentd is an open source data collector for unified logging layer. Fluentd allows you to unify data collection and consumption for a better use and understanding of data.

Contributors

13,381

Organizations

2,711

Software value

$131M

Envoy

ENVOY IS AN OPEN SOURCE EDGE AND SERVICE PROXY, DESIGNED FOR CLOUD-NATIVE APPLICATIONS.

Contributors

10,360

Organizations

1,952

Software value

$2.9B

Harbor

Harbor is an open source container image registry that secures images with role-based access control, scans images for vulnerabilities, and signs images as trusted.

Contributors

9,695

Organizations

1,970

Software value

$40M

Kubeflow

Kubeflow project is an extendable Machine Learning (ML) platform made of multiple distinct components to address specific stages of the ML lifecycle, including: Mode Development, Model Training, Pipelines, and Multi-framework supports.

Contributors

9,224

Organizations

1,629

Software value

$488M

Etcd

A distributed, reliable key-value store for the most critical data of a distributed system.

Contributors

8,382

Organizations

1,736

Software value

$68M

Flux

Flux is a tool that automatically ensures that the state of your Kubernetes cluster matches the configuration you’ve supplied in Git. It uses an operator in the cluster to trigger deployments inside Kubernetes, which means that you don’t need a separate continuous delivery tool.

Contributors

8,302

Organizations

2,059

Software value

$18M

Backstage

Backstage is an open platform for building developer portals. Powered by a centralized software catalog, Backstage restores order to your microservices and infrastructure and enables your product teams to ship high-quality code quickly — without compromising autonomy.

Contributors

7,679

Organizations

1,922

Software value

$113M

NATS

NATS.io is a simple, secure and high performance open source messaging system for cloud native applications, IoT messaging, and microservices architectures.

Contributors

7,587

Organizations

1,575

Software value

$79M

cert-manager

cert-manager is a Kubernetes add-on to automate the management and issuance of TLS certificates from various issuing sources.

Contributors

7,537

Organizations

2,604

Software value

$29M

Cilium

Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.

Contributors

7,072

Organizations

1,939

Software value

$996M

Distribution

A container registry project that is now a sandbox project from Docker.

Contributors

6,550

Organizations

1,290

Software value

$104K

Dapr

Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge.

Contributors

6,339

Organizations

952

Software value

$49M

k3s

K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.

Contributors

6,104

Organizations

1,850

Software value

$9.1M

Jaeger

Monitor and troubleshoot transactions in complex distributed systems. As on-the-ground microservice practitioners are quickly realizing, the majority of operational problems that arise when moving to a distributed architecture are ultimately grounded in two areas: networking and observability.

Contributors

5,907

Organizations

1,344

Software value

$45M

Containerd

An industry-standard container runtime with an emphasis on simplicity, robustness and portability

Contributors

5,812

Organizations

1,556

Software value

$101M

Open Policy Agent

Stop using a different policy language, policy model, and policy API for every product and service you use. Use OPA for a unified toolset and framework for policy across the cloud native stack. Whether for one service or for all your services, use OPA to decouple policy from the service's code so you can release, analyze, and review policies (which security and compliance teams love) without sacrificing availability or performance.

Contributors

4,762

Organizations

1,123

Software value

$362M

Rook

Rook turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.

Contributors

4,318

Organizations

1,238

Software value

$11M

Linkerd

Linkerd is a service mesh for Kubernetes and other frameworks. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code.

Contributors

4,199

Organizations

1,139

Software value

$114M

KEDA

KEDA is a Kubernetes-based event-driven autoscaler. KEDA determines how any container in Kubernetes should be scaled based on the number of events that need to be processed. KEDA is a single-purpose and lightweight component that can be added to any Kubernetes cluster. It works alongside standard Kubernetes components like the Horizontal Pod Autoscaler and can extend functionality without overwriting or duplication. With KEDA you can specify the that apps you want to scale in an event-driven way while other apps continue to function. This makes KEDA a flexible and safe option to run alongside other Kubernetes applications and frameworks.

Contributors

4,099

Organizations

1,036

Software value

$199M

Thanos

Open source, highly available Prometheus setup with long term storage capabilities.

Contributors

3,945

Organizations

1,072

Software value

$11M

Knative

Knative is an Open-Source Enterprise-level solution to build Serverless and Event Driven Applications.

Contributors

3,826

Organizations

893

Software value

$740M

Meshery

Lifecycle, performance, and configuration management across any service mesh.

Contributors

3,695

Organizations

496

Software value

$122M

Atlantis

Atlantis is PR automation application that allows users to create PRs against a repository to run terraform via command comments.

Contributors

3,672

Organizations

951

Software value

$4.1M

Connect

Connect is a simple, cross-language framework for Protobuf RPC.

Contributors

3,564

Organizations

320

Software value

$5.5M

Strimzi

Strimzi provides a way to run an Apache Kafka cluster on Kubernetes in various deployment configurations.

Contributors

3,517

Organizations

788

Software value

$288M

Longhorn

Cloud native distributed block storage for Kubernetes

Contributors

3,457

Organizations

899

Software value

$371M

Score

We believe that developers shouldn’t have to fight a symphony orchestra of tech and tooling when preparing their code for its journey toward production. Instead, we advocate for a workload-centric approach to software development. This means that the platform or tools of the target environment are responsible for satisfying the workload runtime requirements rather than the other way around.

Contributors

3,371

Organizations

50

Software value

$1.9M

External Secrets Operator

"External Secrets Operator (ESO) is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret. ESO provides a user-friendly abstraction for the external API that stores the secrets for you. It allows you to manage access to the secret store for different tenants within your cluster and keeps the Kubernetes secrets in sync.

Contributors

3,307

Organizations

925

Software value

$7.1M

Kyverno

Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies.

Contributors

3,287

Organizations

879

Software value

$72M

KubeVirt

KubeVirt technology addresses the needs of development teams that have adopted or want to adopt Kubernetes but possess existing Virtual Machine-based workloads that cannot be easily containerized. More specifically, the technology provides a unified development platform where developers can build, modify, and deploy applications residing in both Application Containers as well as Virtual Machines in a common, shared environment.

Contributors

3,280

Organizations

590

Software value

$3B

TiKV

A distributed transactional key-value database. Based on the design of Google Spanner and HBase, but simpler to manage and without dependencies on any distributed filesystem

Contributors

3,053

Organizations

631

Software value

$299M

CoreDNS

CoreDNS is a DNS server. It is written in Go. It can be used in a multitude of environments because of its flexibility.

Contributors

3,032

Organizations

884

Software value

$1.8M

Falco

Falco, the open source cloud-native runtime security project, is the defacto Kubernetes threat detection engine. Falco detects unexpected application behavior and alerts on threats at runtime.

Contributors

2,982

Organizations

703

Software value

$49M

Notary

Notary is a project that allows anyone to have trust over arbitrary collections of data

Contributors

2,671

Organizations

219

Software value

$28M

Fluid Project

Fluid is an open, collaborative project to improve the user experience and inclusiveness of open source software. The Fluid community consists of an international team of partners, individuals, and institutions focused on designing inclusive, flexible, customizable, user-centered interfaces.

Contributors

2,653

Organizations

68

Software value

$83M

OpenEBS

OpenEBS is the leading storage solution for Kubernetes Kubernetes native; runs in userspace Open Source; no vendor lock-in The only multi cloud storage solution

Contributors

2,558

Organizations

592

Software value

$106M

Cortex

A horizontally scalable, highly available, multi-tenant, long term Prometheus.

Contributors

2,436

Organizations

412

Software value

$84M

Cloud Custodian

Cloud Custodian enables users to be well managed in the cloud. The simple YAML DSL allows you to easily define rules to enable a well-managed cloud infrastructure, that's both secure and cost optimized.

Contributors

2,370

Organizations

376

Software value

$36M

Volcano

Volcano is a batch system built on Kubernetes.

Contributors

2,307

Organizations

261

Software value

$42M

KubeEdge

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge.It is built upon kubernetes and provides fundamental infrastructure support for network, app. deployment and metadata synchronization between cloud and edge.

Contributors

2,247

Organizations

359

Software value

$371M

Telepresence

Telepresence is an open source tool that lets you run a single service locally, while connecting that service to a remote Kubernetes cluster.

Contributors

2,212

Organizations

605

Software value

$4M

Vitess

Vitess is a database solution for deploying, scaling and managing large clusters of open-source database instances. It currently supports MySQL and MariaDB. It’s architected to run as effectively in a public or private cloud architecture as it does on dedicated hardware. It combines and extends many important SQL features with the scalability of a NoSQL database

Contributors

2,167

Organizations

460

Software value

$81M

Dex

Dex is an identity service that uses OpenID Connect to drive authentication for other apps.

Contributors

2,033

Organizations

837

Software value

$196K

LitmusChaos

Litmus is one of the most promising open source chaos engineering frameworks that takes into account proper chaos engineering principles while providing autonomy and extensibility to the users.

Contributors

1,988

Organizations

384

Software value

$52M

Kubescape

Kubescape is an open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA hardening guidance and the MITRE ATT&CK® . Kubescape scans K8s clusters, YAML files, and HELM charts, and detect misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline and provides a risk score instantly and risk trends over time. Kubescape integrates natively with other DevOps tools, including Jenkins, CircleCI and Github workflows. Kubescape policies are based on Open Policy Agent and the REGO language. A key idea behind Kubescape it to put security capabilities at the hands of the Developers and the DevOps teams. Our vision is to create a wide open-source Kubernetes security project with capabilities that will span across configuration control, vulnerabilities, RBAC management and runtime security - all made for developers and DevOps to add to their tools in a native way.

Contributors

1,983

Organizations

326

Software value

$87M

Curve

Curve is a distributed storage system designed and developed independently by NetEase, featured with high performance, easy operation, cloud native. Curve is composed with CurveBS(Curve Block Storage) and CurveFS(Curve FileSystem). CurveBS supports snapshot, clone, and recover, also supports virtual machines with qemu and physical machine with nbd. CurveFS supports POSIX based on Fuse. Curve is widely used in Netease, and is also test by other users. Curve provides storage service for core business of YouDao, YanXuan, Music, Lofter, YouXi in Netease. In the past 2 years, a single Curve cluster has stored tens of thousands of volumes, with a storage capacity of PB.

Contributors

1,936

Organizations

108

Software value

$65M

emissary-ingress

An open source ingress controller and API Gateway for Kubernetes.

Contributors

1,930

Organizations

651

Software value

$37M

Capsule

Capsule implements a multi-tenant and policy-based environment in your Kubernetes cluster. It is designed as a micro-services-based ecosystem with the minimalist approach, leveraging only on upstream Kubernetes.

Contributors

1,864

Organizations

134

Software value

$3M

Crossplane

Crossplane is an open source Kubernetes add-on that enables platform teams to assemble infrastructure from multiple vendors, and expose higher level self-service APIs for application teams to consume, without having to write any code.

Contributors

1,858

Organizations

586

Software value

$108M

MetalLB

MetalLB is a load-balancer implementation for bare metal Kubernetes clusters, using standard routing protocols.

Contributors

1,787

Organizations

538

Software value

$8.5M

SOPS

SOPS (Secrets OPerationS) is an editor in the form of a command-line tool and SDK designed to help manage encrypted files in a variety of structured (YAML, JSON, ENV, INI) and BINARY formats using a one of the supported Key Management Systems (KMS), PGP, or age.

Contributors

1,739

Organizations

708

Software value

$916K