bottlerocket
static-analysis
Our great sponsors
bottlerocket | static-analysis | |
---|---|---|
40 | 15 | |
8,071 | 12,731 | |
1.0% | 1.5% | |
9.8 | 9.4 | |
about 17 hours ago | 3 days ago | |
Rust | Rust | |
GNU General Public License v3.0 or later | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
bottlerocket
-
Exploring cgroups v2 and MemoryQoS With EKS and Bottlerocket
According to this discussion - starting with Bottlerocket 1.13.0 (Mar 2023) new distributions will default to using Cgroups v2 interface for process organization and enforcing resource limits.
- Boletín AWS Open Source, Christmas Edition
-
Bottlerocket – Minimal, immutable Linux OS with verified boot
It means there is a full trusted boot chain from the TPM to loading the immutable root filesystem: https://github.com/bottlerocket-os/bottlerocket/blob/develop...
Regular Linux distributions don't have this, even if Secure Boot is enabled: https://0pointer.net/blog/brave-new-trusted-boot-world.html
On the GitHub repo (https://github.com/bottlerocket-os/bottlerocket), there are instructions for using it on VMware and bare metal:
https://github.com/bottlerocket-os/bottlerocket/blob/develop...
https://github.com/bottlerocket-os/bottlerocket/blob/develop...
Well, the link I provided references the Bottlerocket docs which explains the control container and the admin container and also how you can configure Bottlerocket via the User Data field when launching it as an AMI. All the information appears to be in the docs
https://github.com/bottlerocket-os/bottlerocket/blob/develop...
-
Introduction to Immutable Linux Systems
On the server-side, there's Bottlerocket OS [1] (Amazon). They use A/B partitions for upgrades, and the idea is that you just run containers for anything non-base. Boot containers are used to do custom configuration at boot, and host-container (or DaemonSet, if you run K8S) is used for long-running services.
-
Wolfi: A community Linux OS designed for the container and cloud-native era
To add to the other excellent answers, I would recommend adding Bottlerocket to your reading list: https://github.com/bottlerocket-os/bottlerocket#readme
I'm also aware of (but haven't used) https://github.com/siderolabs/talos#readme
I just realized your question may have implied a desktop os, whereas Bottlerocket, Flatcar, and likely the others in this specific thread are server-side. I don't have much experience with trying to solve that problem on the desktop except for the horror-show that is snap
-
Compile Linux Kernel 6.x on AL2? 😎
https://github.com/bottlerocket-os/bottlerocket/issues/2855 soon for bottlerocket, maybe you’ll see Amazon Linux 2023 for eks nodes soon too?
-
Twitter open sources Navi: High-Performance Machine Learning Serving Server in Rust
I think open sourcing for free labor is a common misconception. Most corporate led open source projects (eg, https://github.com/bottlerocket-os/bottlerocket from AWS or https://github.com/facebook/relay from Facebook) still require a team of employees.
static-analysis
-
Static Analysis Tools for C
Readers should also peruse the 'Multiple languages' section, many of the big names, Coverity, Klocwork et al. are listed there.
see https://github.com/analysis-tools-dev/static-analysis#multip...
- Are you in favor of small functions/clean code or opposed to it?
- Checked C
-
What's the best free security scan tool for C/C++ files?
There's a bunch on https://github.com/analysis-tools-dev/static-analysis
-
Does anyone know of any tool for calculating the cyclomatic complexity of pascal-based source code?
https://github.com/analysis-tools-dev/static-analysis - general list of SAST
- Static Code Analysis for your .NET projects
-
ShellCheck: A static analysis tool for shell scripts
Same. Few years ago I started a little list of linters. Just kept adding tools and the list is huge now thanks to lots of contributors. https://github.com/analysis-tools-dev/static-analysis
-
Rusticles #10 - Wed Sep 09 2020
analysis-tools-dev/static-analysis (Rust): Static analysis tools for all programming languages, build tools, config files and more.
What are some alternatives?
firecracker - Secure and fast microVMs for serverless computing.
Flatcar - Flatcar project repository for issue tracking, project documentation, etc.
nerdctl - contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...
lima - Linux virtual machines, with a focus on running containers
solana - Web-Scale Blockchain for fast, secure, scalable, decentralized apps and marketplaces.
awesome-rust - A curated list of Rust code and resources.
amazon-ecs-agent - Amazon Elastic Container Service Agent
flatcar-linux-update-operator - A Kubernetes operator to manage updates of Flatcar Container Linux
podman - Podman: A tool for managing OCI containers and pods.
find-sec-bugs - The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
rust-blog - Educational blog posts for Rust beginners
awesome-linters - A community-driven list of awesome linters.