Top 20 C Kubernete Projects

Kubernetes

• Add a project

1. Netdata

   1 131 79,142 9.9 C

   The open-source observability platform everyone needs

   

   Project mention: Best Open Source Monitoring Tools in 2026: 7 Self-Hosted Options Compared | dev.to | 2026-06-13

   Netdata is a real-time infrastructure monitoring agent that collects metrics at per-second granularity with near-zero configuration. Install the agent on a server, and within seconds you have 2,000+ metrics being collected — CPU, memory, disk I/O, network, processes, containers, and hundreds of application-specific collectors. The level of instant visibility is unmatched.

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. yugabyte-db

   2 101 10,335 10.0 C

   YugabyteDB - the cloud native distributed SQL database for mission-critical applications.

   

   Project mention: Consistency boundaries in SQL databases vs. MongoDB | dev.to | 2026-03-29

   Defaults may be inconsistent. SELECT FOR UPDATE without OF locks all joined rows, but UPDATE on a join behaves differently as we will demonstrate below. Column-level locking also raises another issue without joins: check constraints must see a consistent state, even for columns that were not updated (see the now-fixed YugabyteDB issue: https://github.com/yugabyte/yugabyte-db/issues/15196).

4. tetragon

   3 14 4,746 9.9 C

   eBPF-based Security Observability and Runtime Enforcement

   

   Project mention: Building a Production eBPF Observability & Security Stack for Kubernetes in 2026 | dev.to | 2026-03-30

   # Install Tetragon via Helm helm repo add cilium https://helm.cilium.io helm repo update helm install tetragon cilium/tetragon \ --namespace kube-system \ --set tetragon.grpc.address="localhost:54321" \ --set tetragon.exportFilename="/var/run/cilium/tetragon/tetragon.log" \ --set tetragon.enableProcessCred=true \ --set tetragon.enableProcessNs=true # Install tetra CLI (for event observation) GOOS=$(go env GOOS) GOARCH=$(go env GOARCH) curl -L --remote-name-all \ https://github.com/cilium/tetragon/releases/latest/download/tetra-${GOOS}-${GOARCH}.tar.gz sudo tar -C /usr/local/bin -xzvf tetra-${GOOS}-${GOARCH}.tar.gz rm tetra-${GOOS}-${GOARCH}.tar.gz

5. inspektor-gadget

   4 8 2,846 9.8 C

   Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF

   

6. qtap

   5 4 1,442 9.4 C

   Qtap: An eBPF agent that captures pre-encrypted network traffic, providing rich context about egress connections and their originating processes.

   

   Project mention: Show HN: QTap DevTools – Chrome-style encrypted traffic inspector for Linux | news.ycombinator.com | 2026-01-21

   - Data never leaves your machine

   DevTools is free and open source (AGPL-3.0).

   GitHub: https://github.com/qpoint-io/qtap

7. ptcpdump

   6 3 1,245 7.8 C

   Process-aware, eBPF-based tcpdump

   

   Project mention: Why does SSH send 100 packets per keystroke? | news.ycombinator.com | 2026-01-22

   Sigh.

   I'm still waiting for a systems engineering tool that can log every layer, and handle SSL the whole pipe wide.

   Im covering everything from strafe and ltrace on the machine, file reads, IO profiling, bandwidth profiling. Like, the whole thing, from beginning to end.

   Theres no tool that does that.

   Hell, I can't even see good network traces within a single Linux app. The closest you'll find is https://github.com/mozillazg/ptcpdump

   But especially with Firefox, good luck.

8. security-profiles-operator

   7 2 848 9.5 C

   The Kubernetes Security Profiles Operator

   

9. alaz

   8 7 718 9.4 C

   Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, and more, while staying alert to crucial system anomalies 🐝

   

10. nvshare

    9 1 306 3.5 C

    Practical GPU Sharing Without Memory Size Constraints

    

11. opentelemetry-go-instrumentation

    10 9 297 1.7 C

    OpenTelemetry auto-instrumentation for Go applications (by odigos-io)

    

12. raspi-cluster

    11 4 256 0.0 C

    Notes and scripts for setting up (yet another) Raspberry Pi computing cluster

    

    Project mention: Building a Real-Time HN Display for $15 | news.ycombinator.com | 2026-01-26

    I love this because it uses UDP _and_ a CYD (Cheap Yellow Display, which is what we hardware nerds have taken to calling these). I have two or three of these around, one as a 3D printer remote, another as a pseudo logic analyzer, and a caseless one that I use as a Micro Python sandbox.

    I've been using UDP to send CPU stats for my machines for ages (https://github.com/rcarmo/raspi-cluster/blob/master/tools/se... is a good example), and in modern networks it has become very much reliable (99.99% so on a LAN). Keeping an eye out for UDP on an ESP32 might be a little power intensive, though.

13. chaos-controller

    12 1 206 8.3 C

    :monkey: :fire: Datadog Failure Injection System for Kubernetes

    

14. c

    13 3 187 6.1 C

    Official C client library for Kubernetes (by kubernetes-client)

    

15. Copy-Fail-CVE-2026-31431-Kubernetes-PoC

    14 2 92 - C

    PoC: fully unprivileged container escape to node-level code execution on Kubernetes via CVE-2026-31431 page-cache corruption + shared image layers. Validated on Alibaba Cloud ACK, Amazon EKS and Google GKE.

    

    Project mention: Podman rootless containers and the Copy Fail exploit | news.ycombinator.com | 2026-05-08

    This is kind of an odd article to me. The point that podman may provide better isolation that Docker is made, but copy fail part focuses on the sample exploit (that overwrote su) and not the general effect of exploiting the vulnerability, which is to allow the user to overwrite a file that they should only have read-only access to.

    https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kuber... - This PoC has a good example of how Copy Fail might have an impact in a container based environment, it's exploiting the shared layers in a pair of container images, to overwrite a file in one image based on the running of an exploit in another.

    Whilst I've not directly tested podman for that kind of attack, I'd be a bit surprised if it stopped it, given how this vuln works.

16. kguardian

    15 1 60 9.8 C

    A Kubernetes tool leveraging eBPF for advanced Kubernetes security, auto-generating Network Policies, Seccomp Profiles, and more.

    

    Project mention: Show HN: Kubernetes Security Profile Generator Using eBPF | news.ycombinator.com | 2026-03-15

17. kerno

    16 1 45 - C

    Kerno is a system-level incident diagnosis engine that explains production issues across Linux, Kubernetes, VMs, and bare metal using eBPF.

    

    Project mention: Bot-green on first push. | dev.to | 2026-05-31

    The repo was optiqor/kerno. The fix was three range checks in a Go validation function. The PR opened at 01:25Z, the CI rolled 9/9 green on first push, and the maintainer merged at 03:30Z with one word of comment. There was nothing else to comment on.

18. osxiec

    17 26 44 6.9 C

    Native Docker-like solution for macOS developed by Okerew. It has it own containers. It leverages native macOS features to provide containerization capabilities, albeit with some limitations compared to Docker.

    

    Project mention: MCemm a GEMM (General Matrix Multiply) Kernel Generato | news.ycombinator.com | 2026-06-05

    Released mCemm a GEMM (General Matrix Multiply) kernel generator for Apple Metal which generates optimized Metal shaders with configurable tile sizes, warp sizes, data types (f16/f32), transpose modes (NN/NT/TN/TT), activations (ReLU/GELU/SiLU), bias and more.

    Fixed installation in https://github.com/Okerew/osxiec and https://github.com/MetalLikeCuda/gpumkat

    Released https://github.com/MetalLikeCuda/awesome-mlc a list of community maintained metal tools, frameworks, libraries and resources.

19. enclaive-docker-nginx-sgx

    18 3 32 0.0 C

    SGX-ready Enclaive Docker Image for Nginx

    

20. flare

    19 1 2 5.4 C

    Debug how containers react to signals (by xr09)

    

21. kpod-metrics

    20 1 1 - C

    eBPF-based pod-level kernel metrics collector for Kubernetes

    

    Project mention: Kpod-metrics: eBPF-based pod-level kernel metrics collector for Kubernetes | news.ycombinator.com | 2026-04-16

C Kubernetes related posts

• Podman rootless containers and the Copy Fail exploit

  2 projects | news.ycombinator.com | 8 May 2026

• eBPF in 2026: The Kernel Revolution Powering Cloud-Native Security and Observability

  1 project | dev.to | 18 Mar 2026

• Building a Real-Time HN Display for $15

  1 project | news.ycombinator.com | 26 Jan 2026

• ntopng alternatives - darkstat, survey6, and qtap

  4 projects | 30 Jul 2024

• Where Is HTTP/3?

  2 projects | news.ycombinator.com | 16 Dec 2024

• The use of eBPF – in Netflix, GPU infrastructure, Windows programs and more

  3 projects | dev.to | 30 Sep 2024

• Installation de K9s sur WSL2

  2 projects | dev.to | 20 Jul 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 17 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending C projects with our weekly report!