Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free. Learn more →
Top 23 Rust Container Projects
-
Dynamic memory management - Firecracker's RAM footprint starts low, but once a workload inside allocates RAM, Firecracker will never return it to the host system. After running several workloads inside, you end up with an idling VM that consumes 32 GB of RAM on the host, even though it doesn't need any of it.
Firecracker has a balloon device you can inflate (ie: acquire as much memory inside the VM as possible) and then deflate... returning the memory to the host.
https://github.com/firecracker-microvm/firecracker/blob/main...
-
Project mention: Bottlerocket – Minimal, immutable Linux OS with verified boot | news.ycombinator.com | 2023-09-23
It means there is a full trusted boot chain from the TPM to loading the immutable root filesystem: https://github.com/bottlerocket-os/bottlerocket/blob/develop...
Regular Linux distributions don't have this, even if Secure Boot is enabled: https://0pointer.net/blog/brave-new-trusted-boot-world.html
-
SonarQube
Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.
-
-
There are ton of optimizations that could be applied to kubernetes itself, including some custom CRI's (youki cri etc), read-only fs handling (erofs etc), and stacked CNI's on top of SR-IOV and Multus. Gluing it all together can be a real pain.
-
kata-containers
Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/
Project mention: Kata Containers: Virtual Machines (VMs) that feel and perform like containers | news.ycombinator.com | 2023-07-17> Last time I looked (a few months ago), the documentation was pretty sparse or outdated.
It still is, though it works somewhat seamlessly when installing with https://github.com/kata-containers/kata-containers/blob/main...
Though only one of the hypervisors works well.
-
And many more such as Scaleway, Oxide, Fuchsia, MeiliSearch, Vector, embark, Chef, BBC...
-
-
InfluxDB
Collect and Analyze Billions of Data Points in Real Time. Manage all types of time series data in a single, purpose-built database. Run at any scale in any environment in the cloud, on-premises, or at the edge.
-
Her recent project - https://github.com/aurae-runtime/aurae
-
docker-compose-wait
A simple script to wait for other docker images to be started while using docker-compose (or Kubernetes or docker stack or whatever)
FROM wordpress:cli # Install make tool USER root RUN apk add --no-cache make # Make docker-compose wait for container dependencies be ready # Add the wait script to the image ENV WAIT_VERSION 2.7.2 ADD https://github.com/ufoscout/docker-compose-wait/releases/download/$WAIT_VERSION/wait /wait RUN chmod +x /wait # Add Makefile to scripts dir ADD Makefile entrypoint.sh /scripts/ RUN chmod +x /scripts/entrypoint.sh ENTRYPOINT [ "/scripts/entrypoint.sh" ] USER 33:33 CMD ["wp", "shell"]
-
This looks a lot like Toast [1], except that Toast runs your tasks in a (more) reproducible containerized environment to help eliminate the "works on my machine" problem.
-
kuasar
A multi-sandbox container runtime that provides cloud-native, all-scenario multiple sandbox container solutions.
Project mention: The advantage of WASM compared with container runtimes | news.ycombinator.com | 2023-05-28Right now most early examples alas boot a container with a wasm runtime for each wasm instance, which is a sad waste. The whole advantage of wasm should be very lightweight low overhead wasm runtime instances atop a common wasm process. Having a process or container for each instance loses a ton of the benefit, makes it not much better than a regular container.
Thankfully there is work like the Containerd Sandbox API which enables new architectures like this. https://github.com/containerd/containerd/issues/4131
It's still being used to spawn a wasm processes per instance for now, but container runtime project Kuasar is already using the Sandbox API to save significant resources, and has already chimed in in comments on HN to express a desire to have shared-process/multi-wasm-instamxe runtimes, which could indeed allow sub ms spawning that could enable instance per request architectures. https://github.com/kuasar-io/kuasar
-
-
Project mention: Open source cloud file system. Posix, HDFS and S3 compatible | news.ycombinator.com | 2023-02-08
What I really want is a filesystem I can span across geographically remote nodes that's transparently compatible. I should just be able to chuck files into it from my NAS like any other. I think Mayastor [1] might get some of the way there?
-
Kubernetes (sorta) https://github.com/nxthat/nanocl It's still in early stages rn but always looking for more contributors!
-
-
-
staticvec
Implements a fixed-capacity stack-allocated Vec alternative backed by an array, using const generics.
Project mention: Posting asking if the Rust Reddit community is overly regulated gets regulated. | /r/programmingcirclejerk | 2023-05-27This crate of mine for example is currently literally unusable until the deeply fundamental features that John Random kinda-sorta removed in this pull request, ostensibly in preparation for whatever shittily stated syntax is ultimately establihed by whatever the hell "keyword generics" actually is (I really don't know, like this isn't a joke, I fundamentally do not understand what the fuck they're proposing at all in any way or how it's meaningfully and usefullly different from the previous syntax).
-
-
-
-
-
-
-
Mergify
Updating dependencies is time-consuming.. Solutions like Dependabot or Renovate update but don't merge dependencies. You need to do it manually while it could be fully automated! Add a Merge Queue to your workflow and stop caring about PR management & merging. Try Mergify for free.
Rust Containers related posts
- Bottlerocket – Minimal, immutable Linux OS with verified boot
- Introduction to Immutable Linux Systems
- How to minimize Rust binary size
- Kris Nova Passed Away
- How to minimize Rust binary size
- LXD is now under Canonical
- Youki v0.1.0, a container runtime in Rust that can be used with K8s is available
-
A note from our sponsor - SonarQube
www.sonarqube.org | 24 Sep 2023
Index
What are some of the best open-source Container projects in Rust? This list will help you:
Project | Stars | |
---|---|---|
1 | firecracker | 22,561 |
2 | bottlerocket | 7,602 |
3 | min-sized-rust | 6,321 |
4 | youki | 5,267 |
5 | kata-containers | 3,805 |
6 | habitat | 2,512 |
7 | vagga | 1,842 |
8 | aurae | 1,777 |
9 | docker-compose-wait | 1,522 |
10 | toast | 1,516 |
11 | kuasar | 890 |
12 | trow | 816 |
13 | Mayastor | 537 |
14 | nanocl | 496 |
15 | vas-quod | 441 |
16 | dockeye | 404 |
17 | staticvec | 269 |
18 | stevedore | 257 |
19 | rash | 195 |
20 | containrs | 124 |
21 | pura | 89 |
22 | libpathrs | 66 |
23 | dcp | 65 |