We built the fastest CI in the world. It failed

• sso-wall-of-shame

  201 583 8.3 JavaScript

  A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.

It sounds like you're unaware of why SSO is considered a security feature at all them, but it's covered right on the site: https://sso.tax/

It's to allow centralized access management. Stuff like firing someone and revoking their access from one platform instantly, instead running around and changing permissions in every tool manually. Or ensuring people in department A can't be invited to some platform for people in department B in order to limit information access.

SSO tax is predicated on the idea that the moment you outgrow the informal arrangements and liberal access, you're really a business. Seems pretty fair?

• earthly-solutions

  1 3 7.9 TypeScript

  Solutions leveraging Earthly Core, Satellites, and CI

  

https://github.com/earthly/earthly-solutions

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• Task

  113 10,017 9.6 MDX

  A task runner / simpler Make alternative written in Go

  

9. We test everything with another promotion which runs make targets which build docker containers to run python scripts (pytest)

This is also built by a complicated web of wildcarded makefile targets, which need to be interoperable and support a few if/else cases for specific components.

My plan is to migrate all of this to something simpler and more straightforward, or at least more maintainable, which is honestly probably going to turn into taskfile[0] instead of makefiles, and then simple python scripts for the glue that ties everything together or does more complex logic.

My hope is that it can be more straightforward and easier to maintain, with more component-ized logic, but realistically every step in that labyrinthine build process (and that's just the open-source version!) came from a decision made by a very talented team of engineers who know far more about the process and the product than I do. At this point I'm wondering if it would make 'more sense' to replace it with a giant python script of some kind and get access to all the logic we need all at once (it would not).

[0] https://taskfile.dev/

• BuildXL

  2 888 0.0 C#

  Microsoft Build Accelerator

  

Seems they came up with a way to scale up build toolchains with BuildXL[0]

Doesn't seem fully baked yet though

[0]: https://github.com/microsoft/BuildXL

• wireit

  15 5,321 9.0 TypeScript

  Wireit upgrades your npm/pnpm/yarn scripts to make them smarter and more efficient.

  

I must admit I'm a bigger fan of the wireit[0] approach, the only pause I have is its a Google project, my temptation is to fork it. The code isn't terribly complex

My biggest complaint with NX is: lack of a sane API for plugins, and it has more overhead than I'd care for. For the amount of complexity that NX has, I'd rather use Rush[1] which gives you everything NX does. My only complaint with Rush is that its development is really slow going, they really need to focus up on Rush plugins (they're good, but still experimental, and I'd love to see them clean up how `autoinstalls` work to be more intutive)

I'm on the fence about turbo from Vercel

[0]: https://github.com/google/wireit

[1]: https://rushjs.io/

• Concourse

  47 7,172 9.0 Go

  Concourse is a container-based continuous thing-doer written in Go.

  

> Imagine you live in a world where no part of the build has to repeat unless the changes actually impacted it. A world in which all builds happened with automatic parallelism. A world in which you could reproduce very reliably any part of the build on your laptop.

That sounds similar to https://concourse-ci.org/

I quite like it, but it never seemed to gain traction outside of Cloud Foundry.

• bass

  4 347 7.6 Go

  a low fidelity scripting language for project infrastructure (by vito)

We spent some time evaluating this on my team, and we're still experimenting with it.

I like it a lot, but the project appears to be mostly unmaintained since mid-2021, when the creator left it to work on a lispy CI/CD tool [0] that feels very complicated... not sure what's going on there.

[0]: https://github.com/vito/bass

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• Sidekiq

  91 12,940 8.9 Ruby

  Simple, efficient background processing for Ruby

  

> I'm not sure feature withholding has traditionally worked out well in the developer space.

I think it's worked out well for Sidekiq (https://sidekiq.org). I really like their model of layering valuable features between the OSS / Pro / Enterprise licenses.

• act

  145 50,182 9.2 Go

  Run your GitHub Actions locally 🚀

  

I feel you on that one. There is also Act (https://github.com/nektos/act) and Dagger.io.

• Keycloak

  229 19,857 10.0 Java

  Open Source Identity and Access Management For Modern Applications and Services

  

Their reply is not SSO, it's some toy alternative they're proposing that none of your customers would accept (like saying "Dropbox is just rsync")

SSO is hairy enough that you can't write it from scratch in any reasonable amount of time for what a typical SaaS needs.

There's OSS SSO you can host yourself that supports enterprise : https://www.keycloak.org/

If you're B2C Firebase Auth is cheap, and doesn't actually require hosting on Firebase

Suggest a related project