Top DevSecOps Tools for 2025

This page summarizes the projects mentioned and recommended in the original post on dev.to

Nutrient - The #1 PDF SDK Library
Bad PDFs = bad UX. Slow load times, broken annotations, clunky UX frustrates users. Nutrient’s PDF SDKs gives seamless document experiences, fast rendering, annotations, real-time collaboration, 100+ features. Used by 10K+ devs, serving ~half a billion users worldwide. Explore the SDK for free.
nutrient.io
featured
CodeRabbit: AI Code Reviews for Developers
Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
coderabbit.ai
featured
  1. Vault

    A tool for secrets management, encryption as a service, and privileged access management

    HashiCorp Terraform and Vault form a powerful combination in the DevSecOps landscape, embedding security into infrastructure provisioning and secrets management.

  2. Nutrient

    Nutrient - The #1 PDF SDK Library. Bad PDFs = bad UX. Slow load times, broken annotations, clunky UX frustrates users. Nutrient’s PDF SDKs gives seamless document experiences, fast rendering, annotations, real-time collaboration, 100+ features. Used by 10K+ devs, serving ~half a billion users worldwide. Explore the SDK for free.

    Nutrient logo
  3. terraform

    Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.

    HashiCorp Terraform and Vault form a powerful combination in the DevSecOps landscape, embedding security into infrastructure provisioning and secrets management.

  4. Pulumi

    Pulumi - Infrastructure as Code in any programming language 🚀

    Other options: Pulumi, Infisical

  5. bytebase

    World's most advanced database DevSecOps solution for Developer, Security, DBA and Platform Engineering teams. The GitHub/GitLab for database DevSecOps.

    Bytebase is a database DevSecOps platform designed for developers, security, DBA, and platform engineering teams.

  6. infisical

    ♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

    Other options: Pulumi, Infisical

  7. backstage

    Backstage is an open framework for building developer portals

    Other options: Backstage

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Kuvasz-streamer: open-source CDC for Postgres for low latency replication

    7 projects | news.ycombinator.com | 3 Jan 2025
  • Golang Security Review Guide

    3 projects | dev.to | 22 Aug 2024
  • Fast and reliable background jobs in Go

    1 project | news.ycombinator.com | 3 Jul 2024
  • River: Robust high-performance job processing system for Go and Postgres

    1 project | news.ycombinator.com | 15 May 2024
  • Using migrations with Golang

    5 projects | dev.to | 17 Apr 2024