Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 23 infrastructure-as-code Open-Source Projects
-
terraform
Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
Project mention: Why CISA Is Warning CISOs About a Breach at Sisense | news.ycombinator.com | 2024-04-11State Encryption was one of those long requested features[0] (I had it on my ideas list for years[1]) that Hashicorp didn't have much incentive to build. I don't think it has to with distancing opentofu as such, but the opentofu team prioritizing the right things that customers actually need.
[0]: https://github.com/hashicorp/terraform/issues/9556
[1]: https://github.com/captn3m0/ideas#-mars-terraform-remote-htt...
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Trivy Owner/Maintainer: Aqua Security Age: First released on GitHub on May 7th, 2019 License: Apache License 2.0 backward-compatible with tfsec
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Pulumi
Pulumi - Infrastructure as Code in any programming language. Build infrastructure intuitively on any cloud using familiar languages 🚀
If you are following this blog series, you should already know the benefits of using Terraform to define and deploy your AWS resources and configuration. Other IaC solutions such as AWS CloudFormation, AWS CDK, and Pulumi work the same way but differs in the programming or configuration language.
-
SaltStack
Software to automate the management and configuration of any infrastructure or application at scale. Get access to the Salt software package repository here:
Project mention: Looking for a way to remote in to K's of raspberry pi's... | /r/sysadmin | 2023-12-10 -
terraformer
CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code
Terraformer is a CLI tool developed by Google that generates Terraform files from existing infrastructure (reverse Terraform), simplifying the process of adopting Terraform in existing environments and speeding up the initial setup process. Terraformer supports multiple cloud providers, including AWS, Google Cloud, Azure, and others.
-
environment: Specifies the environment variable that will be available to our Lambda function. In this case I wrote an environment for RDS Database. Anyway, later I will write about AWS CDK using Python for creating database clusters, etc.
-
Infracost is a cost estimation tool that generates cost estimates for Terraform projects, which is crucial for budget planning and cost optimization, especially in cloud environments where resource costs can vary significantly.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
did anyone adopt in production https://crossplane.io ?
-
-
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16
tfsec Owner/Maintainer: Aqua Security (acquired in 2021) Age: First released on GitHub on March 5th, 2019 License: MIT License tfsec project is no longer actively maintained in favor of the Trivy tool. But because many people still use it and it's quite famous, I added tfsec to this comparison. However, I recommend against using it for new projects.
-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Checkov Owner/Maintainer: Prisma Cloud by Palo Alto Networks (acquired in 2021) Age: First released on GitHub on March 31st, 2021 License: Apache License 2.0
-
Certain checks may be possible with goss and the kgoss wrapper: https://github.com/goss-org/goss/tree/master/extras/kgoss
-
-
Project mention: Meshery: Simplifying Cloud Infrastructure and Kubernetes Management | dev.to | 2024-02-17
Meshery is an open-source cloud infrastructure and Kubernetes management platform that provides a unified interface for simplifying the deployment, management, and observability of cloud-native applications. It acts as a central control plane for managing Kubernetes clusters, containerized applications, and associated resources.
-
terraform-cdk
Define infrastructure resources using programming constructs and provision them using HashiCorp Terraform
Project mention: Learning Go by examples: part 12 - Deploy Go apps in Go with CDK for Terraform (CDKTF) | dev.to | 2024-03-07At first I tested it to deploy an OVHcloud Managed Kubernetes Service (MKS) with a Node Pool. And step by step, it worked. I even created a Pull Request (PR) in the terraform-cdk repository to add it as an example ☺️.
-
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Terrascan Owner/Maintainer: Tenable (acquired in 2022) Age: First release on GitHub on November 28th, 2017 License: Apache License 2.0
-
copilot-cli
The AWS Copilot CLI is a tool for developers to build, release and operate production ready containerized applications on AWS App Runner or Amazon ECS on AWS Fargate.
AWS Copilot CLI is an open source command line interface for running containers on AWS App Runner, Amazon Elastic Container Service (ECS), and AWS Fargate.
-
Project mention: Show HN: WireHub – easily create and share WireGuard networks | news.ycombinator.com | 2023-11-05
-
Project mention: DNSControl: Synchronize your DNS to multiple providers from a simple DSL | news.ycombinator.com | 2024-01-02
-
digger
Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline ⚡️
Project mention: Ask HN: Should we build support for more CI platforms, or features for Actions? | news.ycombinator.com | 2024-04-03Currently, Github Actions is de-facto the only fully supported CI platform in Digger, we’ve been building it as a CI-agnostic tool (https://github.com/diggerhq/digger) from get go. We keep getting requests to support more CI systems on our community slack and over Github issues (https://github.com/diggerhq/digger/issues/81).
Unlike other automation tools for Terraform, Digger doesn’t run jobs on the server; instead it uses your CI (like Actions) as a compute backend. This is more secure and also much cheaper if you use your own runners in your CI.
But each CI and each VCS is ever so slightly different; and we are now at a crossroads - Should we build support for more CI platforms, or more features for GitHub Actions? We’d love any thoughts/inputs!
-
Project mention: Cloudflare Sippy: Incrementally Migrate Data from AWS S3 to Reduce Egress Fees | news.ycombinator.com | 2023-10-15
I had been running dockeri.co with https://arc.codes/ for pennies a month.
Then, one month, I got a ~$500 bill out of no where.
Docker had changed an api causing my service to return 5xx errors all month. Each error was individually logged to CloudWatch - which racked up a ~$500 bill.
I moved to Cloudflare Workers that day and haven’t moved back.
-
Driftctl is an open-source Terraform drift detection tool that tracks and warns about infrastructure drift. Driftctl scans your infrastructure, compares it with your IaC configurations (like Terraform), and reports discrepancies.
-
Testinfra: is a testing framework for infrastructure used to test system configurations and infrastructure as code.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
infrastructure-as-code related posts
- A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons
- Why CISA Is Warning CISOs About a Breach at Sisense
- OpenTofu Response to HashiCorp's Cease and Desist Letter
- How To Implement AWS SSB Controls in Terraform - Part 4
- Deploy Laravel API To AWS Lambda
- Ask HN: Should we build support for more CI platforms, or features for Actions?
- Building an Amazon Location Service Resources with AWS CDK and AWS CloudFormation
-
A note from our sponsor - InfluxDB
www.influxdata.com | 18 Apr 2024
Index
What are some of the best open-source infrastructure-as-code projects? This list will help you:
Project | Stars | |
---|---|---|
1 | terraform | 41,053 |
2 | trivy | 21,222 |
3 | Pulumi | 19,630 |
4 | SaltStack | 13,821 |
5 | terraformer | 11,742 |
6 | aws-cdk | 11,121 |
7 | infracost | 10,221 |
8 | crossplane | 8,699 |
9 | Go | 7,025 |
10 | tfsec | 6,529 |
11 | checkov | 6,492 |
12 | goss | 5,438 |
13 | awesome-tf | 5,153 |
14 | meshery | 4,852 |
15 | terraform-cdk | 4,709 |
16 | terrascan | 4,472 |
17 | copilot-cli | 3,304 |
18 | octoDNS | 2,965 |
19 | DnsControl | 2,930 |
20 | digger | 2,647 |
21 | architect | 2,487 |
22 | driftctl | 2,398 |
23 | pytest-testinfra | 2,318 |