Veraison is an umbrella project focused on components for building an Attestation Verification Service. Low level, but very important area of effort in building more trustworthy systems.

https://github.com/veraison/

OpenRewrite is a toolkit for refactoring and maintaining software, building up recipes for common refactoring operations (like upgrading Java, or a key dependency between major versions).

https://github.com/openrewrite
https://www.moderne.io/blog/overview-of-openrewrite-and-moderne

Advertisement:

SRE in the modern IT-world - Slurm offers you the best online professional course!

Start  - 28th of February. Register via link right now: slurm.club/3SBdvGx

Bruno looks like an interesting project. It’s an IDE for working for APIs, saving collections to disk meaning they can be checked into Git.

https://github.com/usebruno/bruno

Ratify is a verification engine which enables verification of artifact security metadata. It comes integrated with Gatekeeper on Kubernetes.

https://github.com/deislabs/ratify

A handy utility to dump AWS Fargate's ECS containers environment variables locally.

https://github.com/dineshgowda24/ecsnv

OSI Layer & Cyber Attack .pdf

Autometrics is a set of open source metrics libraries, making use of OpenTelemetry and Prometheus easier. Currently supporting Rust, TypeScript, Go and Python, with more languages coming.

https://github.com/autometrics-dev

Untitled Goose Tool is a tool designed for threat assessment and incident response for Azure Active Directory (AzureAD), Azure, and Microsoft 365 environments.

https://github.com/cisagov/untitledgoosetool

AI comes to infrastructure as code. You’ll need an OpenAI key to use, but it looks to generate configuration files, Terraform code, CI/CD pipeline configurations and more.

https://aiac.dev/
https://github.com/gofireflyio/aiac