Sysadmin Tools πŸ‡ΊπŸ‡¦
3.88K subscribers
692 photos
28 videos
302 files
5.1K links
Sysadmin/DevOps tools, news and other interesting things from modern IT world.
Feed https://t.me/s/sysadmin_tools
Download Telegram
Building a Firecracker-Powered Course Platform To Learn Docker and Kubernetes

https://iximiuz.com/en/posts/iximiuz-labs-story/

#docker #k8s #kubernetes #container #devops #architecture #firecracker
devpod

Spin up dev environments in any infra. Dev-environments-as-code like Terraform but for dev environments. Like Codespaces but open-source, client-only and unopinionated: Works with any IDE and lets you use any cloud, kubernetes or just on localhost docker.

https://github.com/loft-sh/devpod

#docker #kubernetes #k8s #development #cloud #ide #vscode
kraken

Kraken is a P2P-powered Docker registry that focuses on scalability and availability. It is designed for Docker image management, replication, and distribution in a hybrid cloud environment. With pluggable backend support, Kraken can easily integrate into existing Docker registry setups as the distribution layer.

Kraken has been in production at Uber since early 2018. In our busiest cluster, Kraken distributes more than 1 million blobs per day, including 100k 1G+ blobs. At its peak production load, Kraken distributes 20K 100MB-1G blobs in under 30 sec.

https://github.com/uber/kraken

#docker #registry
Finch provides a simple client which is integrated with nerdctl. For the core build/run/push/pull commands, Finch depends upon nerdctl to handle the heavy lifting. It works with containerd for container management, and with BuildKit to handle Open Container Initiative (OCI) image builds. These components are all pulled together and run within a virtual machine managed by Lima.

#docker #containerd #buildkit #lima
LightkeeperRM

LightkeeperRM (Remote Management) is a modular drop-in replacement for maintaining servers over SSH with shell commands. No additional daemons or other software is needed on servers. LightkeeperRM will only run standard Linux commands already available on the server. You can see executed commands through debug log and on server's logs (depends on server's settings), so it's easy to audit and debug.

https://github.com/kalaksi/lightkeeper

#orchestrator #kvm #qemu #docker #tool
Incus 6.3 has been released

The highlight for this release is the initial support for running OCI application containers.
This allows the use of common Docker/OCI images directly through Incus, with those containers living alongside our usual system containers and virtual machines!

https://discuss.linuxcontainers.org/t/incus-6-3-has-been-released/21019/1

#incus #docker #lxc #lxd #containers
πŸ–ΌοΈ docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. 


https://github.com/docker/docker-bench-security

#docker #security
Please open Telegram to view this post
VIEW IN TELEGRAM
WUD

WUD (aka What's up Docker?) gets you notified when a new version of your Docker Container is available. 


https://github.com/getwud/wud
https://getwud.github.io/wud/#/introduction/

#docker #semver #security
Seccomp-Diff

Analyze binaries and containers to extract and disassemble seccomp-bpf profiles. This tools is designed to help you determine whether or not a given seccomp-bpf profile is more or less constrained than others as well as give you the ground truth for the filters applied to a process.


https://github.com/antitree/seccomp-diff

#container #docker #security #k8s #kubernetes
Woodpecker

simple, yet powerful CI/CD engine with great extensibility


https://github.com/woodpecker-ci/woodpecker

#docker #k8s #kubernetes #devops #cicd #automation
docker-host

A docker sidecar container to forward all traffic to local docker host or any other host


https://github.com/qoomon/docker-host

#docker #network
Upcoming changes to the Bitnami catalog (effective August 28th, 2025)

Q: Are Bitnami’s free images going away?
A: Not entirely. Bitnami will continue to offer a limited subset of free, latest-version images intended for development use. These images will be more hardened and secure, but older versions and many applications will be removed from the free tier and moved to the Bitnami Legacy repository. You can browse the images available for free at https://hub.docker.com/u/bitnamisecure before August 28th, and after that date, the main Bitnami registry will have the same content.


https://github.com/bitnami/charts/issues/35164

#helm #kubernetes #bitnami #docker #k8s
Copacetic

copa is a CLI tool written in Go and based on buildkit that can be used to directly patch container images without full rebuilds. copa can also patch container images using the vulnerability scanning results from popular tools like Trivy.


https://github.com/project-copacetic/copacetic

#docker #podman #container #buildkit #security
Talos Operator

talos-operator enables to bootstrap Talos Kubernetes clusters using custom controllers. It allows you to create and manage Talos clusters in different environments, such as bare metal, virtual machines or even in Kubernetes-in-Kubernetes method by using Talos' container support.


https://github.com/alperencelik/talos-operator

#talos #linux #k8s #kubernetes #docker