Container engines:
Container layer analysis:
- dive
Networking monitoring
Networking Ingress debugging:
Security
- kube-bench - K8s cluster CIS checks
- dockle - Docker image CIS
- trivy - Docker image vulnerability scan
- tfsec - terraform security checks
- ThreatMapper
- Kube Scan - in cluser risk meter
Templating:
- Kustomize
- Helm*
Application managers:
- KAPP
- Helm
Doc gen:
- https://github.com/norwoodj/helm-docs
- Segmentio TF docs
Helm testing:
- helm/chart-testing
- helm/github actions
Application hubs:
- Helm hub
- Operator hub
Operator build frameworks:
Image distribution:
- Kraken - Uber
- Dragonfly - Alibaba
Container registries:
- Harbor
Cost report:
- Spot.io
- Purser - VMWare
Application health:
- Polaris
CNI plugins:
- Ciliun + Hubble
K8s locally:
- Kind
- minikube
GitOps:
- ArgoCD - Argo Proj
Node autoscaling management
- Cluster autoscaler
- Node problem detector
- Draino
Promethues/Alertmanager
- Test Slack templates for Alertmanager
- Alertmanager routing tree
- Script to fire alerts
- Unit testing rules
EKS
Update notifications