CI/CD Tools

Run GitHub Actions locally for fast feedback

Act is an open-source tool that runs GitHub Actions workflows locally using Docker containers that match GitHub's execution environment. It provides instant feedback on workflow changes without pushing to a repository, supports matrix builds, secret management, and artifact handling. Act can also replace Makefiles by using workflow files as task definitions, making it useful for both CI/CD development and local task automation across development teams.

GitHub's Kubernetes controller for autoscaling GitHub Actions runners

actions-runner-controller (ARC) is GitHub's official Kubernetes controller for managing self-hosted GitHub Actions runners. It automatically scales runner pods up and down based on workflow demand, provisioning runners when jobs queue and terminating them when complete. Supports runner groups, custom runner images, and organization-level runner management. Over 6,100 GitHub stars.

Infrastructure as Code orchestration and governance platform

env0 is an IaC orchestration platform that manages Terraform, OpenTofu, Pulumi, and CloudFormation workflows with built-in governance, cost estimation, and drift detection. It provides self-service infrastructure provisioning with policy guardrails, automated plan approvals, and budget controls. Supports custom deployment flows with OPA-based policy enforcement and RBAC.

Ephemeral preview environments for every pull request

Bunnyshell automates the creation of full-stack ephemeral environments that spin up for every pull request and tear down when merged. Each environment is a complete replica of the application stack including databases, APIs, and frontend services. Integrates with GitHub, GitLab, and Bitbucket to provide shareable preview URLs for testing, QA, and stakeholder review.

Managed Docker build acceleration with up to 40x faster builds

Depot provides managed infrastructure for dramatically faster Docker image builds. It uses persistent build caches, native Intel and ARM builders, and optimized build scheduling to achieve up to 40x faster builds compared to standard Docker build workflows. Drop-in replacement for docker build that requires no Dockerfile changes. Used by major engineering teams to cut CI/CD pipeline times.

Hybrid CI/CD platform with self-hosted agents and cloud orchestration

Buildkite is a hybrid CI/CD platform that separates orchestration from execution. A cloud-hosted control plane manages pipeline coordination and UI while open-source agents run builds on your own infrastructure. Used by Shopify, Airbnb, Uber, and Tinder for internet-scale deployments. Supports 100,000+ parallel jobs with P95 billing that ignores usage spikes.

IaC orchestration layer for scaling Terraform and OpenTofu

Terragrunt is an infrastructure-as-code orchestration tool that wraps Terraform and OpenTofu to keep configurations DRY, manage remote state, and coordinate multi-module deployments. The 1.0 release introduced stacks, filters, run reports, and backward compatibility guarantees after 900+ releases and tens of millions of infrastructure deployments. It provides a thin orchestration layer that eliminates duplication across environments without replacing the underlying IaC tools.

AI-native API gateway by Alibaba with MCP server hosting and LLM routing

Higress is an open-source AI-native API gateway developed by Alibaba that combines traditional API management with LLM-specific capabilities like token-based rate limiting, model routing, prompt caching, and MCP server hosting. Built on Envoy and Istio, it provides enterprise-grade traffic management while natively understanding AI workload patterns including streaming responses, long-lived connections, and multi-model fallback chains.

Run GitHub Actions 2x faster at half the cost on bare-metal gaming CPUs

Blacksmith is a drop-in replacement for GitHub-hosted runners that executes Actions on bare-metal gaming CPUs with higher single-core performance. Migration requires one line change in YAML. Features colocated warm caches, persistent Docker layer caching on NVMe, CI observability with log search, and Firecracker microVM isolation. SOC 2 Type II certified, pay-as-you-go at ~$0.004/min versus GitHub's $0.008/min.

Lightweight self-hosted CI/CD engine for the Gitea stack

Woodpecker CI is a community-maintained open-source CI/CD engine forked from Drone CI, designed as the default continuous integration solution for self-hosted Git platforms like Gitea, Forgejo, and Codeberg. With simple YAML pipeline configuration, minimal resource usage (~100MB RAM), and Apache-2.0 licensing, it provides a lightweight alternative to Jenkins and GitHub Actions for developers who prefer infrastructure they control.

Developer productivity platform with merge queues and flaky test detection

Aviator is a developer productivity platform combining merge queues, stacked PRs, automated code review, and flaky test management. Its merge queue prevents broken main branches by testing PRs in order before merging. Flaky test detection identifies unreliable tests causing CI failures. Founded by ex-Google engineers who built internal developer tools at scale. YC-backed with $2.3M seed from Elad Gil. Used by Bosch, Benchling, and Lightspeed.

Terraform pull request automation via GitHub/GitLab comments

Atlantis is a self-hosted Terraform pull request automation tool that runs plan and apply operations triggered by GitHub, GitLab, Bitbucket, or Azure DevOps comments. Type 'atlantis plan' on a PR to see infrastructure changes, then 'atlantis apply' to deploy. 7,800+ GitHub stars, Apache 2.0 licensed. Widely adopted as the standard for GitOps-style Terraform workflows, with locking to prevent concurrent modifications to the same resources.

Containerized sandboxes for AI coding agents

Dagger Container Use provides isolated container environments for AI coding agents, enabling multiple agents to work in separate sandboxed branches simultaneously. Built by the Dagger team, it ensures reproducibility and safety for autonomous code execution by giving each agent its own containerized workspace with full toolchain access.

Visual regression testing for CI/CD pipelines

Argos CI is a visual regression testing platform that automatically catches unintended UI changes in CI/CD pipelines. It integrates with Playwright, Cypress, Storybook, and Puppeteer, featuring a stabilization engine that filters flaky pixel differences from genuine regressions. Used by teams at Meta and MUI for frontend quality gates.

Official MCP server for GitHub repo operations

GitHub MCP Server is the official Model Context Protocol server from GitHub that connects AI assistants to repositories, issues, pull requests, workflows, and code search. It exposes 100+ operations with toolset filtering, permission scoping, and audit logging, available in both remote-hosted and self-hosted Docker deployment modes.

AI-powered API testing with traffic recording

Keploy is an open-source AI-powered testing platform that generates API, integration, and unit tests by recording real network traffic via eBPF. It captures API calls, database queries, and streaming events, then replays them as deterministic tests with auto-generated mocks — no code changes needed. Works across any language or framework with CI/CD pipeline integration and popular testing framework support including JUnit, PyTest, Jest, and Go-Test.

Parallel test orchestration for Playwright and Cypress

Currents is a test orchestration platform that parallelizes Playwright and Cypress test suites across multiple CI machines for faster feedback. It provides intelligent test splitting, re-run strategies for flaky tests, detailed analytics dashboards, and native Playwright chunking. Achieves up to 50% test suite speed improvements through optimized distribution and parallel execution management.

Unified CI/CD and deployment platform with GPU support

Northflank is a unified platform for CI/CD, deployment, and infrastructure management that supports both traditional web applications and GPU-native AI workloads. It provides preview environments with full-stack database and AI model inclusion, BYOC deployment on any cloud, built-in observability, and automated scaling. Handles the complete deployment lifecycle from Git push to production with support for containers, databases, and GPU instances.

AI-powered CI reliability and flaky test management

Trunk is a developer tools platform that tackles CI reliability through AI-powered flaky test detection, automatic quarantine, and merge queue management. It uses ML-based statistical analysis to identify flaky tests, isolates them to prevent pipeline blocks, and creates GitHub issues for resolution. Used by Zillow, Brex, and Faire, with $28.5M in funding and support for all major test frameworks.

Engineering intelligence for DORA metrics and workflow automation

LinearB is a software engineering intelligence platform trusted by over 3,000 engineering leaders to track DORA metrics, cycle time broken into four phases (coding, pickup, review, deploy), and developer workflow patterns. It connects to Git repos and project management tools, benchmarks team performance against 8.1M+ pull requests from 4,800 organizations, and automates workflow improvements via gitStream — a policy-as-code engine for PR routing, labeling, and review automation.

Agentic application security from prompt to cloud

Cycode is an AI-native application security platform that converges AST, SSCS, and ASPM into a single solution with the Maestro AI orchestrator managing multi-agent security workflows. It provides native SAST, SCA, secrets detection, IaC scanning, and container security alongside ConnectorX integration with 100+ third-party tools. Cycode's AI Exploitability Agent reduces false positives by 94%, and the Context Intelligence Graph maps risk across code, pipelines, and runtime environments.

Pipelineless AppSec for AI-driven development

Arnica is a pipelineless application security platform that scans every code push in real-time across SAST, SCA, IaC, secrets, and license risks without CI/CD pipeline integration. Its Arnie AI engine combines deterministic static analysis with multi-agent reasoning to detect logic flaws and vulnerabilities in both human-written and AI-generated code. It integrates directly with GitHub, GitLab, Bitbucket, and Azure DevOps for 100% repository coverage from day one.

Declarative orchestration for data, AI, and infra

Kestra is an open-source orchestration platform that uses declarative YAML to define event-driven and scheduled workflows for data pipelines, infrastructure automation, and AI workloads. With over 1,200 plugins, it connects to databases, cloud services, APIs, and SaaS tools without custom glue code. Kestra reached version 1.0 LTS with agentic AI capabilities, SDKs for Python, TypeScript, Java, and Go, and SOC 2 compliance. Clients include Leroy Merlin, Huawei, Tencent, and Decathlon.

Durable execution for fault-tolerant workflows

Temporal is an open-source durable execution platform that ensures application code runs to completion regardless of failures or outages. It captures workflow state at every step, enabling seamless recovery without custom retry logic. With SDKs for Go, Java, Python, TypeScript, and .NET, Temporal powers mission-critical orchestration at Netflix, Nvidia, and other enterprises. Valued at $5B, it replaces fragile cron jobs, state machines, and saga patterns with resilient workflow-as-code.