Hosting, CI/CD, container orchestration, and self-hosted platforms
Showing 24 of 238 tools
Open-source personal AI agent for messaging apps
OpenClaw is a free, open-source AI agent framework that turns any LLM into an autonomous personal assistant accessible through messaging apps like WhatsApp, Telegram, Discord, and Signal. Running entirely on your local machine via a Node.js gateway, it connects AI models to system tools, browsers, files, and APIs for multi-step task execution with persistent memory across sessions.
Open-source TypeScript headless CMS and app framework
Payload is an open-source TypeScript-first headless CMS and app framework with 32K+ GitHub stars. Built on Next.js with PostgreSQL or MongoDB, it provides auto-generated REST and GraphQL APIs, a customizable admin panel, access control, localization, versioning, and file uploads. Config-as-code defines collections in TypeScript for full type safety. Features live preview, draft system, block-based editor, and extensible plugins. Self-hostable with no vendor lock-in.
Self-hosted Heroku/Vercel alternative
Open-source, self-hostable PaaS alternative to Heroku, Vercel, and Netlify with 44K+ GitHub stars. Deploy static sites, APIs, full-stack apps, databases, and 280+ one-click services on your own VPS or bare metal via SSH. Features auto Let's Encrypt SSL, Git integration (GitHub/GitLab/Bitbucket/Gitea), S3 backups, Docker Swarm support, and a REST API for CI/CD automation. Self-hosted version is free forever with no features behind paywalls.
Modern data pipeline orchestration with built-in AI
Mage AI is an open-source data pipeline orchestration tool positioned as a modern alternative to Apache Airflow. It provides a visual pipeline editor, native AI integrations for generating pipeline code, real-time streaming support, and built-in data quality checks. Mage handles batch and streaming workloads with a developer-friendly notebook-style interface and deploys to any cloud provider.
Fine-grained authorization engine by Okta
OpenFGA is an open-source authorization engine inspired by Google Zanzibar, built and maintained by Okta (Auth0). It provides relationship-based access control with a flexible modeling language, sub-millisecond permission checks, and SDKs for major languages. OpenFGA is used by companies including Grafana Labs, Canonical, and Docker for fine-grained access control in multi-tenant applications.
Google Zanzibar-inspired authorization database
SpiceDB is an open-source authorization database inspired by Google's Zanzibar system, providing relationship-based access control (ReBAC) at scale. It defines permissions through a schema language that models relationships between users, resources, and roles, then evaluates authorization checks in single-digit milliseconds. Used by companies like Netflix and GitHub, SpiceDB handles millions of permission checks per second.
Open-source AIOps alert management platform
Keep is an open-source AIOps platform that provides a single pane of glass for all alerts from monitoring tools like Datadog, PagerDuty, Grafana, and 50+ integrations. It uses AI to correlate, deduplicate, and enrich alerts, reducing noise and helping on-call teams focus on real incidents. Keep includes workflow automation, bidirectional sync with ticketing systems, and a modern web dashboard.
Open-source feature flags and remote configuration
Flagsmith is an open-source feature flag and remote config platform with 15+ SDKs, a clean REST API, and simple Docker deployment. It supports boolean, multivariate, and string flags with segment-based targeting, A/B testing via flag variations, and environment-based workflows. Flagsmith provides a straightforward self-hosted alternative to LaunchDarkly with full API-first design under a BSD-3-Clause license.
Open-source feature flags and A/B testing platform
GrowthBook is an open-source platform for feature flags, A/B testing, and product experimentation. It includes Bayesian and frequentist statistics engines, warehouse-native analytics connecting to BigQuery, Snowflake, and Databricks, and SDKs for 15+ languages. GrowthBook supports targeting rules, gradual rollouts, and an MCP server for AI agent integration. Self-hostable via Docker.
Native Linux containers on macOS via Apple Virtualization
Apple Containerization is Apple's official Swift package for running Linux containers natively on macOS using the Virtualization framework. It provides near-native performance without Docker Desktop's heavyweight VM, supporting OCI images, container networking, and a command-line interface. The library leverages Apple Silicon hardware acceleration for minimal overhead container execution on Mac development machines.
Self-hosted SSH and server management platform
Termix is a self-hosted SSH and server management platform that provides a modern web-based terminal, connection management, SFTP file transfer, and multi-device sync without subscription fees. It serves as an open-source alternative to Termius, offering team collaboration features, connection sharing, and a clean interface for managing SSH connections across servers, all deployable via Docker.
Open-source zero-trust networking with WireGuard
NetBird is an open-source zero-trust networking platform that creates encrypted WireGuard overlay networks between devices without opening ports or configuring firewalls. It provides peer-to-peer connectivity with NAT traversal, access control policies, DNS management, and a web dashboard for team management. NetBird replaces traditional VPNs with a simpler, more secure mesh networking approach for self-hosted infrastructure and remote teams.
Full-stack monitoring with session replay and tracing
Highlight.io is an open-source full-stack monitoring platform that combines session replay, error monitoring, logging, and distributed tracing in a single tool. It captures user sessions as replayable videos alongside frontend errors, backend logs, and traces, letting teams see exactly what users experienced when issues occur. Self-hostable via Docker with a generous free tier on their managed cloud service.
High-performance WebAssembly runtime for cloud and AI
WasmEdge is a CNCF sandbox WebAssembly runtime optimized for cloud-native, edge, and AI workloads. It provides a lightweight, secure, and portable execution environment that is faster than containers and safer than native processes. WasmEdge supports LLM inference via LlamaEdge, serverless functions, microservices, and plugin extensions for networking, AI, and cryptography across Linux, macOS, and Windows.
OpenAI API management gateway for 100+ LLM providers
One API is a self-hosted LLM API gateway that provides a unified OpenAI-compatible interface for managing multiple model providers including OpenAI, Azure, Anthropic, Google, and dozens of Chinese providers. It handles load balancing, quota management, rate limiting, token tracking, and channel-based routing through a web dashboard. Widely adopted in the Chinese developer ecosystem with over 18,000 GitHub stars.
Open-source high-performance key/value datastore
Valkey is a Linux Foundation-backed open-source fork of Redis 7.2.4 under BSD 3-Clause license, created after Redis changed to restrictive licensing. It provides a drop-in Redis replacement for caching, message queues, and real-time data workloads. Valkey 9 adds JSON, Bloom filters, vector search, cluster scaling to 2000 nodes, and over one billion requests per second in benchmarks. Backed by AWS, Google, Oracle, and Ericsson.
Run GitHub Actions locally for fast feedback
Act is an open-source tool that runs GitHub Actions workflows locally using Docker containers that match GitHub's execution environment. It provides instant feedback on workflow changes without pushing to a repository, supports matrix builds, secret management, and artifact handling. Act can also replace Makefiles by using workflow files as task definitions, making it useful for both CI/CD development and local task automation across development teams.
YC-backed cloud deployment platform for Rust and Python applications
Shuttle is a YC-backed cloud deployment platform that simplifies deploying Rust and Python backend applications. Developers annotate their code with Shuttle macros to declare infrastructure needs like databases, caches, and secrets, and Shuttle provisions the resources automatically on deployment. Features instant deployment, automatic HTTPS, and infrastructure-from-code. Over 6,100 GitHub stars.
GitHub's Kubernetes controller for autoscaling GitHub Actions runners
actions-runner-controller (ARC) is GitHub's official Kubernetes controller for managing self-hosted GitHub Actions runners. It automatically scales runner pods up and down based on workflow demand, provisioning runners when jobs queue and terminating them when complete. Supports runner groups, custom runner images, and organization-level runner management. Over 6,100 GitHub stars.
Lightweight microVM execution layer for AI agent code sandboxing
Vercel Sandbox provides a lightweight microVM execution environment for running untrusted code generated by AI agents safely. It creates isolated sandboxes that prevent generated code from accessing the host system, network, or other processes. Designed for AI coding platforms that need to execute user or agent-generated code without security risks to the host infrastructure.
Nix-powered reproducible development environments
devenv uses Nix to create reproducible, declarative development environments that work consistently across machines. Define project dependencies, services, environment variables, and pre/post hooks in a single devenv.nix file. Supports automatic shell activation, process management for databases and services, and integration with direnv for seamless directory-based environment switching.
Fast and lightweight Docker Desktop alternative for macOS
OrbStack is a macOS application that replaces Docker Desktop with dramatically faster container and Linux VM management. It starts containers in seconds, uses significantly less CPU and memory than Docker Desktop, and provides native macOS integration with menu bar controls, file sharing, and network access to containers by name. Supports Docker, Kubernetes, and full Linux VMs.
CNCF Sandbox chaos engineering framework for Kubernetes resilience
Krkn is a CNCF Sandbox chaos engineering tool that tests Kubernetes cluster resilience by injecting controlled failures. It simulates pod kills, node failures, network partitions, CPU/memory pressure, and zone outages. Krkn-AI adds AI-powered scenario generation that suggests chaos experiments based on cluster topology. Supports CI/CD integration for automated resilience testing in deployment pipelines.
Drag-and-drop authentication flows with visual workflow builder
Descope is an authentication platform featuring a visual drag-and-drop flow builder for designing login and signup experiences. It supports passwordless authentication, social login, MFA, SAML SSO, and passkeys. Raised $53M Series A to build no-code identity workflows. SDKs for web, mobile, and backend with pre-built UI components that reduce auth implementation to minutes.
