# go

Autonomous Kubernetes and GPU infrastructure optimization

ScaleOps provides autonomous real-time management of Kubernetes and GPU infrastructure, reducing cloud costs by up to 80 percent without manual configuration. Backed by 130 million in Series C funding at an 800 million dollar valuation, it serves enterprises including Adobe, Wiz, DocuSign, and Salesforce. The platform continuously rightsizes pods, optimizes replicas, manages nodes, and allocates GPUs based on live workload demand rather than static configurations.

Google's official Agent Development Kit for building AI agents in Go

adk-go is Google's official Agent Development Kit for the Go programming language, providing the tools and abstractions needed to build production AI agents. It supports tool calling, multi-turn conversations, structured outputs, and integration with Google's Gemini models. With 7,300 GitHub stars and Apache 2.0 license, it brings first-class AI agent development capabilities to the Go ecosystem.

Beautiful terminal AI coding agent from the Charmbracelet team

crush is an AI-powered coding agent for the terminal built by Charmbracelet, the team behind Bubble Tea, Glow, and other beloved CLI tools. It brings the same attention to terminal UX design to AI-assisted development with features for code generation, refactoring, file editing, and shell command execution. With over 22,000 GitHub stars and the Charmbracelet design philosophy, crush delivers an agentic coding experience that feels native to the terminal workflow developers already use.

Go implementation of the Model Context Protocol SDK

mcp-go is a Go implementation of the Model Context Protocol, providing both server and client SDKs for building MCP integrations in Go. It supports stdio and SSE transports, resource management, tool registration, and prompt templates. Designed for Go developers building MCP servers for DevOps tools, CLI applications, and backend services. Over 8,000 GitHub stars.

Kubernetes-native cloud infrastructure control plane

Crossplane is a CNCF Graduated open-source project that extends Kubernetes to manage cloud infrastructure through declarative APIs. Platform teams compose custom infrastructure abstractions as Compositions and publish them as self-service APIs. It provisions resources across AWS, Azure, GCP, and 200+ providers directly from kubectl. Used by 450+ organizations with 11,000+ GitHub stars.

Terraform pull request automation via GitHub/GitLab comments

Atlantis is a self-hosted Terraform pull request automation tool that runs plan and apply operations triggered by GitHub, GitLab, Bitbucket, or Azure DevOps comments. Type 'atlantis plan' on a PR to see infrastructure changes, then 'atlantis apply' to deploy. 7,800+ GitHub stars, Apache 2.0 licensed. Widely adopted as the standard for GitOps-style Terraform workflows, with locking to prevent concurrent modifications to the same resources.

Cloud cost estimates for Terraform changes in pull requests

Infracost shows cloud cost changes directly in pull requests before Terraform resources are deployed. It calculates the cost impact of infrastructure changes across AWS, Azure, and GCP, displaying diffs in GitHub, GitLab, Bitbucket, and Azure DevOps comments. 12,200+ GitHub stars, Apache 2.0 licensed. Used by GitLab, HelloFresh, JPMorgan Chase, BMW, and Accenture. Integrates with CI/CD pipelines to catch cost surprises before they hit production.

Open-source GraphQL Federation platform replacing Apollo GraphOS

WunderGraph Cosmo is an open-source GraphQL Federation platform with a schema registry, composition checks, and high-performance Go router. It has overtaken Apollo GraphOS as the dominant federation solution, with 87% of GraphQL Federation adopters using Cosmo versus Apollo's decline from 57% to 28%. Supports Federation v1 and v2, provides CI/CD schema validation, and includes a managed cloud option. Apache 2.0 licensed with active enterprise adoption.

Open-source Kubernetes security platform for risk analysis and compliance

Kubescape is a CNCF-backed open-source Kubernetes security platform that scans clusters, manifests, and container images for vulnerabilities, misconfigurations, and compliance violations. It checks against NSA-CISA, MITRE ATT&CK, and CIS benchmarks, integrates into CI/CD pipelines, and provides runtime threat detection via eBPF. Supports SBOM generation and vulnerability scanning. Used by ARMO with growing enterprise adoption in cloud-native security.

Pipe terminal output to LLMs with beautiful markdown rendering

Mods by Charmbracelet is an AI-powered CLI tool that lets you pipe any shell output directly to LLMs with beautiful markdown rendering in the terminal. It follows Unix philosophy — composable with existing tools via stdin/stdout pipes. Supports OpenAI, Anthropic, Ollama, and other providers with bring-your-own-key model. 9,800+ GitHub stars, MIT license. Part of the Charm ecosystem known for gorgeous terminal UIs including Bubble Tea, Lip Gloss, and Glow.

Generate production-ready SDKs from API specifications

Stainless generates idiomatic, production-ready client SDKs from OpenAPI specifications with features like automatic pagination, retries, streaming, and proper error handling baked in. Used by Anthropic, OpenAI, Cloudflare, and Lithic to maintain their official SDKs. Produces TypeScript, Python, Go, Java, and Kotlin SDKs that match hand-written quality with automated maintenance and versioning.

Generate SDKs and API documentation from OpenAPI specs

Fern is a platform that generates idiomatic client SDKs and beautiful API documentation from OpenAPI specifications. It produces type-safe SDKs for TypeScript, Python, Java, Go, Ruby, and C# with features like pagination, retries, and streaming built in. The documentation includes API reference, guides, and an AI-powered search assistant. Used by companies like Cohere, ElevenLabs, and Merge.

Natural language scripting for LLM-system interaction

GPTScript is an Apache 2.0 licensed framework with 3,300+ GitHub stars that enables natural language scripting where LLMs interact with local systems, APIs, and tools through simple prompt definitions. It supports multiple model providers including OpenAI-compatible APIs and local models, providing a lightweight approach to building AI agents that can execute CLI commands, call APIs, and process files.

Auto-generate SDKs and docs from backend routes

Speakeasy uses AI to parse backend API routes and auto-generate production-ready SDKs in multiple languages alongside OpenAPI documentation. It ensures that client libraries and documentation always match the current backend implementation, eliminating the drift between API code, SDK behavior, and documentation that plagues most API-first teams as their services evolve.

Secret scanning across Git history and cloud storage

TruffleHog by Truffle Security scans for high-entropy strings and secrets across GitHub history, S3 buckets, and other data stores with 15,000+ GitHub stars. It goes beyond simple pattern matching by verifying whether discovered credentials are actually active and valid, significantly reducing false positives and helping teams prioritize remediation of truly exposed secrets.

Open-source secret detection for Git repositories

Gitleaks is an open-source SAST tool with 16,000+ GitHub stars that detects hardcoded secrets like passwords, API keys, and tokens in Git repositories. It scans both current code and full Git history to find accidentally committed credentials, integrating into CI/CD pipelines as a pre-commit hook or pipeline step to prevent secrets from ever reaching remote repositories.

Single-binary workflow engine with zero dependencies

Dagu is a local-first, self-contained workflow engine that runs as a single binary under 128MB of memory with no database, message broker, or runtime dependencies. Workflows are defined in declarative YAML and can orchestrate shell commands, Docker containers, SSH sessions, HTTP calls, and SQL queries. It includes a built-in Web UI with DAG visualization and Gantt charts, plus an AI agent that creates and debugs workflows from natural language via Slack or Telegram.

Durable execution for fault-tolerant workflows

Temporal is an open-source durable execution platform that ensures application code runs to completion regardless of failures or outages. It captures workflow state at every step, enabling seamless recovery without custom retry logic. With SDKs for Go, Java, Python, TypeScript, and .NET, Temporal powers mission-critical orchestration at Netflix, Nvidia, and other enterprises. Valued at $5B, it replaces fragile cron jobs, state machines, and saga patterns with resilient workflow-as-code.

Ultra-fast JavaScript bundler written in Go

esbuild is a JavaScript bundler written in Go with 38K+ GitHub stars that runs 10-100x faster than traditional bundlers like Webpack. Handles JavaScript, TypeScript, JSX, CSS bundling, and minification with near-instant build times. Used as the build engine inside Vite for production builds. Features tree shaking, code splitting, source maps, and a plugin API. Minimal configuration required — most projects need zero config files. Single binary with no JavaScript dependencies.

Single-binary open-source backend

PocketBase is an open-source backend in a single Go binary with 44K+ GitHub stars providing a real-time database, authentication, file storage, and admin dashboard. No dependencies, no Docker required — just download and run. Features collection-based data modeling, REST API, real-time subscriptions, OAuth2 authentication, file uploads with thumbnails, and a built-in admin UI. Extends with custom Go code or JavaScript hooks. Ideal for prototyping, MVPs, and small-to-medium applications.

Enterprise secrets management and data protection

HashiCorp Vault is an open-source secrets management tool with 32K+ GitHub stars providing centralized management of tokens, passwords, certificates, API keys, and encryption keys. Features dynamic secrets that are generated on-demand with automatic revocation, encryption as a service, identity-based access with fine-grained policies, and audit logging. Supports 100+ integrations including AWS, GCP, Azure, Kubernetes, and databases. The enterprise standard for secrets management at scale.

GPU-accelerated open-source vector database

Milvus is an open-source vector database with 33K+ GitHub stars for billion-scale similarity search. Features GPU-accelerated indexing, hybrid search combining vector and scalar filtering, multi-tenancy, partitioning, and horizontal scaling. Supports HNSW, IVF, DiskANN, and GPU index types. SDKs for Python, Java, Go, and Node.js. Zilliz Cloud offers a managed version. A production-grade foundation for RAG pipelines and recommendation systems at enterprise scale.

Terminal dashboard for Kubernetes

K9s is an open-source terminal UI with 28K+ GitHub stars for managing Kubernetes clusters interactively. Provides a real-time dashboard with resource navigation, log tailing, shell access to pods, port forwarding, and RBAC visualization — all from the terminal without kubectl commands. Features Vim-style navigation, custom resource views, plugin system, cluster metrics, and multi-cluster support. Dramatically reduces the complexity of daily Kubernetes operations for developers and SREs.

Open-source vector database for AI-native applications and semantic search.

Weaviate is an open-source vector database purpose-built for AI applications. Supports vector, keyword, and hybrid search with built-in vectorization modules for OpenAI, Cohere, Hugging Face, and more. Used for RAG pipelines, semantic search, recommendation engines, and multimodal search. Written in Go for high performance.