Hosted tools/resources

Tools

CNCF Projects may freely select their own tools, produce their own documentation, and build their own websites. CNCF staff can support a project’s activities in this area and can provide recommendations and/or access to these tools for your project. We also have special relationships with many vendors that offer enterprise-level support.

• Zoom video conferencing Pro accounts for video meetings, recordings, and scheduling
• LastPass, 1Password, and Keybase to manage access to shared secrets
• Netlify for website hosting, DNS management, and improved workflow/automation around documentation and websites
• Discourse for community discussion (e.g., https://discuss.kubernetes.io)
• Slack for communication for all projects in the Cloud Native Computing Foundation Slack
• FOSSA for license and security scanning
• Snyk for container image scanning
• Lift for cloud-native and collaborative code analysis platform built for developers
• HackerOne for bug bounties
• Docker Hub for storing and managing container images
• LFX Security for source code security scanning and license compliance (white-labeled Snyk)
• Credly Custom badges powered by Credly (for example Linkerd Hero program)
• Scarf for advanced analytics for container & artifact distribution, package installation, and web traffic to source documentation. Get started.
• Dosu is a new AI teammate that lives in your GitHub repo, helping you respond to issues, triage bugs, and build better documentation (early access for CNCF projects).
• Peritus.ai for Machine Learning analytics and self-service for developer communities
• Curiefense for application layer protection (web/API) - WAF, DDoS, Rate limiting, and more
• CLOMonitor scans repositories daily, checking for adherence to a wide range of actions that are taken to ensure best practise providing a way for end users to assess the health of open source projects from multiple points of view
• CLOWarden an extensible, Git Ops-based access control service that controls and audits access to GitHub repositories for individuals and teams
• CLOTributor search engine for people looking for opportunites to become Cloud Native contributors
• GitVote a GitHub application that allows voting in issues and pull requests
• Gitpod cloud development environments are on-demand and pre-configured with all tools, libraries and dependencies required to be ready-to-code.

CNCF staff is familiar with and can help projects with, hosting on AWS, GCP, Oracle, and Azure clouds. In some cases, we have free credits ( AWS, GCP, Oracle) for free hosting. We also have our own Community Infrastructure Lab.

CI/CD

In the contemporary software landscape, virtually all major projects require heavy investment in continuous integration (CI) systems, which provide those projects with automated testing, dependency checking, security vetting, and so on. The CNCF covers CI needs for our hosted projects and allows those projects to select their own platforms; many CI systems are currently in use amongst CNCF projects, including, GitHub Actions and Prow, the Kubernetes-based (and thus CNCF-sponsored) CI system used for Kubernetes and even some non-CNCF projects.

Some projects are perfectly well served with fairly basic CI setups, whereas projects like Kubernetes and Envoy require significant financial and human resources.

When projects come to the CNCF requesting some form of CI help, we try to steer them towards GitHub Actions as much as possible. Projects that are part of the CNCF’s GitHub Enterprise Account gain access to larger resource runners and runners hosted across various environments using the GitHub Action Runner Controller.