GitOps¶
Architectural Context
Detailed reference for GitOps in the context of Engineering Pipeline.
Standard Reference¶
- Config Sync Overview [COMMUNITY-TOOL]
- openshift.com: From Code to Production with GitOps, Tekton and ArgoCD π [COMMUNITY-TOOL]
- HashiCorp Waypoint [COMMUNITY-TOOL]
- jenkins-x.io [COMMUNITY-TOOL]
- thenewstack.io: What Is GitOps and Why It Might Be The Next Big Thing for DevOps [COMMUNITY-TOOL]
- geekflare.com: An Introduction to GitOps [COMMUNITY-TOOL]
- openshift.com: Our Favorite Things from GitOps Con at KubeCon EU π [COMMUNITY-TOOL]
- openshift.com: What is GitOps? π [COMMUNITY-TOOL]
- shipa.io: GitOps in the enterprise π [COMMUNITY-TOOL]
- shipa.io: GitOps meets AppOps [COMMUNITY-TOOL]
- redhat.com: An illustrated guide to GitOps [COMMUNITY-TOOL]
- jimangel.io: Self-Updating GitOps [COMMUNITY-TOOL]
- redhat.com: 3 rules for applying principles of GitOps to enterprise architecture [COMMUNITY-TOOL]
- containerjournal.com: The 4 Levels of GitOps Maturity [COMMUNITY-TOOL]
- As an ops engineer not too familiar with Git, you just need to know 6 commands [COMMUNITY-TOOL]
- redhat.com: How to use GitOps in your enterprise architecture strategy π [COMMUNITY-TOOL]
- redhat.com: Comparing GitOps implementation patterns: Pros and cons [COMMUNITY-TOOL]
- chrisshort.net: GitOps: An implementation of DevOps (abstracts) [COMMUNITY-TOOL] β - chrisshort.net: GitOps: An implementation of DevOps GitOps is a prescriptive way of implementing DevOps. You will not succeed in using GitOps if you haven't embraced some DevOps philosophies along the way.
- containerjournal.com: GitOps Workflows and Principles for Kubernetes [COMMUNITY-TOOL]
- harness.io: 6 Actionable GitOps Best Practices To Help You Get Started [COMMUNITY-TOOL]
- codefresh.io: How to Model Your Gitops Environments and Promote Releases between Them π [COMMUNITY-TOOL]
- harness.io: Managing the 'Git' in 'GitOps': 4 Ways to Structure Code in Your GitOps Repos π [COMMUNITY-TOOL]
- containerjournal.com: GitOps Workflows Expanding Beyond Kubernetes Clusters [COMMUNITY-TOOL]
- containerjournal.com: Best of 2022: GitOps: The Missing Link for CI/CD for Kubernetes [COMMUNITY-TOOL]
- loft.sh: GitOps + Kubernetes Explained [COMMUNITY-TOOL]
- github.blog: Applying GitOps principles to your operations [COMMUNITY-TOOL]
- searchitoperations.techtarget.com: GitOps pros grapple with Kubernetes configuration management. GitOps users seek ideal Kubernetes config tool π [COMMUNITY-TOOL]
- openshift.com: Announcing OpenShift GitOps [COMMUNITY-TOOL]
- openshift.com: OpenShift Pipelines and OpenShift GitOps are now Generally Available π [COMMUNITY-TOOL]
- cloudogu.com: Automation Assistants: GitOps tools in comparison π [COMMUNITY-TOOL]
- Anthos Config Management [COMMUNITY-TOOL]
- How Kubernetes Operators Fit into Platform Building and When Traditional IaC Isn't Enough [COMMUNITY-TOOL]
- weave.works: Weave Kubernetes Platform [COMMUNITY-TOOL]
- EntraExporter β 860 [COMMUNITY-TOOL]
- Announcing Private Preview: ArgoCD through Microsoft GitOps [COMMUNITY-TOOL]
- github: Flux β 6864 [ENTERPRISE-STABLE]
- itnext.io: Managing Kubernetes Secrets Securely with GitOps (SOPS + AWS' KMS + Flux) [COMMUNITY-TOOL]
- FossFLOW [COMMUNITY-TOOL]
- open-cluster-management.io [COMMUNITY-TOOL]
- github.com/stakater/Xposer β 32 [COMMUNITY-TOOL]
- Terraform Best Practices β 2469 [COMMUNITY-TOOL]
- Kubestack π [COMMUNITY-TOOL]
- learn.openshift.com: GitOps introduction [COMMUNITY-TOOL]
- ClusterClass: Experimental Feature for Streamlined Cluster Lifecycle Management' in Cluster API [COMMUNITY-TOOL]
- WKSctl - A New OSS Kubernetes Manager using GitOps [COMMUNITY-TOOL]
- gitops.tech π [COMMUNITY-TOOL]
- OpenGitOps.dev π [COMMUNITY-TOOL]
- github.com/topics/gitops π [COMMUNITY-TOOL]
- weave.works: Guide to GitOps [COMMUNITY-TOOL]
- weave.works: What Is GitOps? [COMMUNITY-TOOL]
- atlassian.com: Is GitOps the next big thing in DevOps? [COMMUNITY-TOOL]
- cloudbees.com: What is GitOps? [COMMUNITY-TOOL]
- Continuous GitOps, the way to do DevOps in Kubernetes [COMMUNITY-TOOL]
- opensource.substack.com: All You Need To Know About GitOps [COMMUNITY-TOOL]
- itnext.io: Continuous GitOps, the way to do DevOps in Kubernetes [COMMUNITY-TOOL]
- blog.container-solutions.com: GitOps: The Bad and the Ugly [COMMUNITY-TOOL]
- itnext.io: Principles, Patterns, and Practices for Effective Infrastructure' as Code [COMMUNITY-TOOL]
- medium: GitOps: Build infrastructure resilient applications π [COMMUNITY-TOOL]
- sufle.io: Adopting GitOps for Enhanced Operations [COMMUNITY-TOOL]
- medium: GitOps : The Next Big Thing for DevOps and Automation! [COMMUNITY-TOOL]
- thenewstack.io: Understanding GitOps: The Latest Tools and Philosophies [COMMUNITY-TOOL]
- samiyaakhtar.medium.com: GitOps Observability β Visualizing the journey' of a container [COMMUNITY-TOOL]
- clickittech.com: What is GitOps? π [COMMUNITY-TOOL]
- blog.container-solutions.com: 11 Reasons for Adopting GitOps [COMMUNITY-TOOL]
- opensource.com: GitOps vs. DevOps: What's the difference? π [COMMUNITY-TOOL]
- thenewstack.io: GitOps Use Cases You May Not Have Considered [COMMUNITY-TOOL]
- kumomind.medium.com: Should I consider the GitOps methodology? [COMMUNITY-TOOL]
- braindose.blog: 4 Key Characteristics for a Successful GitOps Implementation [COMMUNITY-TOOL]
- thenewstack.io: Misconfiguration Worries Grow [COMMUNITY-TOOL]
- weave.works: Managing Kubernetes with GitOps in a multi-cluster, multi-cloud' world [COMMUNITY-TOOL]
- viewnext.com: ΒΏQuΓ© es GitOps? [COMMUNITY-TOOL]
- thenewstack.io: Have Containers Will Travel: Why GitOps Is Essential for' Multicloud π [COMMUNITY-TOOL]
- weave.works: Put Your Security Worries to Rest with GitOps Operational Control' π [COMMUNITY-TOOL]
- thenewstack.io: Push vs. Pull in GitOps: Is There Really a Difference? [COMMUNITY-TOOL]
- developers.redhat.com: Why should developers care about GitOps? [COMMUNITY-TOOL]
- devsecops.co.in: GitOps Guide β What, Why and How? π [COMMUNITY-TOOL]
- en.sokube.ch: GitOps and the Millefeuille dilemma π [COMMUNITY-TOOL]
- octopus.com: How to structure your Git repository for DevOps automation [COMMUNITY-TOOL]
- testingclouds.wordpress.com: GitOps Demystified [COMMUNITY-TOOL]
- weave.works: Ops Automation - GitOps in the Modern Enterprise [COMMUNITY-TOOL]
- thenewstack.io: Security Will Be Instrumental for the Success of GitOps [COMMUNITY-TOOL]
- weave.works: Thereβs More to GitOps Than Meets the Eye [COMMUNITY-TOOL]
- thenewstack.io: A Look at GitOps for the Modern Enterprise π [COMMUNITY-TOOL]
- itnext.io: GitOps with Kubernetes π [COMMUNITY-TOOL]
- weave.works: Automating Kubernetes with GitOps (whitepaper) π [COMMUNITY-TOOL]
- devopslearners.com: What is GitOps? [COMMUNITY-TOOL]
- enterprisersproject.com: How to explain GitOps in plain English [COMMUNITY-TOOL]
- bunnyshell.com: GitOps vs. DevOps: Whatβs the Difference? π [COMMUNITY-TOOL]
- stevesmith.tech: GitOps is a placebo [COMMUNITY-TOOL]
- weave.works: The History of GitOps π [COMMUNITY-TOOL]
- opensource.com: How to get the most out of GitOps right now [COMMUNITY-TOOL]
- weave.works: Hardening Git for GitOps (white paper) [COMMUNITY-TOOL]
- magalix.com: GitOps 101: Whatβs It All About? [COMMUNITY-TOOL]
- thenewstack.io: How to Get the Most out of GitOps [COMMUNITY-TOOL]
- weave.works: Case Study: National Australia Bank Decreases Operational Overhead' with GitOps [COMMUNITY-TOOL]
- betterprogramming.pub: How GitOps Can Help Prevent Security Misconfigurations [COMMUNITY-TOOL]
- blogs.sap.com: Decentralized GitOps over multiple environments [COMMUNITY-TOOL]
- thenewstack.io: Application Deployment Is Faster with GitOps [COMMUNITY-TOOL]
- thenewstack.io: Wait, Do We Need to Hold Up on GitOps? [COMMUNITY-TOOL]
- thenewstack.io: CNCF Working Group Sets Some Standards for βGitOpsβ [COMMUNITY-TOOL]
- thenewstack.io: GitOps and the Cheap Cloud Myth [COMMUNITY-TOOL]
- developer.ibm.com: GitOps: Best practices for the real world [COMMUNITY-TOOL]
- thenewstack.io: Trusted Delivery: Policy-Based Compliance the GitOps Way [COMMUNITY-TOOL]
- thenewstack.io: Getting Started with GitOps [COMMUNITY-TOOL]
- medium: Stop Using Branches for Deploying to Different GitOps Environments' | ostis Kapelonis [COMMUNITY-TOOL]
- thenewstack.io: Can You GitOps Your APIs? [COMMUNITY-TOOL]
- weave.works: GitOps takes DevOps teams to higher levels of maturity [COMMUNITY-TOOL]
- linkedin.com pulse: WTH is GitOps? | Pavan Belagatti [COMMUNITY-TOOL]
- medium.com/@buraktahtacioglu: GitOps Fundamentals β CNCF Roadmap [COMMUNITY-TOOL]
- toolbox.com: Why Are Organizations Adopting GitOps for Continuous Deployment' in 2022? [COMMUNITY-TOOL]
- weave.works: The worldβs largest telcos are now embracing GitOps. Deutsche' Telekom explains why [COMMUNITY-TOOL]
- thenewstack.io: Kubernetes at Scale without GitOps Is a Bad Idea [COMMUNITY-TOOL]
- Dzone: 3 Steps to Developing a Successful GitOps Model [COMMUNITY-TOOL]
- linkedin pulse: GitOps vs. DevOps! | Pavan Belagatti [COMMUNITY-TOOL]
- piotrminkowski.com: Continuous Development on Kubernetes with GitOps Approach' π [COMMUNITY-TOOL]
- medium.com/codex: Points to Consider for Structuring Infrastructure as Code' Repositories [COMMUNITY-TOOL]
- medium.com/jumia-tech: Immutable Infrastructure & GitOps π [COMMUNITY-TOOL]
- medium.com/@alamdar.hussain0007: GitOps with Kubernetes [COMMUNITY-TOOL]
- thenewstack.io: KubeCon: 14,000 More Engineers Have Their GitOps Basics' Down [COMMUNITY-TOOL]
- developers.redhat.com: GitOps Cookbook: Kubernetes automation in practice [COMMUNITY-TOOL]
- devops.com: Declarative Compliance With Policy-as-Code and GitOps π [COMMUNITY-TOOL]
- dzone: The Essentials of GitOps π [COMMUNITY-TOOL]
- blog.devops.dev: GitOps β Fundamentals Part 0 [COMMUNITY-TOOL]
- thenewstack.io: The Next Kubernetes Management Frontier: Automation. Automation' Is No Longer a βNice to Haveβ ππ [COMMUNITY-TOOL]
- msrishty.medium.com: Traditional CI-CD vs gitops π [COMMUNITY-TOOL]
- blog.developersteve.com: GitOps for Kubernetes Canary Deployments [COMMUNITY-TOOL]
- thenewstack.io: GitOps as an Evolution of Kubernetes [COMMUNITY-TOOL]
- hackernoon.com: What Is GitOps And Why Is It (Almost) Useless? Part 1 [COMMUNITY-TOOL]
- devoriales.com: Exploring GitOps: Software and Infrastructure Management' Intro Video [COMMUNITY-TOOL]
- medium.com/containers-101: Using GitOps for Databases [COMMUNITY-TOOL]
- opensourceforu.com: Embracing Progressive Delivery In Kubernetes With GitOps [COMMUNITY-TOOL]
- medium.com/@ahmed.fathy.elayaat: What is GitOps? [COMMUNITY-TOOL]
- itnext.io: Necessary Culture Change with GitOps [COMMUNITY-TOOL]
- GitOps Working Group π [COMMUNITY-TOOL]
- github.com/open-gitops/project π β 1171 [COMMUNITY-TOOL]
- github.com/cloudogu/gitops-patterns β 359 [COMMUNITY-TOOL]
- github.com/cloudogu/gitops-playground#example-applications β 264 [COMMUNITY-TOOL]
- developers.redhat.com: Git best practices: Workflows for GitOps deployments' | Christian Hernandez π [COMMUNITY-TOOL]
- developers.redhat.com: How to set up your GitOps directory structure |' Christian Hernandez π [COMMUNITY-TOOL]
- devopsera.com: How to Structure Directories in a GitOps Repository for the' Best User-Friendliness and Flexibility [COMMUNITY-TOOL]
- blog.container-solutions.com: FluxCD, ArgoCD or Jenkins X: Which Is the' Right GitOps Tool for You? π [COMMUNITY-TOOL]
- slideshare: GitOps, Jenkins X & Future of CI/CD [COMMUNITY-TOOL]
- Tanka [COMMUNITY-TOOL]
- weave.works: Weave Kubernetes Platform (WKP) Unlocks Cross Team Collaboration' with Workspaces [COMMUNITY-TOOL]
- vimeo.com: Weaveworks - Hybrid and Multi-Cloud Strategies for Kubernetes' with GitOps [COMMUNITY-TOOL]
- glasskube.dev π [COMMUNITY-TOOL]
- github.com/glasskube/glasskube β 3491 [ENTERPRISE-STABLE]
- Flagger [COMMUNITY-TOOL]
- partlycloudy.blog: Release to Kubernetes like a Pro with Flagger [COMMUNITY-TOOL]
- GitOps for Kubernetes with Jenkins [COMMUNITY-TOOL]
- GitOps with Jenkins and Kubernetes [COMMUNITY-TOOL]
- How to Create a GitOps Workflow with Terraform and Jenkins [COMMUNITY-TOOL]
- portworx.com: Automating Kubernetes Data Management with GitOps & AutoPilot [COMMUNITY-TOOL]
- openshift-applier β 98 [COMMUNITY-TOOL]
- hashicorp.com: Using Waypoint Runners To Enable GitOps Workflows [COMMUNITY-TOOL]
- Weave GitOps Enterprise [COMMUNITY-TOOL]
- thenewstack.io: Weave GitOps Core Integrates Git with Kubernetes [COMMUNITY-TOOL]
- thenewstack.io: Weave GitOps Trusted Delivery: A Road to Kubernetes Sanity? [COMMUNITY-TOOL]
- dailymotion-oss.github.io/octopilot: Octopilot [COMMUNITY-TOOL]
- thenewstack.io: KubeStack: Towards Full-Stack GitOps [COMMUNITY-TOOL]
- medium.com/bumble-tech: GitOps for multi-cluster K8s environments π [COMMUNITY-TOOL]
- blog.openshift.com: Introduction to GitOps with OpenShift [COMMUNITY-TOOL]
- blog.openshift.com: is it too late to integrate GitOps? [COMMUNITY-TOOL]
- blog.openshift.com: OpenShift Authentication Integration with ArgoCD [COMMUNITY-TOOL]
- medium: GitOps with Istio, Tekton and Argo CD β on OpenShift 4 [COMMUNITY-TOOL]
- thenewstack.io: Red Hat Delivers Full GitOps CI/CD Built on Tekton and Argo [COMMUNITY-TOOL]
- redhat.com: Red Hat Makes DevOps a Reality with OpenShift GitOps and OpenShift' Pipelines π [COMMUNITY-TOOL]
- piotrminkowski.com: GitOps with Advanced Cluster Management for Kubernetes' π [COMMUNITY-TOOL]
- info.acloud.guru: Adopting GitOps for Kubernetes on AWS [COMMUNITY-TOOL]
- betterprogramming.pub: Applying DevOps to API Development for APIOps [COMMUNITY-TOOL]
- youtube.com: GitOps Guide to the Galaxy πππ [COMMUNITY-TOOL]
Application Delivery¶
Helm¶
Alternative Engines¶
- Nelm: A Helm Alternative for Kubernetes Deployments β 1072 [ADVANCED LEVEL] [ENTERPRISE-STABLE] β An innovative deployment engine integrated within the Werf workflow that functions as an alternative to native Helm release tracking. It resolves Helm's tracking limitations by ensuring strict live cluster validation and resource health monitoring.
Infrastructure as Code¶
Terraform Components¶
- AWS EKS Argo CD Terraform Component [COMMUNITY-TOOL] β Curator Insight: Enterprise-ready Terraform submodule designed to deploy, configure, and bootstrap Argo CD onto an existing AWS EKS cluster. Live Grounding: Standardizes complex security configuration flags, integrates smoothly with AWS IAM roles for service accounts (IRSA), and provisions preconfigured Helm-based releases.
GitOps (1)¶
Continuous Delivery¶
Argo CD¶
- argoproj.github.io: Argo CD - Declarative GitOps for Kubernetes [ADVANCED LEVEL] [DE FACTO STANDARD] β Argo CD is a declarative GitOps engine that automates Kubernetes deployments. By continually matching the live cluster state to git specifications, it guarantees robust security and rapid rollback features.
Infrastructure¶
GitOps (2)¶
Cluster Provisioning¶
- Weave Kubernetes System Control - wksctl β 389 [ADVANCED LEVEL] [LEGACY] β An early GitOps-driven Kubernetes cluster manager from Weaveworks that provisioned clusters from a declared state stored in git. Following Weaveworks' operational shutdown, this project is considered legacy but remains highly influential in GitOps control-loop architecture history.
- WKSctl: a Tool for Kubernetes Cluster Management Using GitOps [COMMUNITY-TOOL] β An InfoQ editorial piece analyzing the operational design of WKSctl. Explores how declarative machine and cluster definitions allowed users to bootstrap and reconcile nodes over SSH using Git as the source of truth.
Networking¶
Container Network Interface¶
CNI Plugins¶
- github: Weave Net - Weaving Containers into Applications β 6613 [EN CONTENT] [ADVANCED LEVEL] [ENTERPRISE-STABLE] [LEGACY] β Weave Net is a resilient container CNI designed to create peer-to-peer overlay networks without external databases or configurations. The project was officially archived by Weaveworks in 2024, prompting teams to migrate to more modern CNI plugins like Cilium and Calico.
Platform Engineering¶
CI-CD Security¶
Cloud Identity¶
- Avoiding Mistakes with AWS OIDC Integration Conditions [ADVANCED LEVEL] [DE FACTO STANDARD] β An in-depth security analysis detailing how to configure AWS OpenID Connect (OIDC) trust relationships correctly in GitHub Actions and other CI providers. Highlights major vulnerabilities arising from missing subject (sub) or audience (aud) validation and shows how to restrict access patterns safely.