94 Resources
Golang vault-plugins Libraries
Provides agent and server plugins for SPIRE to allow Tailscale node attestation.
SPIRE Tailscale Plugin ⚠️ this node attestation plugin relies on a Tailscale OIDC id-token feature, which is marked as Work-in-Progress and may not be
Golog is a logger which support tracing and other custom behaviors out of the box. Blazing fast and simple to use.
GOLOG Golog is an opinionated Go logger with simple APIs and configurable behavior. Why another logger? Golog is designed to address mainly two issues
VaultOperator provides a CRD to interact securely and indirectly with secrets stored in Hashicorp Vault.
vault-operator The vault-operator provides several CRDs to interact securely and indirectly with secrets. Details Currently only stage 1 is implemente
Some useful tools to help manage attachments in my local markdown projects.
Some useful tools to help manage attachments in my local markdown projects.
Kubectl plugin shows pod x node matrix with suitable colors to mitigate troubleshooting effort.
kubectl-pod-node-matrix WORK IN PROGRESS!! This plugin shows pod x node matrix with suitable colors to mitigate troubleshooting effort. Details Troubl
Vault Authentication Azure Auth Method Demo Application
This application demonstrates how applications hosted on Azure VMs can use managed identity to authenticate with HashiCorp Vault using the Azure Auth Method.
Jaken - A general purpose IRC bot featuring user acls and arbitrary plugins
Design principles This bot is based on the premise of a loosely coupling between
🔌 RR plugins interfaces and proto API
RoadRunner API RR API consists of 2 parts: Plugin interfaces. Proto API for the PHP clients, at the moment released as V1Beta. Plugins should depend o
Aws-console-plugin - The current HashiCorp Vault AWS Secret Engine currently supports the creation of short lived API keys using the IAM User
aws-console-plugin Background The current HashiCorp Vault AWS Secret Engine curr
A Tor package updater and runner as an I2P Plugin
i2p.plugins.tor-updater A Tor package updater and runner as an I2P Plugin. This plugin is still being changed rapidly but it should be usable on most
Certificator - The tool that requests certificates from ACME supporting CA, solves DNS challenges, and stores certificates in Vault
certificator The tool that requests certificates from ACME supporting CA, solves
Script to generate a web page for your Aliucord plugins repo.
Aliucord-Store Script used to generate a website front-end for your plugins. Usage: go run cmds/store/main.go -dir string Your repository's
Vault mock - Mock of Hashicorp Vault used for unit testing
vault_mock Mock of Hashicorp Vault used for unit testing Notice This is a person
Go C-based plugins loader
dlplugin This package is based on the official Go plugin package, but modified to use any dynamic C libraries (Only Linux, FreeBSD, and macOS). It pro
Golang project standard layout generator
inizio Golang project standard layout generator inizio is a simple binary, which allows generating/bootstrapping golang project with predefined layout
Loc2Midi - This project uses realtime location data to control audio effects plugins in order to simulate movement throughout a virtual soundscape
Visualization of coordinate math Video demonstration of project This project use
A plugin for Hashicorp Vault to create ephemeral users and API tokens for Jenkins CI
vault-plugin-secrets-jenkins This is a backend plugin to be used with Hashicorp Vault. This plugin generates ephemeral Jenkins Users and API tokens. v
This plugins watches and builds the source files continiusly in-memory
Caddy Esbuild plugin This plugins watches and builds the source files continiusly in-memory. It includes a etag to cache in the browser to save bandwi
Create @tailscale authentication tokens using vault
Vault Secrets Plugin - Tailscale Vault secrets plugins to simplying creation, ma
A simple, secure self-destructing message service, using HashiCorp Vault product as a backend
sup3rS3cretMes5age! A simple, secure self-destructing message service, using Has
Example of a cinema microservice written in Golang deployed on Hashicorp Stack tools
Cinemas Microservice in Go (Project) (You are in Step-1) This project consist of the following components: . ├── base_docker_image ├── deploy │ ├──
create @auth0 management api tokens
Vault Secrets Plugin - Auth0 Vault secrets plugins to simplying creation, management, and revocation of auth0 management API tokens. Usage Setup Endpo
This is kubectl-plugins repository
golang CLI Template golang project template for building CLI Setup Setup by Command git clone https://github.com/mpppk/cli-template your_awesome_tool
Secure SDK/vault for personal records/PII built to comply with GDPR
Databunker Databunker is a network-based, self-hosted, GDPR compliant, secure vault for personal data or PII: https://databunker.org/ Project demo is
Go SDK for ID Analyzer Core API, DocuPass and Vault
ID Analyzer Go SDK This is a Go SDK for ID Analyzer Identity Verification APIs, though all the APIs can be called with without the SDK using simple HT
Integrates Spiffe and Vault to have secretless authentication
SPIFFE Vault Integrates SPIFFE SVID authentication with Hashicorp Vault to retrieve a VAULT_TOKEN. Example usecases Read secrets from Hashicorp Vault
register kubernetes global scheme with plugins
Global Scheme Demo 以插件的形式注册任何资源的 scheme 到 global scheme 中,主要用于 CRD 资源的结构注册 实际这种资源注册方式,不仅仅可以用于注册资源的 scheme,对于 cr 来说,我们可以在业务层抽象出接口,然后由具体的 cr 插件来实现,通过注册到
Installs containerd on Windows, optionally with default CNI plugins
containerd-installer Installs containerd on Windows, optionally with default CNI plugins Usage NAME: containerd-installer.exe - Install containerd
Simple command line tool helper to integrate with hashicorp vault & github api
Overview CI/CD Toolkit is small command line tool helper to integrate with vault secret kv management & github api We can use simple command to genera
Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.
Consul Website: https://www.consul.io Tutorials: HashiCorp Learn Forum: Discuss Consul is a distributed, highly available, and data center aware solut
Vaku is a CLI and API for running path- and folder-based operations on the Vault Key/Value secrets engine.
Vaku Vaku is a CLI and API for running path- and folder-based operations on the Vault Key/Value secrets engine. Vaku extends the existing Vault CLI an
An ATNA (Audit Trail and Node Authentication) Cloud Backup Utility
ATNA Vault ATNA Vault allows you to maintain a secure long-term archive for all your IHE audit messages. IHE vendors who can provide "filter forward"
Kong Api Gateway Plugins for golang
Prerequisites: Windows Docker. Build Command: docker build -t kong-plugins . Run Command: docker run -ti --rm --name kong-plugins -e "KONG_DATABASE=of
WIP Go Thing to download HCP Vault Logs
Example Go Script to pull HCP Vault Audit Logs WARNING: This makes use of unstable preview APIs which could change at any time! USE AT YOUR OWN PERIL
🦥 kubectl plugin to easy to view pod
kubectl-lazy Install curl -sSL https://mirror.ghproxy.com/https://raw.githubusercontent.com/togettoyou/kubectl-lazy/main/install.sh | bash Or you can
Plugin which makes tmux work and feel like i3wm
Tmux Tilish This is a plugin that makes tmux behave more like a typical dynamic window manager. It is heavily inspired by i3wm, and most keybindings a
recursively list secrets from Vaults KV2 engine
vkv recursively list secrets from Vaults KV2 engine Installation Find the corresponding binaries, .rpm and .deb packages in the release section. Authe
A tool for secrets management, encryption as a service, and privileged access management
Deploy HCP Vault & AWS Transit Gateways via Terraform https://medium.com/hashicorp-engineering/deploying-hcp-vault-using-the-hcp-terraform-provider-5e
Small helper to bridge between Vault and AWS Credential Process.
vault-aws-credential-helper The Vault AWS Credential Helper is a component that can be injected into a task environment and be used as a credential he
vault-plugin-auth-usertotp is an auth method plugin for HashiCorp Vault.
vault-plugin-auth-usertotp is an auth method plugin for HashiCorp Vault. Create user accounts, add TOTP tokens (user supplied pin + totp), and have peace of mind using 2FA.
A CLI tool to display all dependencies or dependents of an object in a Kubernetes cluster.
kube-lineage A CLI tool to display all dependencies or dependents of an object in a Kubernetes cluster. Usage $ kube-lineage clusterrole system:metric
A system written in Golang to help ops team to automate the process of mapping Vault groups to LDAP Groups.
A system written in Golang to help ops team to automate the process of mapping Vault groups to LDAP Groups. This utility automatically adds LDAP Groups' members to the corresponding Vault Groups.
Command line tools for creating and compiling JavaScript Minecraft plugins.
@customrealms/cli CustomRealms command-line tools for setting up and compiling JavaScript Minecraft plugins. Installation Install the CLI on your comp
docker plugin use vault as secret provider.
docker plugin vault docker secret plugin for vault provider how to build docker plugin rm -fr plugin/rootfs/.dockerenv plugin/rootfs/* docker build -
Copy your HashiCorp Vault secrets to a file
Vault Backup ⚠️ Check the oficial way to backup your HashiCorp Vault. Create a backup file of all HashiCorp Vault kv2 secrets. ./vault-backup -help
Secret management toolchain
Harp TL;DR. Why harp? Use cases How does it work? Like a Data pipeline but for secret Immutable transformation What can I do? FAQ License Homebrew ins
Sidecar container for injecting secrets into configuration files from Hashicorp Vault
talebearer noun A person who spreads scandal or tells secrets; gossip Note This code is not being actively developed, and has not seen substantial cha
Split multiple Kubernetes files into smaller files with ease. Split multi-YAML files into individual files.
kubectl-slice: split Kubernetes YAMLs into files kubectl-slice is a neat tool that allows you to split a single multi-YAML Kubernetes manifest into mu
go program that installs and customizes ohmyzsh tmux vim via various plugins and other nice to haves
Pimp-My-Shell Table of Contents Pimp-My-Shell Install Usage About Resources Tmux Hotkeys VIM Hotkeys Adjusting Custom Aliases Mac Fix Terminal bind ke
Split multiple Kubernetes files into smaller files with ease. Split multi-YAML files into individual files.
Split multiple Kubernetes files into smaller files with ease. Split multi-YAML files into individual files.
Terraform credentials helper for Vault
Terraform Credentials from HashiCorp Vault terraform-credentials-vault is a Terraform "credentials helper" plugin that allows providing credentials fo
An operator to support Haschicorp Vault configuration workflows from within Kubernetes
Vault Config Operator This operator helps set up Vault Configurations. The main intent is to do so such that subsequently pods can consume the secrets
Support converting Vault Secrets to diffrent formats.
Vault Converter Support converting Vault Secrets to different formats. vault-converter is a tool designed to synchronize variables from local to Vault
An operator to support Haschicorp Vault configuration workflows from within Kubernetes
Vault Config Operator This operator helps set up Vault Configurations. The main intent is to do so such that subsequently pods can consume the secrets
A kubectl plugin for finding decoded secret data with productive search flags.
kubectl-secret-data What is it? This is a kubectl plugin for finding decoded secret data. Since kubectl outputs base64-encoded secrets basically, it m
Kubectl plugin to run curl commands against kubernetes pods
kubectl-curl Kubectl plugin to run curl commands against kubernetes pods Motivation Sending http requests to kubernetes pods is unnecessarily complica
Go Support Code For Writing Falcosecurity Plugins
plugin-sdk-go Go package to facilitate writing Falco/Falco libs plugins. Before using this package, review the developer's guide which fully documents
Detecctor is a ⚡ fast, fully customizable 💗 monitoring platform. It uses Telegram as a notification 📥 service
Detecctor is a ⚡ fast, fully customizable 💗 monitoring platform. It uses Telegram as a notification 📥 service. The main components are a TCP server, MongoDB and multiple clients.
This plugin enhances Hashicorp Vault Service with cryptographic operations to create, import and sign using different type of keypairs and Ethereum wallets, including signing operation for public ethereum transaction, EEA and Quorum
Quorum Hashicorp Vault plugin The Quorum plugin enhances Hashicorp Vault Service with cryptographic operations under Vault engine, such as: Create and
The plugins of opentracing-go.
OpenTracing-Go-Plugins The plugins of opentracing-go. Installation go get -u github.com/yuewokeji/opentracing-go-plugins Configuration Initialize a tr
A plugin that turn hashicorp vault into blockchain wallet.
dq-vault - Hashicorp vault BTC/ETH plugin This vault plugin stores a user's mnemonic inside vault in an encrypted manner. The plugin uses this stored
A kubectl plugin for finding decoded secret data with productive search flags.
kubectl-secret-data What is it? This is a kubectl plugin for finding decoded secret data. Since kubectl only outputs base64-encoded secrets, it makes
🎉 An awesome version control tool for protoc and its related plugins.
❤️ PowerProto is actively maintained! Any questions in use can be directly raised issue, I will respond to you as fast as possible. If you think the p
A command tool to help user install oh-my-zsh plugins fast in a comfortable way
zshx A command tool to help user install oh-my-zsh plugins fast in a comfortable way. in other way, it is a zsh plugin package manager. How to use the
vault-plugin-auth-usertotp is an auth method plugin for HashiCorp Vault
vault-plugin-auth-usertotp is an auth method plugin for HashiCorp Vault. Create user accounts, add TOTP tokens (user supplied pin + totp), and have peace of mind using 2FA.
sops is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP
sops is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP. (demo)
Tool for monitoring network devices (mainly using SNMP) - monitoring check plugin
Thola Description A tool for monitoring network devices written in Go. It features a check mode which complies with the monitoring plugins development
A helm v3 plugin to adopt existing k8s resources into a new generated helm chart
helm-adopt Overview helm-adopt is a helm plugin to adopt existing k8s resources into a new generated helm chart, the idea behind the plugin was inspir
Faster way to switch between kubeconfig files.
kubectl-cf Faster way to switch between kubeconfig files (not contexts). Usage of kubectl-cf: cf Select kubeconfig interactively cf [co
Simplify Kubernetes Secrets Management with Dockhand Secrets Operator
dockhand-secrets-operator Secrets management with GitOps can be challenging in Kubernetes environments. Often engineers resort to manual secret creati
Command kube-tmux prints Kubernetes context and namespace to tmux status line.
kube-tmux Command kube-tmux prints Kubernetes context and namespace to tmux status line.
A helm v3 plugin to get values from a previous release
helm-val helm-val is a helm plugin to fetch values from a previous release. Getting started Installation To install the plugin: $ helm plugin install
A lightweight Vault client module written in Go, with no dependencies, that is intuitive and user-friendly
libvault A lightweight Hashicorp Vault client written in Go, with no dependencies. It aims to provide an intuitive, simple API that is easy to use. Ju
A k8s vault webhook is a Kubernetes webhook that can inject secrets into Kubernetes resources by connecting to multiple secret managers
k8s-vault-webhook is a Kubernetes admission webhook which listen for the events related to Kubernetes resources for injecting secret directly from sec
Extend KIND networking capabilities with plugins using the KIND API
kind-networking-plugins Plugins to extend KIND networking capabilities with plugins using the KIND API These plugins were used for the Kubecon EU 2021
A flexible commandline tool for template rendering. Supports lots of local and remote datasources.
Read the docs at docs.gomplate.ca, chat with developers and community in the #gomplate channel on Gophers Slack gomplate is a template renderer which
Teller - the open-source universal secret manager for developers
A secrets management tool for developers built in Go - never leave your command line for secrets.
create boilerplate structure for neovim plugins
boilit Boil yourself a sweet plugin Installation • Usage Ain't nobody got time to create plugin directories: boilit yourself! boilit creates boilerpla
Consul Load-Balancing made simple
Notes From release 1.5.15 onward, fabio changes the default GOGC from 800 back to the golang default of 100. Apparently this made some sense back in t
Kubectl plugin to ease sniffing on kubernetes pods using tcpdump and wireshark
ksniff A kubectl plugin that utilize tcpdump and Wireshark to start a remote capture on any pod in your Kubernetes cluster. You get the full power of
A tool for secrets management, encryption as a service, and privileged access management
Vault Please note: We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault, please respo
CoreDNS is a DNS server that chains plugins
CoreDNS is a DNS server/forwarder, written in Go, that chains plugins. Each plugin performs a (DNS) function. CoreDNS is a Cloud Native Computing Foun
Kubernetes plugins for EdgeGallery
Plugins 介绍 the edgegallery plugins repo 软件架构 软件架构说明 安装教程 xxxx xxxx xxxx 使用说明 xxxx xxxx xxxx 参与贡献 Fork 本仓库 新建 Feat_xxx 分支 提交代码 新建 Pull Request 码云特技 使用
Consul Load-Balancing made simple
Notes From release 1.5.15 onward, fabio changes the default GOGC from 800 back to the golang default of 100.
Kubernetes Operator for a Cloud-Native OpenVPN Deployment.
Meerkat is a Kubernetes Operator that facilitates the deployment of OpenVPN in a Kubernetes cluster. By leveraging Hashicorp Vault, Meerkat securely manages the underlying PKI.
vault-init is a small utility for automating the initialization and unsealing of HashiCorp Vault.
vault-init vault-init is a small utility for automating the initialization and unsealing of HashiCorp Vault. It draws inspiration from kelseyhightower
Consul Load-Balancing made simple
Notes From release 1.5.15 onward, fabio changes the default GOGC from 800 back to the golang default of 100. Apparently this made some sense back in t
Go development plugin for Vim
vim-go Features This plugin adds Go language support for Vim, with the following main features: Compile your package with :GoBuild, install it with :G
🌰 encrypt/decrypt using ssh keys
ssh-vault 🌰 encrypt/decrypt using ssh private keys Documentation https://ssh-vault.com Usage $ ssh-vault -h Example: $ echo "secret" | ssh-vault -u
Package for writing Nagios/Icinga/et cetera plugins in Go (golang)
nagiosplugin Package for writing Nagios/Icinga/et cetera plugins in Go (golang). Documentation See http://godoc.org/github.com/olorin/nagiosplugin. Us
Secure storage for personal records built to comply with GDPR
Databunker Databunker is a Personally Identifiable Information (PII) Data Storage Service built to Comply with GDPR and CCPA Privacy Requirements. Pro
🌰 encrypt/decrypt using ssh keys
ssh-vault 🌰 encrypt/decrypt using ssh private keys Documentation https://ssh-vault.com Usage $ ssh-vault -h Example: $ echo "secret" | ssh-vault -u
Composable, observable and performant config handling for Go for the distributed processing era
Konfig Composable, observable and performant config handling for Go. Written for larger distributed systems where you may have plenty of configuration