Akihiro Suda's repositories
instance-per-pod
Create a dedicated IaaS instance per Pod to mitigate container breakout (including CPU vulnerabilities depending on the instance type)
podman-network-create-for-rootless-podman
`podman network create` for Rootless Podman
critest-rootless-cgroup2
critest example (rootless+cgroup2)
anbox-android-images-mirror
Mirror of https://build.anbox.io/android-images
go-list-func
List up functions in a Go package
x-sys-unix-auto-eintr
golang.org/x/sys/unix with automatic EINTR handler
anbox
Anbox is a container-based approach to boot a full Android system on a regular GNU/Linux system
build-templates
A library of build templates.
catalog
Catalog of shared Tasks and Pipelines.
cbi
Container Builder Interface for Kubernetes with several backends (Docker, img, BuildKit, Buildah...)
crun
A fast and lightweight fully featured OCI runtime and C library for running containers
docker-library-docs
Documentation for Docker Official Images in docker-library
faasd
faasd - serverless with containerd and CNI 🐳
go-connections
Utility package to work with network connections
go-digest
Common digest package used across the container ecosystem
go-units
Parse and print size and time units in human-readable format
gocapability
Utilities for manipulating POSIX capabilities in Go.
img
Standalone, daemon-less, unprivileged (with FUSE) Dockerfile and OCI compatible container image builder.
kube-moby-integration
[POC] Moby Integration Test Runner for Kubernetes
kubernetes-release
Release infrastructure for Kubernetes and related components
makisu
Fast and flexible Docker image building tool, works in unprivileged containerized environments like Mesos and Kubernetes.
moby-tsc
Moby Technical Steering Committee
parson
Lightweight JSON library written in C.
slirpnetstack
slirp4netns implementation using gvisor/netstack
trivy
A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
vndr
Stupid vendoring tool