devkube

devkube bootstraps feature-rich Kubernetes clusters locally using Docker or on a specified cloud provider on top of their managed Kubernetes offering.

Batteries included

• Registry - image distribution
• Dashboard - web-based user interface
• Cert-Manager- certificate management
• Ingress - NGINX Ingress Controller
• Grafana - data observability
• Prometheus - monitoring system
• Loki - log aggregation system
• Tempo - distributed tracing backend

Optional Add-ons

• Linkerd - Service Mesh
• Kyverno - Kubernetes Policy Management
• Falco - Kubernetes threat detection engine
• Trivy - Kubernetes workload vulnerability scanning

Cloud providers

• AWS (Alpha)
• Azure (Beta)
• DigitalOcean (Alpha)
• Linode (Alpha)
• Vultr (Alpha)

Prerequisites

• Docker - Container daemon
• Kind - Kubernetes in Docker, for local cluster

Install

MacOS / Linux with Homebrew

brew install adrianliechti/tap/devkube

Windows with Scoop

scoop bucket add adrianliechti https://github.com/adrianliechti/scoop-bucket
scoop install kubectl helm adrianliechti/devkube

Create Cluster

devkube create

Access Dashboard

devkube dashboard

Press "Skip" on the login page to access the dashboard as admin

Access Grafana

devkube grafana

Advanced Features

Ingress Controller

This CLI can forward traffic to the ingress controller and simulate DNS by adding entries in /etc/hosts temporary. It also allows to trust the pre-configured certificate authority (CA) to support TLS rules.

# Trust Platform CA (use --uninstall to remove)
devkube trust

# Tunnel Traffic (needs sudo)
devkube ingress

OpenTelemetry

flowchart LR
    A[App] -->|OTLP| B(Collector<br>telemetry.loop)
    B --> C{Forward}
    C -->|Logs| D[Loki<br>loki.loop]
    C -->|Traces| E[Tempo<br>tempo.loop]
    C -->|Metrics| F[Prometheus<br>prometheus.loop]
    D <--- G((Grafana))
    E <--- G
    F <--- G

Trivy

Trivy is a comprehensive security scanner. It is reliable, fast, extremely easy to use, and it works wherever you need it.

devkube enable trivy

Kyverno

Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies.

devkube enable kyverno

Falco

The Falco Project is a cloud native runtime security tool. Falco makes it easy to consume kernel events, and enrich those events with information from Kubernetes and the rest of the cloud native stack.

devkube enable falco

Linkerd

Linkerd is a service mesh for Kubernetes. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code.

devkube enable linkerd

Install CLI

MacOS / Linux with Homebrew

brew install linkerd

Windows with Scoop

scoop install linkerd

Open Dashboard

linkerd viz dashboard