Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.
Go to file
2022-08-31 16:38:32 +02:00
.github Ensure no uid values end up in resource delete cmd 2022-08-31 16:38:32 +02:00
3rdparty Update coreos-assembler patch to latest changes 2022-08-19 14:39:36 +02:00
access_manager AB#2222 replace unlicensed passwd package with own implementation 2022-07-25 15:10:29 +02:00
bootstrapper Feat/cilium strict mode2.0 (#25) 2022-08-31 15:37:07 +02:00
cli Feat/cilium strict mode2.0 (#25) 2022-08-31 15:37:07 +02:00
conformance Use 4 vCPU instances by default (#24) 2022-08-31 10:33:33 +02:00
debugd Remove cdbg-config.yaml (#26) 2022-08-31 12:25:27 +02:00
docs add gh cli commands for release (#30) 2022-08-31 14:00:22 +02:00
hack AB#2308 / AB#2317 constellation upgrade plan (#3) 2022-08-31 11:59:07 +02:00
image AB#2287 Public image sharing in Azure (#350) 2022-08-26 17:34:46 +02:00
internal AB#2350: Configurably enforce idkeydigest on Azure 2022-08-31 15:26:04 +02:00
joinservice AB#2333: Add AMD SNP-based attestation 2022-08-29 16:29:33 +02:00
kms Remove legacy build tags 2022-08-24 14:56:30 +02:00
mount Remove klog (#376) 2022-08-25 17:01:54 +02:00
operators/constellation-node-operator AB#2287 support community image IDs (#9) 2022-08-30 15:15:51 +02:00
proto Enable integrity protection on boot (#300) 2022-08-02 12:35:23 +02:00
state move nodestate and role 2022-08-29 16:07:55 +02:00
terraform/libvirt Switch to Azure CVMs 2022-08-19 14:39:36 +02:00
verify Use multiple loadbalancers on GCP 2022-08-23 18:11:20 +02:00
.dockerignore Rename coordinator to bootstrapper and rename roles 2022-07-14 17:25:18 +02:00
.gitignore Rename coordinator to bootstrapper and rename roles 2022-07-14 17:25:18 +02:00
.golangci.yml Fix tests and linting (#370) 2022-08-17 13:50:43 +02:00
CHANGELOG.md Feat/cilium strict mode2.0 (#25) 2022-08-31 15:37:07 +02:00
CMakeLists.txt AB#2327 move debugd code into internal folder (#403) 2022-08-26 11:58:18 +02:00
CODE_OF_CONDUCT.md Ref/readme (#375) 2022-08-19 14:54:11 +02:00
CONTRIBUTING.md Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00
Dockerfile.build Add clone3-workaround to bootstrapper build container 2022-08-10 17:17:23 +02:00
go.mod AB#2308 / AB#2317 constellation upgrade plan (#3) 2022-08-31 11:59:07 +02:00
go.sum AB#2308 / AB#2317 constellation upgrade plan (#3) 2022-08-31 11:59:07 +02:00
README.md Feat/cilium strict mode2.0 (#25) 2022-08-31 15:37:07 +02:00

Star us on GitHub — it motivates us a lot!

Welcome to Constellation!

Constellation is the first Confidential Kubernetes platform. It leverages confidential computing to isolate entire Kubernetes clusters and all workloads from the rest of the cloud infrastructure.

Constellation License E2E Test Azure E2E Test GCP Go Report Discord Twitter

Table of contents

What is Constellation?

From the inside, it's a fully featured, certified Kubernetes engine. From the outside, it's an end to end isolated, always encrypted stronghold. A Confidential Cloud in the public cloud. Constellation is open source and enterprise-ready, tailored for unleashing the power of confidential computing for all your workloads at scale.

Constellation product overview

For a brief introduction to the Confidential Kubernetes concept, read the introduction. For more elaborate overviews of Constellation, see the architecture documentation.

🛠 Features

Everything always encrypted

Everything verifiable

Performance and scale

  • High-available, enterprise-ready Kubernetes engine
  • Multi-master architecture
  • Stacked etcd topology
  • Dynamic cluster autoscaling

100% compatibility

🚀 Getting started

Constellation Shell

Sounds great, how can I try this?

Constellation can be deployed in minutes to your favorite infrastructure provider:

🔧 Install

🔒 Deploy

Profit

📖 Documentation

👥 Community

  • Got a question? Please get in touch via Discord or file an issue.
  • If you see an error message or run into an issue, please make sure to create a bug report.
  • Get the latest news and announcements on Twitter, LinkedIn or sign up for our monthly newsletter.
  • Visit our blog for technical deep-dives and tutorials.

🤝 Contributing

🗺 Roadmap

Constellation maintains a [public roadmap][TODO]. It gives a high-level view of the main priorities for the project, the maturity of different features, and how to influence the project direction.

Support & Enterprise Support

If you require a cluster with more than 8 vCPUs or need other services such as enterprise support: Contact us or find more information on the Constellation product page.

📃 License

TODO