Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.
Go to file
katexochen 7bbcc564bb Refactor id file interaction
* Use IP instead of endpoint in clusterIDsFile
* Move and rename validateEnpoint to addPortIfMissing
* Refactor clusterIDsFile handling in verify cmd
2022-08-23 18:11:20 +02:00
.github Add sed back to gcp image commmand (#392) 2022-08-23 16:47:51 +02:00
3rdparty Update coreos-assembler patch to latest changes 2022-08-19 14:39:36 +02:00
access_manager AB#2222 replace unlicensed passwd package with own implementation 2022-07-25 15:10:29 +02:00
bootstrapper increase helm install timeout (#381) 2022-08-19 13:28:16 +02:00
cli Refactor id file interaction 2022-08-23 18:11:20 +02:00
conformance Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00
debugd Fix naming in state file 2022-08-23 18:11:20 +02:00
docs Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00
hack Fix naming in state file 2022-08-23 18:11:20 +02:00
image Azure: switch default region to west us and replicate images to multiple regions 2022-08-19 14:39:36 +02:00
internal Fix naming in state file 2022-08-23 18:11:20 +02:00
joinservice Switch to Azure CVMs 2022-08-19 14:39:36 +02:00
kms Fix tests and linting (#370) 2022-08-17 13:50:43 +02:00
mount Fix tests and linting (#370) 2022-08-17 13:50:43 +02:00
operators/constellation-node-operator [node-operator] autoscalingstrategy-controller: improve test robustness (#372) 2022-08-17 18:38:54 +02:00
proto Enable integrity protection on boot (#300) 2022-08-02 12:35:23 +02:00
state disk-mapper: systemd cryptsetup unit for state disk 2022-08-19 14:39:36 +02:00
terraform/libvirt Switch to Azure CVMs 2022-08-19 14:39:36 +02:00
verify fix linter issues (#329) 2022-08-02 16:25:47 +02:00
.dockerignore Rename coordinator to bootstrapper and rename roles 2022-07-14 17:25:18 +02:00
.gitignore Rename coordinator to bootstrapper and rename roles 2022-07-14 17:25:18 +02:00
.golangci.yml Fix tests and linting (#370) 2022-08-17 13:50:43 +02:00
CHANGELOG.md Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00
CMakeLists.txt Fix tests and linting (#370) 2022-08-17 13:50:43 +02:00
CODE_OF_CONDUCT.md Ref/readme (#375) 2022-08-19 14:54:11 +02:00
CONTRIBUTING.md Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00
Dockerfile.build Add clone3-workaround to bootstrapper build container 2022-08-10 17:17:23 +02:00
go.mod replace github.com/google/go-attestation 2022-08-19 14:39:36 +02:00
go.sum replace github.com/google/go-attestation 2022-08-19 14:39:36 +02:00
README.md Apply feedback for readme (#389) 2022-08-23 13:46:06 +02:00

Star us on GitHub — it motivates us a lot!

Welcome to Constellation!

Constellation is the first Confidential Kubernetes platform. It leverages confidential computing to isolate entire Kubernetes clusters and all workloads from the rest of the cloud infrastructure.

Constellation License E2E Test Azure E2E Test GCP Go Report Discord Twitter

Table of contents

What is Constellation?

From the inside, it's a fully featured, certified Kubernetes engine. From the outside, it's an end to end isolated, always encrypted stronghold. A Confidential Cloud in the public cloud. Constellation is open source and enterprise-ready, tailored for unleashing the power of confidential computing for all your workloads at scale.

Constellation product overview

For a brief introduction to the Confidential Kubernetes concept, read the introduction. For more elaborate overviews of Constellation, see the architecture documentation.

🛠 Features

Everything always encrypted

Everything verifiable

Performance and scale

  • High-available, enterprise-ready Kubernetes engine
  • Multi-master architecture
  • Stacked etcd topology
  • Dynamic cluster autoscaling

100% compatibility

🚀 Getting started

Sounds great, how can I try this?

Constellation can be deployed in minutes to your favorite infrastructure provider:

🔧 Install

🔒 Deploy

Profit

📖 Documentation

👥 Community

  • Got a question? Please get in touch via Discord or file an issue.
  • If you see an error message or run into an issue, please make sure to create a bug report.
  • Get the latest news and announcements on Twitter, LinkedIn or sign up for our monthly newsletter.
  • Visit our blog for technical deep-dives and tutorials.

🤝 Contributing

🗺 Roadmap

Constellation maintains a [public roadmap][TODO]. It gives a high-level view of the main priorities for the project, the maturity of different features, and how to influence the project direction.

Support & Enterprise Support

If you require a cluster with more than 8 vCPUs or need other services such as enterprise support: Contact us or find more information on the Constellation product page.

📃 License

TODO