IngressLabs navigation lockup Compact IngressLabs lockup with radial ingress mark and wordmark. IngressLabs IngressLabs

IngressLabs Open Source

Infrastructure for secure agent systems.

Open tools for Kubernetes operations, reproducible releases, hardened base images, and sandboxed execution.

GitHub organization Contact
IngressLabs system map

Featured projects

Small, focused infrastructure projects with release and operations discipline built in.

Go

ktl

Kubernetes-focused CLI for logs, Helm workflows, and BuildKit builds.

 Python

container-tools

Base image tooling with validation, evidence bundles, and release gates.

 Shell

k8s-release

Hermetic Kubernetes release builds with reproducibility and package evidence.

 Sandbox

firecracker-sandbox

Local Firecracker microVM workflows for isolated development and testing.

What we build for

IngressLabs projects start from operational proof: a build can be reproduced, an artifact can be traced, and an execution boundary can be inspected.

01 Reproducible builds
02 Audit evidence
03 Sandbox boundaries
04 Private runtime placement
IngressLabs security boundary diagram

Supply-chain posture is part of the product.

Release work should leave artifacts that operators can verify: checksums, SBOMs, provenance, reproducibility results, and signatures.

Checksums SBOMs Provenance Signatures

Follow the work.

The organization page is the source for public repositories, release notes, and security-focused infrastructure projects.

Open GitHub