Stakpak is a fully open source DevOps agent written in Rust that helps developers secure, deploy, and operate production infrastructure from the terminal or in GitHub Actions You can run it locally, bring your own keys, or use it with self-hosted models, while keeping safety built in from day one. Stakpak is designed to work reliably with real production infrastructure. Try it now: curl -sSL https://stakpak.dev/install.sh | sh
We’re launching Stakpak again, now fully open-sourced under Apache 2.0, and it’s been one of the trending Rust projects on GitHub over the past week.
Most LLMs are not built for DevOps. They leak credentials, don’t understand real infrastructure, and break down on non-trivial upgrades or deployments. You either babysit every command or keep them far away from production.
Stakpak is our attempt to solve this properly. It’s an open-source DevOps agent designed with safety and determinism as first-class constraints. The agent runs through a controlled execution layer, uses MCP over mTLS, supports async tool calls, and streams progress in real time for long-running operations. Secrets are dynamically substituted so the model never sees them.
Rulebooks are a core part of the system. They’re explicit guidelines that teach the agent how to handle real DevOps tasks correctly, reducing time and complexity without relying on fragile prompts or hidden behavior.
You can run Stakpak locally in your terminal, inside GitHub Actions, or trigger it via Slack using our SaaS. Everything is open, including system prompts.
Our long-term goal is to make infrastructure increasingly self-driving. This is just the beginning.
Would love feedback from engineers who’ve actually operated systems in production. Try it out, star us on GitHub if it’s useful, and follow along for updates.
This hits a very real pain point. AI agents are great until they touch real production infra then safety, guardrails, and accountability actually matter. Love the focus on open-source, rulebooks, and working with secrets without exposing them. This feels built by people who’ve lived through real DevOps incidents
Impressive DevOps automation in Rust! The ability to manage production infrastructure from CLI with built-in safety features is crucial for modern development teams. Open-source approach is fantastic. This would integrate really well with ITSM workflows for deployment automation. Excellent work!
Impressive! Can I install this terminal in my remote machines as well? Are there any security tradeoffs?
"Finally someone gets it" this is what I thought while working on Stakpak with the team that the whole "AI can do everything" pitch falls apart the second you're dealing with actual infra.
Having the agent work with secrets without seeing them is the kind of boring but critical feature that separates tools you actually use in prod from demos. Apache 2.0 is the cherry on top. Excited to see more people kick the tires on the local providers and rulebooks.
Finally! If you're doing any real DevOps work, give it a spin and drop a star if it clicks, open an issue if something's broken or missing. That's how good tools get built.
I've been watching devs try AI agents on real infra for a while now, and it's always the same: excitement, then suddenly "wait… what about production?" 😅
Stakpak came out of that pause. We just went fully open source and became one of the trending Rust projects on GitHub this week! We built this because we were tired of AI agents that are either too insecure for production or too clueless about real Ops work.
I am curious about what makes you hesitate when letting AI touch your infrastructure? Trust? Unpredictability? Would love to hear 👇
Looks great, I'm currently using "Claude Code" + "gke-mcp" (plus bunch of other mcps). How would using Stakpak be different?
Hey Product Hunt community!
Thanks for all your support in our previous launch! now Stakpak is fully open-sourced (Apache 2.0) and one of the trending Rust projects on GitHub the past week!
For every AI-Native developer out there "coding faster than ever before" -as Anthropic put it-, but still getting blocked on DevOps, Stakpak is your Open-Source DevOps Agent. Let's be honest, LLMs "absolutely" suck at DevOps work -yes you Claude-. They leak your AWS credentials, don't understand your own infra, and can't manage complex upgrades/deployments without breaking something. This is changing today.
We built Stakpak because we were tired of AI agents that either too insecure for production or too clueless about real Ops work. As devs, we need something that can help with the gritty stuff: incident management, broken builds, infrastructure as code, without requiring us to babysit every command.
What makes this different from the other +30 cli agents? it's fully open-source, MCP over mTLS, dynamic secret substitution (AI works with secrets without seeing them), async tool calls, and real-time progress streaming for those long builds. And most importantly backed by the largest free library of curated DevOps skills (aka Stakpak Rulebooks).
You can run Stakpak in your Terminal, in a GitHub Action, or trigger it through Slack using our SaaS.
Our big mission is to make infrastructure self-driving. This is just the beginning 🚗
Try it now! star us on GitHub and follow us on LinkedIn and X for updates!
It feels like this is more of a deployed agent.
How is this different from building our own agent using something like Claude Code?