Open-Awesome
CategoriesAlternativesStacksSelf-HostedExplore
Open-Awesome

© 2026 Open-Awesome. Curated for the developer elite.

TermsPrivacyAboutGitHubRSS
  1. Home
  2. Nix
  3. Makes

Makes

MITNix24.09

A CI/CD framework powered by Nix for building secure and reproducible software supply chains.

Visit WebsiteGitHubGitHub
491 stars45 forks0 contributors

What is Makes?

Makes is a CI/CD framework powered by Nix that enables developers to build secure and reproducible software supply chains. It provides frozen execution environments and cryptographically signed dependencies to mitigate supply chain attacks and ensure consistent builds. The framework supports running applications locally, executing CI/CD pipelines locally, and maintaining strict dependency control.

Target Audience

DevOps engineers and development teams who need reproducible CI/CD pipelines with strong security guarantees against supply chain vulnerabilities.

Value Proposition

Developers choose Makes for its integration with Nix, which ensures cryptographic dependency signing and frozen environments, offering superior security and reproducibility compared to traditional CI/CD tools. Its extensibility and portability across platforms like Docker, Kubernetes, and AWS Batch make it versatile for diverse deployment scenarios.

Overview

A software supply chain framework powered by Nix.

Use Cases

Best For

  • Running applications locally to test code changes
  • Executing CI/CD pipelines locally to validate jobs
  • Maintaining frozen execution environments for strict dependency control
  • Auditing exact dependency trees of applications
  • Building secure CI/CD pipelines with cryptographically signed dependencies
  • Deploying reproducible builds across Docker, VMs, and Linux-based systems

Not Ideal For

  • Teams requiring a maintained, actively supported CI/CD framework for long-term projects
  • Organizations needing frequent updates, community support, or integrations with modern DevOps tools
  • Projects where dependency on deprecated software poses security or compliance risks
  • Teams without existing Nix expertise or time to invest in a now-obsolete technology

Pros & Cons

Pros

Cryptographic Dependency Security

Leverages Nix for cryptographically signed dependencies, directly addressing supply chain attacks as highlighted in the project description and README attributes.

Frozen Reproducible Environments

Ensures consistent builds across platforms by freezing execution environments, a core philosophy mentioned in the README for strict dependency control.

Local Pipeline Validation

Allows executing CI/CD pipelines locally to test code and jobs, as emphasized in the 'Why' section for developer convenience.

Portable and Extensible

Runs on Docker, VMs, and Linux-based OS per the badges table, and can be extended to any technology, offering flexibility.

Cons

Deprecated and Unmaintained

Explicitly marked as no longer maintained in the deprecation notice, meaning no bug fixes, security updates, or future development.

Nix Dependency Complexity

Requires deep understanding and setup of Nix, which can be a barrier for teams unfamiliar with its ecosystem, as implied by the reliance on Nix for all features.

Stagnant Ecosystem and Support

With the transition to Nix Flakes, the Makes community is dwindling, leading to limited documentation updates, integrations, and help resources.

Vendor-Specific Design

Originally built for Fluid Attacks' internal use, it may lack general-purpose optimizations and is now superseded by their shift to Nix Flakes, reducing its relevance.

Frequently Asked Questions

Quick Stats

Stars491
Forks45
Contributors0
Open Issues27
Last commit10 months ago
CreatedSince 2021

Tags

#supply-chain-security#devops#aws-batch#kubernetes#ci#dependency-management#devsecops#cd#ci-cd#docker#nix#build#reproducible-builds#nomad

Built With

N
Nix

Links & Resources

Website

Included in

Nix5.0k
Auto-fetched 21 hours ago

Related Projects

StandardStandard

A DevOps framework for the SDLC with the power of Nix and Flakes. Good for keeping deadlines!

Stars484
Forks48
Last commit10 months ago
nixidynixidy

Kubernetes GitOps with nix and Argo CD.

Stars358
Forks22
Last commit10 days ago
Nix GitLab CINix GitLab CI

Define GitLab CI pipelines in pure Nix with full access to all Nix packages (incl. caching)

Stars0
Forks0
Last commit
Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a projectStar on GitHub