KubeDrift

KubeDrift is a web app (with optional CLI) that continuously detects and explains Kubernetes configuration drift between what you intended (Git/Helm/Kustomize) and what is actually running in clusters. It snapshots live resources, normalizes noisy fields, and highlights meaningful diffs (RBAC, NetworkPolicies, Deployments, HPA, Ingress, CRDs). It then traces likely sources: manual kubectl edits, Helm upgrades, mutating webhooks, operators, or admission controllers. The product focuses on fast triage: "what changed, when, by whom, and what will it impact" with blast-radius hints (affected namespaces, services, and workloads). It can open PRs to reconcile Git, or generate safe rollback manifests. This is not a full GitOps platform; it’s a narrow, pragmatic drift and audit layer that plugs into existing setups (Argo CD, Flux, Jenkins, GitHub Actions) without forcing a migration.