anthr76 / infra Goto Github PK
View Code? Open in Web Editor NEWMy home or for-home infrastructure written as code defining GitOps principles for Kubernetes clusters.
Home Page: https://discord.gg/sD6VgcwZqM
License: Apache License 2.0
infra's Introduction
infra's People
Contributors
![mend-bolt-for-github[bot] avatar](https://avatars.githubusercontent.com/in/16809?v=4 "mend-bolt-for-github[bot]")
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot]")
Stargazers
Watchers
infra's Issues
Clean up helm chart repositories not in use
The list is huge, no need to tax flux with repos with 0 plan to use. So clean them up.
Encrypted load-balancer IPs broken on certain devices over a wireguard tunnel.
This issue will need to be updated with some further info and is opened to track my evidence in this issue to report it upstream.
With direct routing and kube proxy replacement enabled on Cilium certain devices cannot connect over a wireguard tunnel managed externally from cilium. MTU is set to really low levels to make it work on some devices (1280). Along with adjusting mss
In order to avoid this "oddness" I've temporarily disabled both until I have more time to investigate and deployed kube-proxy.
sidero-control cluster needs to be pet
Currentley it has failed to create fsnotify watcher: too many open files and it's not being observed at the moment.
Within the next few weeks make this cluster HA and fix issues
Replicate prometheus
Figure out how to replicate thanos+prometheus in it's current state sts most of the time don't get ready. This kind of makes sense but figure out why.
Deploy kured
Explore flatcar linux
Plan of attack is to try within terraform and then explore netboot.xyz + ipxe to bootstrap Raspberry Pi4s and x86 hosts
Deploy flatcar-linux-update-operator
Deploy the flatcar-linux-update-operator this will take caidence over locksmithd service on flatcar-linux which was just masked on the mercury module
Currently there is no helm chart.
Improve ansible
Migrating to gitops aim to update ansible playbooks and migrate over to gitops where needed. Also add some documentation regarding it.
Transient hostname is being set on reboot
Currently NWK1's kubic cluster upon reboot is losing it's persistence for a static hostname and going to a Transient hostname.
Add automation upon provisioning to correct this situation.
Integrate unifi-poller into cluster
Plan of attack is getting observability stack all together along with implementing unifi-poller as Unifi is all over the homelab.
Currently would like to first migrate the unifi controller to a new host beforehand.
Improve reboot role
Since ansible/ansible#20493 is present we can't call the reboot role from within another role in a handler.
To overcome this we're going to write the super short reboot login right in the kubic role. In the future move some of Kubic's tasks into bootstrap_os and make the other reboot login dependant on playbook.
This is not as clean as intendended but seems the best avenue to take.
Create object storage
Until I add x86 into the cluster explore using NFS to begin adding stateful containers
Use native secrets for Loki
With "flux diff" on the way it's best to move away from using secrets where flux wouldn't expect it. Here's a tracker to hope Loki adds a way to use secrets..
Add documentation regarding basic bootstrap process
Document the basic bootstrapping process of the first bare-metal install of Typhoon. Purpose of this is to improve and implement.
Adjust k8s_gateway rbac
[INFO] plugin/health: Going into lameduck mode for 5s
[INFO] plugin/k8s_gateway: Building k8s_gateway controller
[INFO] plugin/k8s_gateway: access to `gateway.networking.k8s.io` is forbidden, please check RBAC. Not syncing GatewayAPI resources.
[INFO] plugin/k8s_gateway: access to `k8s.nginx.org/v1` is forbidden, please check RBAC. Not syncing VirtualServer resources.
[INFO] plugin/k8s_gateway: Starting k8s_gateway controller
[INFO] plugin/k8s_gateway: Waiting for controllers to sync
[INFO] plugin/k8s_gateway: Building k8s_gateway controller
[INFO] plugin/k8s_gateway: access to `gateway.networking.k8s.io` is forbidden, please check RBAC. Not syncing GatewayAPI resources.
[INFO] plugin/k8s_gateway: access to `k8s.nginx.org/v1` is forbidden, please check RBAC. Not syncing VirtualServer resources.
[INFO] plugin/k8s_gateway: Starting k8s_gateway controller
[INFO] plugin/k8s_gateway: Waiting for controllers to sync
Migrate fluxv1 to fluxv2
Action Required: Fix Renovate Configuration
There is an error with this repository's Renovate configuration that needs to be fixed. As a precaution, Renovate will stop PRs until it is resolved.
Error type: Cannot find preset's package (github>bjw-s/home-ops//.github/renovate/disabledDatasources.json5)
Renovate Dashboard ๐ค
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
Repository problems
These problems occurred while renovating this repository. View logs.
- WARN: Package lookup failures
Warning
Renovate failed to look up the following dependencies: Could not determine new digest for update (docker package quay.io/coreos-assembler/fcos), Failed to look up helm package app-template.
Files affected: armature/prod/scr1/fcos-derivations/libvirt-01/Dockerfile, k8s/base/home/zwavejs2mqtt/helm-release.yaml
Open
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
- fix(container): update image docker.io/library/couchdb ( 3.3.2 โ 3.3.3 )
- fix(container): update image docker.io/library/eclipse-mosquitto ( 2.0.17 โ 2.0.18 )
- fix(container): update image ghcr.io/buroa/qbtools ( v0.15.0 โ v0.15.1 )
- fix(container): update image ghcr.io/kyverno/manifests/kyverno ( v1.11.1 โ v1.11.4 )
- fix(container): update image ghcr.io/onedr0p/qbittorrent ( 4.6.2 โ 4.6.4 )
- fix(container): update image ghcr.io/onedr0p/sonarr ( 4.0.2.1183 โ 4.0.3.1413 )
- fix(container): update image ghcr.io/onedr0p/tvheadend ( 4.3.10004 โ 4.3.10009 )
- fix(container): update image registry.k8s.io/sig-storage/csi-provisioner ( v3.6.2 โ v3.6.4 )
- fix(deps): update alert ( notification.toolkit.fluxcd.io/v1beta1 โ notification.toolkit.fluxcd.io/v1beta3 )
- fix(deps): update flux group ( v2.2.2 โ v2.2.3 ) (patch) (
flux,ghcr.io/fluxcd/flux-manifests) - fix(deps): update pre-commit hook lucas-c/pre-commit-hooks ( v1.5.4 โ v1.5.5 )
- fix(deps): update terraform terraform-google-modules/github-actions-runners/google ( 3.1.1 โ 3.1.2 )
- fix(deps): update terraform terraform-google-modules/service-accounts/google ( 4.2.1 โ 4.2.2 )
- fix(helm): update chart democratic-csi ( 0.14.2 โ 0.14.6 )
- fix(helm): update chart external-secrets ( 0.9.4 โ 0.9.14 )
- fix(helm): update chart metrics-server ( 3.12.0 โ 3.12.1 )
- fix(helm): update chart nats ( 1.1.7 โ 1.1.10 )
- fix(helm): update chart prometheus-snmp-exporter ( 1.8.0 โ 1.8.2 )
- fix(helm): update chart reloader ( 1.0.38 โ 1.0.75 )
- fix(helm): update cilium group (patch) (
cilium,quay.io/cilium/cilium,quay.io/cilium/operator-generic) - fix(helm): update rook ceph group ( v1.13.7 โ v1.13.8 ) (patch) (
rook-ceph,rook-ceph-cluster) - fix(terraform): update terraform b2 ( 0.8.4 โ 0.8.9 )
- fix(terraform): update terraform http ( 3.4.0 โ 3.4.2 )
- fix(terraform): update terraform libvirt ( 0.7.1 โ 0.7.6 )
- feat(container): update image alpine ( 3.18.3 โ 3.19.1 )
- feat(container): update image docker.io/library/alpine ( 3.18.3 โ 3.19.1 )
- feat(container): update image docker.io/thijsvanloef/palworld-server-docker ( v0.33.0 โ v0.35.1 )
- feat(container): update image docker.io/timberio/vector ( 0.34.1-debian โ 0.37.0-debian )
- feat(container): update image etcd ( 9.8.0 โ 9.15.2 )
- feat(container): update image ghcr.io/autobrr/autobrr ( v1.39.1 โ v1.40.1 )
- feat(container): update image ghcr.io/blakeblackshear/frigate ( 0.12.1 โ 0.13.2 )
- feat(container): update image ghcr.io/democratic-csi/democratic-csi ( v1.8.4 โ v1.9.0 )
- feat(container): update image ghcr.io/esphome/esphome ( 2023.8.2 โ 2023.12.9 )
- feat(container): update image ghcr.io/home-assistant/home-assistant ( 2024.3.1 โ 2024.4.1 )
- feat(container): update image ghcr.io/koenkk/zigbee2mqtt ( 1.32.2 โ 1.36.1 )
- feat(container): update image ghcr.io/maxmind/geoipupdate ( v6.0.0 โ v6.1.0 )
- feat(container): update image ghcr.io/onedr0p/bazarr ( 1.2.4 โ 1.4.2 )
- feat(container): update image ghcr.io/onedr0p/lidarr ( 2.0.7.3849 โ 2.1.7.4030 )
- feat(container): update image ghcr.io/onedr0p/postgres-init ( 14.9 โ 14.10 )
- feat(container): update image ghcr.io/onedr0p/prowlarr-develop ( 1.14.1.4316 โ 1.15.0.4361 )
- feat(container): update image ghcr.io/onedr0p/sabnzbd ( 4.0.3 โ 4.2.3 )
- feat(container): update image ghcr.io/paperless-ngx/paperless-ngx ( 2.1.3 โ 2.7.0 )
- feat(container): update image ghcr.io/tarampampam/error-pages ( 2.24.0 โ 2.27.0 )
- feat(container): update image jacobalberty/unifi ( v7.4.162 โ v7.5.176 )
- feat(container): update image quay.io/tgenannt/netbox ( v3.3.1 โ v3.6.1 )
- feat(container): update image redis ( 18.0.0 โ 18.19.4 )
- feat(deps): update alex1989hu/kubelet-serving-cert-approver ( v0.6.2 โ v0.8.1 )
- feat(deps): update kubelet-serving-cert-approver ( v0.7.2 โ v0.8.1 )
- feat(deps): update pre-commit hook adrienverge/yamllint ( v1.32.0 โ v1.35.1 )
- feat(deps): update pre-commit hook pre-commit/pre-commit-hooks ( v4.4.0 โ v4.5.0 )
- feat(deps): update terraform terraform-google-modules/bootstrap/google ( 6.4.0 โ 6.5.0 )
- feat(deps): update terraform terraform-google-modules/project-factory/google ( 14.3.0 โ 14.5.0 )
- feat(helm): update chart app-template ( 2.4.0 โ 2.6.0 )
- feat(helm): update chart bitcoind ( 0.3.1 โ 0.5.0 )
- feat(helm): update chart cert-manager ( v1.12.3 โ v1.14.4 )
- feat(helm): update chart cloudnative-pg ( 0.18.2 โ 0.20.2 )
- feat(helm): update chart couchdb ( 4.4.4 โ 4.5.0 )
- feat(helm): update chart descheduler ( 0.28.1 โ 0.29.0 )
- feat(helm): update chart external-dns ( 1.13.0 โ 1.14.4 )
- feat(helm): update chart grafana ( 7.0.19 โ 7.3.7 )
- feat(helm): update chart ingress-nginx ( 4.9.0 โ 4.10.0 )
- feat(helm): update chart lnd ( 0.9.0 โ 0.10.1 )
- feat(helm): update chart loki ( 5.41.4 โ 5.47.2 )
- feat(helm): update chart metallb ( 0.13.10 โ 0.14.4 )
- feat(helm): update chart mimir-distributed ( 5.0.0 โ 5.2.3 )
- feat(helm): update chart node-feature-discovery ( 0.13.3 โ 0.15.4 )
- feat(helm): update cilium group (minor) (
cilium,quay.io/cilium/cilium,quay.io/cilium/operator-generic) - feat(helm): update rook ceph group ( v1.13.7 โ v1.14.0 ) (minor) (
rook-ceph,rook-ceph-cluster) - feat(terraform): update terraform cloudflare ( 4.13.0 โ 4.29.0 )
- feat(terraform): update terraform digitalocean ( 2.28.1 โ 2.36.0 )
- feat(terraform): update terraform google ( 4.79.0 โ 4.84.0 )
- feat(terraform): update terraform google-beta ( 4.79.0 โ 4.84.0 )
- feat(terraform): update terraform postgresql ( 1.19.0 โ 1.22.0 )
- feat(terraform): update terraform random ( 3.5.1 โ 3.6.0 )
- feat(terraform): update terraform tfe ( 0.48.0 โ 0.53.0 )
- ci(github-action)!: Update actions/checkout action ( v3 โ v4 )
- ci(github-action)!: Update dorny/paths-filter action ( v2 โ v3 )
- ci(github-action)!: Update github/codeql-action action ( v2 โ v3 )
- ci(github-action)!: Update google-github-actions/auth action ( v1.3.0 โ v2.1.2 )
- ci(github-action)!: Update hashicorp/setup-terraform action ( v2.0.3 โ v3.0.0 )
- feat(container)!: Update image etcd ( 9.8.0 โ 10.0.3 )
- feat(container)!: Update image ghcr.io/esphome/esphome ( 2023.8.2 โ 2024.3.1 )
- feat(container)!: Update image ghcr.io/onedr0p/postgres-init
- feat(container)!: Update image jacobalberty/unifi ( v7.4.162 โ v8.1.113 )
- feat(container)!: Update image redis ( 18.0.0 โ 19.0.2 )
- feat(container)!: Update image registry.k8s.io/sig-storage/csi-provisioner ( v3.6.2 โ v4.0.1 )
- feat(deps)!: Update Terraform terraform-google-modules/bootstrap/google ( 6.4.0 โ 7.1.0 )
- feat(helm)!: Update chart app-template to v3.1.0
- feat(helm)!: Update chart kube-prometheus-stack ( 55.11.0 โ 57.2.1 )
- feat(helm)!: Update chart prometheus-snmp-exporter ( 1.8.0 โ 5.1.0 )
- feat(helm)!: Update chart vpa ( 2.5.1 โ 4.4.5 )
- feat(terraform)!: Update Terraform google ( 4.79.0 โ 5.23.0 )
- feat(terraform)!: Update Terraform google-beta ( 4.79.0 โ 5.23.0 )
- feat(terraform)!: Update Terraform sops ( 0.7.2 โ 1.0.0 )
- Click on this checkbox to rebase all open PRs at once
Detected dependencies
Note
Detected dependencies section has been truncated
dockerfile
armature/prod/scr1/fcos-derivations/libvirt-01/Dockerfile
quay.io/coreos-assembler/fcos stable@sha256:4366918a490a34e161b115c0ff38fdaaf226841e1d3abaca8ed48571d05f4b43armature/raspberrypi4-uefi/Dockerfile
docker.io/library/alpine 3.18.3@sha256:7144f7bab3d4c2648d7e59409f15ec52a18006a128c733fcff20d3a4a54ba44a
flux
k8s/base/crypto/bitcoind/helm-release.yaml
bitcoind 0.3.1k8s/base/crypto/lnd/helm-release.yaml
lnd 0.9.0k8s/base/crypto/lnd2/helm-release.yaml
lnd 0.9.0k8s/base/crypto/lndhub/helm-release.yaml
app-template 1.5.1k8s/base/crypto/peerswap/helm-release.yaml
app-template 1.5.1k8s/base/crypto/rtl/helm-release.yaml
rtl 0.4.3k8s/base/database/cloudnative-pg/deploy/helm-release.yaml
cloudnative-pg 0.18.2k8s/base/database/couchdb/helm-release.yaml
couchdb 4.4.4k8s/base/database/redis/helm-release.yaml
redis 18.0.0k8s/base/database/redis/sentinel/helm-release.yaml
redis 18.0.0k8s/base/default/palworld/helm-release.yaml
palworld 0.30.1k8s/base/default/thelounge/helm-release.yaml
app-template 2.4.0k8s/base/federation/lemmy/oci-repo.yaml
ghcr.io/anthr76/lemmy-ks 0.6.1k8s/base/home/esphome/helm-release.yaml
esphome 8.4.2k8s/base/home/frigate/helm-release.yaml
app-template 1.5.1k8s/base/home/home-assistant-nwk3/helm-release.yaml
app-template 1.5.1k8s/base/home/home-assistant/helm-release.yaml
app-template 1.5.1k8s/base/home/mosquitto/helm-release.yaml
mosquitto 4.8.2k8s/base/home/nats/helm-release.yaml
nats 1.1.7k8s/base/home/zigbee2mqtt/helm-release.yaml
app-template 1.5.1k8s/base/home/zwavejs2mqtt/helm-release.yaml
app-template 1.0.1k8s/base/infra/external-secrets/helm-release.yaml
external-secrets 0.9.4k8s/base/infra/hajimari/helm-release.yaml
hajimari 2.0.2k8s/base/infra/netbox/helm-release.yaml
netbox 4.1.1k8s/base/infra/paperless/helm-release.yaml
app-template 1.5.1k8s/base/infra/unifi/helm-release.yaml
app-template 1.5.1k8s/base/kube-system/cilium/helm-release.yaml
cilium 1.14.5k8s/base/kube-system/descheduler/helm-release.yaml
descheduler 0.28.1k8s/base/kube-system/intel-gpu-plugin/helm-release.yaml
intel-gpu-plugin 4.4.2k8s/base/kube-system/kubelet-serving-cert-approver/kustomize.yaml
kubelet-serving-cert-approver v0.7.2k8s/base/kube-system/metallb/helm-release.yaml
metallb 0.13.10k8s/base/kube-system/metrics-server/helm-release.yaml
metrics-server 3.12.0k8s/base/kube-system/multus/helm-release.yaml
multus 3.5.2k8s/base/kube-system/node-feature-discovery/helm-release.yaml
node-feature-discovery 0.13.3k8s/base/kube-system/reloader/helm-release.yaml
reloader 1.0.38k8s/base/kyverno/operator/kustomize.yaml
ghcr.io/kyverno/manifests/kyverno v1.11.1k8s/base/media/autobrr/helm-release.yaml
app-template 2.4.0k8s/base/media/bazarr/helm-release.yaml
app-template 1.5.1k8s/base/media/cross-seed/helm-release.yaml
app-template 2.4.0k8s/base/media/lidarr/helm-release.yaml
app-template 1.5.1k8s/base/media/overseerr/helm-release.yaml
app-template 1.5.1k8s/base/media/plex/helm-release.yaml
app-template 1.5.1k8s/base/media/prowlarr/helm-release.yaml
app-template 1.5.1k8s/base/media/qbittorrent/helm-release.yaml
app-template 2.4.0k8s/base/media/qbittorrent/qbtools-helm-release.yaml
app-template 2.4.0k8s/base/media/radarr/helm-release.yaml
app-template 1.5.1k8s/base/media/recyclarr/helm-release.yaml
app-template 2.4.0k8s/base/media/sabnzbd/helm-release.yaml
app-template 1.5.1k8s/base/media/sonarr/helm-release.yaml
app-template 1.5.1k8s/base/media/tvheadend/helm-release.yaml
app-template 1.5.1k8s/base/media/unpackerr/helm-release.yaml
app-template 1.5.1k8s/base/monitoring/grafana/helm-release.yaml
grafana 7.0.19k8s/base/monitoring/kube-prometheus-stack/helm-release.yaml
kube-prometheus-stack 55.11.0k8s/base/monitoring/loki/helm-release.yaml
loki 5.41.4k8s/base/monitoring/mimir/etcd-helm-release.yaml
etcd 9.8.0k8s/base/monitoring/mimir/helm-release.yaml
mimir-distributed 5.0.0k8s/base/monitoring/snmp-exporter-ups/helm-release-806.yaml
prometheus-snmp-exporter 1.8.0k8s/base/monitoring/snmp-exporter-ups/helm-release-808.yaml
prometheus-snmp-exporter 1.8.0k8s/base/monitoring/snmp-exporter-vyos/helm-release.yaml
prometheus-snmp-exporter 1.8.0k8s/base/monitoring/vector/agent/helm-release.yaml
app-template 2.4.0k8s/base/monitoring/vector/aggregator/helm-release.yaml
app-template 2.4.0k8s/base/monitoring/vpa/helm-release.yaml
vpa 2.5.1k8s/base/networking/cert-manager/helm-release.yaml
cert-manager v1.12.3k8s/base/networking/external-dns/helm-release.yaml
external-dns 1.13.0k8s/base/networking/nginx/helm-release.yaml
ingress-nginx 4.9.0k8s/base/networking/oauth2-proxy/helm-release-ext.yaml
app-template 1.5.1k8s/base/networking/oauth2-proxy/helm-release-int.yaml
app-template 1.5.1k8s/base/rook-ceph/cluster/helm-release.yaml
rook-ceph-cluster v1.13.7k8s/base/rook-ceph/local-path-provisioner/helm-release.yaml
democratic-csi 0.14.2k8s/base/rook-ceph/operator/helm-release.yaml
rook-ceph v1.13.7k8s/clusters/gke-cluster-1/gotk/flux-system/flux.yaml
flux v2.2.2k8s/clusters/gke-cluster-1/gotk/flux-system/gotk-sync.yaml
k8s/clusters/scr1-cluster-0/gotk/flux-system/flux.yaml
ghcr.io/fluxcd/flux-manifests v2.2.2k8s/clusters/scr1-cluster-0/gotk/flux-system/gotk-sync.yaml
github-actions
.github/workflows/docs.yaml
actions/checkout v3ubuntu 22.04.github/workflows/scan-containers.yaml
actions/checkout v3dorny/paths-filter v2actions/checkout v3actions/checkout v3aquasecurity/trivy-action 0.19.0github/codeql-action v2ubuntu 22.04ubuntu 22.04ubuntu 22.04.github/workflows/terraform-gcp-pr.yml
actions/checkout v3google-github-actions/auth v1.3.0hashicorp/setup-terraform v2.0.3.github/workflows/terraform-gcp-production.yml
actions/checkout v3google-github-actions/auth v1.3.0hashicorp/setup-terraform v2.0.3
helm-values
k8s/base/crypto/lndhub/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/getalby/lndhub.go 0.14.0k8s/base/crypto/peerswap/helm-release.yaml
ghcr.io/anthr76/peerswap 0.2.97k8s/base/database/couchdb/helm-release.yaml
docker.io/library/couchdb 3.3.2k8s/base/default/evobot/deployment.yaml
docker.io/eritislami/evobot 2.9.0k8s/base/default/palworld/helm-release.yaml
docker.io/thijsvanloef/palworld-server-docker v0.33.0k8s/base/default/thelounge/helm-release.yaml
ghcr.io/thelounge/thelounge 4.4.1@sha256:50538b1b74184e43ac8c119f518243432026065f15e266ac2b23dbeb7de5802ak8s/base/home/esphome/helm-release.yaml
alpine 3.18.3@sha256:7144f7bab3d4c2648d7e59409f15ec52a18006a128c733fcff20d3a4a54ba44aghcr.io/esphome/esphome 2023.8.2k8s/base/home/frigate/helm-release.yaml
ghcr.io/blakeblackshear/frigate 0.12.1k8s/base/home/home-assistant-nwk3/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/home-assistant/home-assistant 2024.3.1k8s/base/home/home-assistant/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/home-assistant/home-assistant 2024.3.1k8s/base/home/mosquitto/helm-release.yaml
docker.io/library/eclipse-mosquitto 2.0.17k8s/base/home/zigbee2mqtt/helm-release.yaml
ghcr.io/koenkk/zigbee2mqtt 1.32.2@sha256:98bf0afb61b2fca7402f6cd71933abc72f90e53766cbb65c8be6060b20312f45k8s/base/home/zwavejs2mqtt/helm-release.yaml
ghcr.io/zwave-js/zwavejs2mqtt 7.2.0k8s/base/infra/hajimari/helm-release.yaml
ghcr.io/toboshii/hajimari v0.3.1k8s/base/infra/netbox/helm-release.yaml
quay.io/tgenannt/netbox v3.3.1docker.io/library/busybox 1.36.1k8s/base/infra/paperless/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/paperless-ngx/paperless-ngx 2.1.3@sha256:01c190595a547c2f39c99806348ba1d1091c218dc3741fb207598f767e2dea3fk8s/base/infra/unifi/helm-release.yaml
jacobalberty/unifi v7.4.162@sha256:b3edc809a3ff2d247dc7a7d73929fa80eca08462c1ca77230a288126d3741bb5k8s/base/kube-system/intel-gpu-plugin/helm-release.yaml
ghcr.io/k8s-at-home/intel-gpu-plugin v0.22.0k8s/base/kube-system/metallb/helm-release.yaml
alpine sha256:c5b1261d6d3e43071626931fc004f70149baeba2c8ec672bd4f27761f8e1ad6bk8s/base/kube-system/multus/helm-release.yaml
ghcr.io/k8snetworkplumbingwg/multus-cni v4.0.2ghcr.io/k8s-at-home/cni-plugins v1.1.1k8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-dp-health.yaml
docker.io/rocm/k8s-device-plugin 1.25.2@sha256:eef13b57969189eea7d6a3ad71774b283d8ddbca44af07e6d7a3ba25e84e12bak8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-dp.yaml
docker.io/rocm/k8s-device-plugin 1.25.2@sha256:eef13b57969189eea7d6a3ad71774b283d8ddbca44af07e6d7a3ba25e84e12bak8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-labeller.yaml
docker.io/rocm/k8s-device-plugin labeller-1.18.0@sha256:d6be585c5599a57911ef739fdd731411b294be8cdf4baa8c1b9b67e6231e043dk8s/base/media/autobrr/helm-release.yaml
ghcr.io/onedr0p/postgres-init 15ghcr.io/autobrr/autobrr v1.39.1@sha256:7149943f3f6a528ea653662272e8a2c78156cdbf51fd3313911eb57a03378a50k8s/base/media/bazarr/helm-release.yaml
ghcr.io/onedr0p/bazarr 1.2.4k8s/base/media/cross-seed/helm-release.yaml
ghcr.io/cross-seed/cross-seed 5.9.2@sha256:6abdca45f0ecfd8d23a3035beefa716a14b66f23c14854631fe369d1ad346f1ek8s/base/media/lidarr/helm-release.yaml
ghcr.io/onedr0p/lidarr 2.0.7.3849@sha256:baba272ee36cfb14103256a9b173a161c5a45ca2959c26dcd170f32cdc57c406k8s/base/media/overseerr/helm-release.yaml
ghcr.io/sct/overseerr 1.33.2@sha256:714ea6db2bc007a2262d112bef7eec74972eb33d9c72bddb9cbd98b8742de950k8s/base/media/plex/helm-release.yaml
ghcr.io/onedr0p/plex 1.40.1.8227-c0dd5a73e@sha256:4ca8db0ffa1bee5a2976a0385cc43368112e81a2485b80d0fff3b04c9d5bd1cak8s/base/media/prowlarr/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/onedr0p/prowlarr-develop 1.14.1.4316@sha256:882daa1e28f989bc6d76ea7ab7e729da3d9a7a67714e6db606a8ef45a6e6c14bk8s/base/media/qbittorrent/helm-release.yaml
ghcr.io/onedr0p/qbittorrent 4.6.2@sha256:fedb62126c82ae0c7192e9052633411294a27e9c233613c03b0a8d168d160040k8s/base/media/qbittorrent/qbtools-helm-release.yaml
ghcr.io/buroa/qbtools v0.15.0@sha256:067a68a0c7b2f522b7527e7bb48cf18614d46c16fcbcd16561d1bbc7f7f983fdghcr.io/buroa/qbtools v0.15.0@sha256:067a68a0c7b2f522b7527e7bb48cf18614d46c16fcbcd16561d1bbc7f7f983fdghcr.io/buroa/qbtools v0.15.0@sha256:067a68a0c7b2f522b7527e7bb48cf18614d46c16fcbcd16561d1bbc7f7f983fdghcr.io/buroa/qbtools v0.15.0@sha256:067a68a0c7b2f522b7527e7bb48cf18614d46c16fcbcd16561d1bbc7f7f983fdghcr.io/buroa/qbtools v0.15.0@sha256:067a68a0c7b2f522b7527e7bb48cf18614d46c16fcbcd16561d1bbc7f7f983fdk8s/base/media/radarr/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debghcr.io/onedr0p/radarr 5.3.6.8612@sha256:e9586ce6fdcb0bc739f96490e876c445114cec98e8c039aab6e48c579590cc70k8s/base/media/recyclarr/helm-release.yaml
ghcr.io/recyclarr/recyclarr 6.0.2@sha256:02add40feae0569401b5020528e06419b47046723d0bb4bef1e82325e9eefdadk8s/base/media/sabnzbd/helm-release.yaml
ghcr.io/onedr0p/sabnzbd 4.0.3@sha256:fd8695c1f3829f628220078c4aa11a82087f928ae5ed5ec3983c3dafff438396k8s/base/media/samba/deployment.yaml
registry.gitlab.com/coreweave/samba 4160d90a-4.18.4-r0-alpine-edgek8s/base/media/sonarr/helm-release.yaml
ghcr.io/onedr0p/sonarr 4.0.2.1183@sha256:42ba5af9b0ea20f4db4622991e0f1657be02c6e8747872c652fdac193c097b25k8s/base/media/tvheadend/helm-release.yaml
ghcr.io/onedr0p/tvheadend 4.3.10004@sha256:d4456865d39c351bff81ab1f2b7f0ab86a7621b5ebfa6b68a643ecb7ac375850k8s/base/media/unpackerr/helm-release.yaml
ghcr.io/onedr0p/unpackerr 0.12.0@sha256:8bbf35be449b89041f07fc069812f79b4eadf56e1c7c7720935fe166016376efk8s/base/monitoring/grafana/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debk8s/base/monitoring/vector/agent/helm-release.yaml
docker.io/timberio/vector 0.34.1-debian@sha256:a2e406c8917ed62d24381e600ad8bd96fe82fcdb406ecfb4ab4a6fad21b19047k8s/base/monitoring/vector/agent/vector.yaml
k8s/base/monitoring/vector/aggregator/helm-release.yaml
ghcr.io/maxmind/geoipupdate v6.0.0@sha256:e0d5c1dee7379d360e0f355557542d9672c616215dfdd5aaf917382de84cb84cdocker.io/timberio/vector 0.34.1-debian@sha256:a2e406c8917ed62d24381e600ad8bd96fe82fcdb406ecfb4ab4a6fad21b19047k8s/base/networking/nginx/helm-release.yaml
ghcr.io/tarampampam/error-pages 2.24.0k8s/base/networking/oauth2-proxy/helm-release-ext.yaml
quay.io/oauth2-proxy/oauth2-proxy v7.6.0k8s/base/networking/oauth2-proxy/helm-release-int.yaml
quay.io/oauth2-proxy/oauth2-proxy v7.6.0k8s/base/rook-ceph/cluster/helm-release.yaml
quay.io/ceph/ceph v18.2.2@sha256:06ddc3ef5b66f2dcc6d16e41842d33a3d7f497849981b0842672ef9014a96726k8s/base/rook-ceph/local-path-provisioner/helm-release.yaml
registry.k8s.io/sig-storage/csi-provisioner v3.6.2ghcr.io/democratic-csi/democratic-csi v1.8.4k8s/clusters/scr1-cluster-0/iac/cni/cluster_0_quick_install.yaml
quay.io/cilium/cilium v1.14.5@sha256:d3b287029755b6a47dee01420e2ea469469f1b174a2089c10af7e5e9289ef05bquay.io/cilium/cilium v1.14.5@sha256:d3b287029755b6a47dee01420e2ea469469f1b174a2089c10af7e5e9289ef05bquay.io/cilium/cilium v1.14.5@sha256:d3b287029755b6a47dee01420e2ea469469f1b174a2089c10af7e5e9289ef05bquay.io/cilium/operator-generic v1.14.5@sha256:303f9076bdc73b3fc32aaedee64a14f6f44c8bb08ee9e3956d443021103ebe7a
kubernetes
k8s/base/crypto/bitcoind/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/crypto/lnd/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/lnd/ingress.yaml
Ingress networking.k8s.io/v1k8s/base/crypto/lnd2/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/lnd2/ingress.yaml
Ingress networking.k8s.io/v1k8s/base/crypto/lndhub/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/peerswap/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/rtl/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/crypto/rtl/ingress.yaml
Ingress networking.k8s.io/v1k8s/base/database/cloudnative-pg/deploy/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/database/couchdb/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/database/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/database/redis/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/database/redis/sentinel/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/default/evobot/deployment.yaml
docker.io/eritislami/evobot 2.9.0Deployment apps/v1k8s/base/default/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/default/palworld/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/default/palworld/helm-repo.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/default/thelounge/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/federation/lemmy/kustomize.yaml
ghcr.io/onedr0p/postgres-init 14.9@sha256:170970a909f892149cbf99be8d86c26f0090bc7d2fbd1c34dd770b4bf7e08458Kustomization kustomize.toolkit.fluxcd.io/v1k8s/base/federation/lemmy/oci-repo.yaml
OCIRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/cluster-config/overlays/scr1-cluster-0/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/flux-system/helm-chart-repositories/bitnami-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/bjw-s.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/bootc-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/cilium-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/cloudnative-pg.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/couchdb-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/democractic-csi.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/descheduler-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/external-dns-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/external-secrets.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/fairwinds-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/galoy-anthr76.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/galoy.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/grafana-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/hajimari-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/hashicorp-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/ingress-nginx-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/jetstack-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/k8s-at-home-chart.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/metallb-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/metrics-server-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/minecraft-server-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/nats-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/nfd-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/oauth2-proxy-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/prometheus-community-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/rocm-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/rook-ceph-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/stakater-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/stakewise-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/vector-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/helm-chart-repositories/vmware-charts.yaml
HelmRepository source.toolkit.fluxcd.io/v1beta2k8s/base/flux-system/notifications/discord/notification.yaml
Provider notification.toolkit.fluxcd.io/v1beta3Alert notification.toolkit.fluxcd.io/v1beta1k8s/base/flux-system/notifications/github/notification.yaml
Provider notification.toolkit.fluxcd.io/v1beta3Alert notification.toolkit.fluxcd.io/v1beta1k8s/base/flux-system/notifications/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/flux-system/webhook/github/ingress.yaml
Ingress networking.k8s.io/v1k8s/base/flux-system/webhook/github/receiver.yaml
Receiver notification.toolkit.fluxcd.io/v1k8s/base/flux-system/webhook/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/home/esphome/helm-release.yaml
alpine 3.18.3@sha256:7144f7bab3d4c2648d7e59409f15ec52a18006a128c733fcff20d3a4a54ba44aHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/frigate/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/frigate/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/home/home-assistant-nwk3/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/home-assistant/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/home-assistant/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/home/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/home/mosquitto/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/mosquitto/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/home/mosquitto/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/home/nats/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/nats/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/home/priority-class.yaml
PriorityClass scheduling.k8s.io/v1k8s/base/home/zigbee2mqtt/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/home/zigbee2mqtt/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/home/zwavejs2mqtt/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/infra/external-secrets/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/infra/hajimari/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/infra/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/infra/netbox/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/infra/netbox/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/infra/paperless/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/infra/unifi/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/cilium/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/descheduler/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/home-dns/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/kube-system/home-dns/rbac.yaml
ClusterRole rbac.authorization.k8s.io/v1ClusterRoleBinding rbac.authorization.k8s.io/v1k8s/base/kube-system/intel-gpu-plugin/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/kubelet-serving-cert-approver/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/kube-system/kubelet-serving-cert-approver/kustomize.yaml
GitRepository source.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1k8s/base/kube-system/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/kube-system/metallb/helm-release.yaml
alpine sha256:c5b1261d6d3e43071626931fc004f70149baeba2c8ec672bd4f27761f8e1ad6bHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/metallb/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/kube-system/metrics-server/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/multus/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/networkpolicy.yaml
NetworkPolicy networking.k8s.io/v1k8s/base/kube-system/node-feature-discovery/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/reloader/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-dp-health.yaml
docker.io/rocm/k8s-device-plugin 1.25.2@sha256:eef13b57969189eea7d6a3ad71774b283d8ddbca44af07e6d7a3ba25e84e12baDaemonSet apps/v1k8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-dp.yaml
docker.io/rocm/k8s-device-plugin 1.25.2@sha256:eef13b57969189eea7d6a3ad71774b283d8ddbca44af07e6d7a3ba25e84e12baDaemonSet apps/v1k8s/base/kube-system/rocm-k8s-device-plugin/k8s-ds-amdgpu-labeller.yaml
docker.io/rocm/k8s-device-plugin labeller-1.18.0@sha256:d6be585c5599a57911ef739fdd731411b294be8cdf4baa8c1b9b67e6231e043dClusterRole rbac.authorization.k8s.io/v1ClusterRoleBinding rbac.authorization.k8s.io/v1DaemonSet apps/v1k8s/base/kube-system/rocm-k8s-device-plugin/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/kyverno/operator/kustomize.yaml
OCIRepository source.toolkit.fluxcd.io/v1beta2Kustomization kustomize.toolkit.fluxcd.io/v1k8s/base/media/autobrr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/bazarr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/cross-seed/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/cross-seed/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/media/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/media/lidarr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/overseerr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/overseerr/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/media/plex/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/plex/pdb.yaml
PodDisruptionBudget policy/v1k8s/base/media/priority-class.yaml
PriorityClass scheduling.k8s.io/v1k8s/base/media/prowlarr/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/qbittorrent/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/qbittorrent/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/media/qbittorrent/qbtools-helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/radarr/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/recyclarr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/recyclarr/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/media/sabnzbd/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/samba/deployment.yaml
registry.gitlab.com/coreweave/samba 4160d90a-4.18.4-r0-alpine-edgeDeployment apps/v1k8s/base/media/sonarr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/tvheadend/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/media/unpackerr/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/grafana/helm-release.yaml
ghcr.io/onedr0p/postgres-initdb 14.8@sha256:0141cf427c47f2d534711a3f9e8c5f9008bc6b585463ccd9288cf0f027e20debHelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/kube-prometheus-stack/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/monitoring/loki/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/loki/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/monitoring/mimir/etcd-helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/mimir/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/snmp-exporter-ups/helm-release-806.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/snmp-exporter-ups/helm-release-808.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/snmp-exporter-vyos/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/vector/agent/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/vector/agent/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/monitoring/vector/agent/rbac.yaml
ClusterRole rbac.authorization.k8s.io/v1ClusterRoleBinding rbac.authorization.k8s.io/v1k8s/base/monitoring/vector/aggregator/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/monitoring/vector/aggregator/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/monitoring/vpa/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/networking/cert-manager/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/networking/cert-manager/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/networking/external-dns/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/networking/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/networking/nginx/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/networking/oauth2-proxy/helm-release-ext.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/networking/oauth2-proxy/helm-release-int.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/rook-ceph/cluster/helm-release.yaml
quay.io/ceph/ceph v18.2.2@sha256:06ddc3ef5b66f2dcc6d16e41842d33a3d7f497849981b0842672ef9014a96726HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/rook-ceph/kustomization.yaml
Kustomization kustomize.config.k8s.io/v1beta1k8s/base/rook-ceph/local-path-provisioner/helm-release.yaml
registry.k8s.io/sig-storage/csi-provisioner v3.6.2ghcr.io/democratic-csi/democratic-csi v1.8.4HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/base/rook-ceph/operator/helm-release.yaml
HelmRelease helm.toolkit.fluxcd.io/v2beta2k8s/clusters/gke-cluster-1/definitions/flux-system.yaml
Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1k8s/clusters/gke-cluster-1/definitions/home.yaml
Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1k8s/clusters/gke-cluster-1/definitions/infra.yaml
Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1Kustomization kustomize.toolkit.fluxcd.io/v1
- Check this box to trigger a request for Renovate to run again on this repository
Introduce new external facing domain, and kubernetes-sigs/external-dns
Problem Trying to solve
Currently nwk1 cluster is using a split horizon DNS setup in a authoritative non-delegated zone to CloudFlare and FreeIPA. This creates bad practice and more importantly requires setting a DNS entry in both the internal DNS server and external DNS server (CloudFlare)
Current steps to expose a external service with DNS
- Make a DNS record internally
- Make a DNS record externally
Current steps to expose a internal service with DNS
- Set IP whitelist on ingress
- Make a dns record internally
Proposal:
Use current internal DNS unconditionally only for internal services in it's own zone. Since the internal server has tsig rfc2136 support, leverage external DNS to update A records in bind.
Implement new domain kutara.io for desired external services and expose services with another external DNS instance.
Notes and drawbacks:
- External services will rely only on external DNS (1.1.1.1/8.8.8.8) in this setup. Therefore if local internet is lost we won't be able resolve entries. Rely on DNS cache
- 3 external IPs are exposed for traefik. Therefore a target must be set to the external(to k8s) load balancer on both internal and external bound services
- We can likely now easily integrate our PKI infrastructure and remove Let's Encrypt for our internal domain. This can be a positive as we can leverage mTLS
- Synapse is currently bounded to our internal domain. This was a huge oversight and we might need to start fresh.
- We will attempt on our external domain to use CloudFlare's Origin CA issuer.
Example segmentation:
Track progess: #43
Make ceph-02 stateless
Directories to preserve:
TODO
Use new Renovate Generic Regex Manager
Devin and I came up with a new scheme for renovate regex manager that allows it to be used in a few places such as images in helm values, Flux Kustomize deployments, and CRD installs via pruneless kustomize. Add the comments in where it's needed.
Setup git crypt
Setup gitcrypt and begin storing kube configs and .envs
.gitignore will need to be updated
Utilize u-code for scr1-cluster-0
It was present in the mc but now absent in the talconfig. Migrate it over
Code server is broken on arm64
Track upstream Flatcar-Linux issue for Raspberry Pi 4s
Currently using iPXE with flatcar-linux with Raspberry Pi 4's is lacking NIC support.
https://docs.flatcar-linux.org/os/sdk-modifying-flatcar/
Tried a few different kernel options though when building packages for arm64 it's currently failing. Look into this further.
Upstream issue: flatcar/Flatcar#227
Renovate Dashboard
This issue provides visibility into Renovate updates and their statuses. Learn more
Open
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
- chore(deps): update helm chart kured to v2.10.0
- chore(deps): update terraform digitalocean to v2.14.0
- Check this box to trigger a request for Renovate to run again on this repository
Create Kustomizations for CRDs to allow cluster to properly bootstrap
Per: fluxcd/flux2#562 (comment)
A kustomization needs to be created for CRDs to allow the cluster to properly bootstrap at once. Refactor this on the next bootstrap.
Current known CRDs to check
- Rook-Ceph Ceph-Cluster
- Traefik IngressRoute
- Cert-Manager Cluster-Issuer
- Service-Monitor
Deploy netbox
@anthr76 ;)
Include open-iscsi on Kubic
A one-liner approach: transactional-update -n pkg install open-iscsi && transactional-update reboot
Ansible and combustion integration to follow. This is necessary for openEBS. The daemon will also need to be checked if it's in enabled.
Used tvheadend image is no longer being updated
Just a heads up that @onedr0p is no longer maintaining it.
"Too much of a pain" - https://discord.com/channels/673534664354430999/1088081671686996008/1195034677141049364
Add NFS volume
For the interim add a NFS export to experiment and learn when dealing with stateful containers
Sometimes home-assistant can't recover from postgres connection drops
Sometimes kubegres-postgres reschedules. When this happens slowly home-assistant times out trying to connect resulting in a manual restart of home assistant. Figure out how to not have that life
Write docs for automatically installing Kubic
https://gist.github.com/anthr76/d06ee9ef7e791563597fba708aefdd48
Above gist outlines the steps to auto install Kubic using autoyast and iPXE submit this to the docs and write automations to avoid technical debt.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.