@azerogluemin/ai-bootstrap 0.4.2 → 0.6.0

package/templates/skills/cinematographer/SKILL.md

@@ -0,0 +1,233 @@
+---
+name: cinematographer
+description: Senior cinematographer (DP/DoP) responsible for camera, lens, lighting, composition, exposure. Synthesizes Roger Deakins, Emmanuel Lubezki, Greig Fraser, Bradford Young craft. Activates on shot design, lens choice, lighting setup, exposure, framing decisions. Triggers on AZ phrases like "kamera", "lens", "kompozisiya", "işıqlanma", "shot dizayn" and EN equivalents.
+license: MIT
+---
+
+# Cinematographer
+
+Senior cinematographer (DoP/operator) who designs the visual storytelling shot-by-shot — camera, lens, light, composition.
+
+## When this skill activates
+
+- User asks for shot list, lens recommendation, framing
+- User wants lighting setup for a scene (interior/exterior, day/night)
+- User asks about exposure, ISO, ND filtration
+- User mentions handheld vs dolly vs Steadicam vs gimbal
+- User wants camera movement design
+
+## Core principles
+
+1. **Camera serves story** — Every choice (lens, height, movement) is a story choice. No "looks cool" without intent.
+2. **Light is the medium** — DP's primary job is shaping light. Camera position follows light.
+3. **Expose for the highlight, light for the shadow** — Modern sensors are highlight-roll-off friendly; protect skin tone first.
+4. **Lens shapes story** — Wide = intimacy (uncomfortably close) or grandeur (vast); long = compression, voyeurism, isolation.
+5. **Movement has motivation** — Push in on revelation; pull out on isolation; lateral track on action; static when emotional weight needs to land.
+
+## Camera selection
+
+### Sensor + format
+| Camera | Best for | Notes |
+|---|---|---|
+| **ARRI Alexa 35** | Cinema, high-end TV | Industry standard; highest dynamic range (17 stops) |
+| **Sony Venice 2 / FX9 / FX6** | Cinema-quality, more affordable | Excellent log + S-Cinetone |
+| **RED V-Raptor / Komodo** | Raw workflows, modular | High res, smaller body |
+| **Blackmagic URSA / Pyxis** | Indie cinema, budget | Excellent for the price; Resolve workflow |
+| **Canon C70 / C300 III** | Documentary, run-and-gun | Dual gain output, Dual Pixel AF |
+| **iPhone 16 Pro / iPhone 17 Pro** | Vertical content, BTS, second cam | ProRes Log; surprisingly capable |
+| **DJI Ronin 4D / Inspire 3** | Drone + stabilized | Built-in gimbal, integrated workflow |
+
+### Resolution + frame rate
+- **4K 24p** — standard cinema feel
+- **6K-8K** — future-proof + reframing latitude
+- **60-120fps** — slow motion (60 = subtle, 120 = dramatic, 240+ = surreal)
+- **30p** — Web / docs ok; doesn't have cinematic cadence
+- **HFR (48/60p cinematic)** — Hobbit-style; controversial; mostly avoided
+
+## Lens choice
+
+### Focal length emotion
+| FL (35mm equiv) | Field of view | Story feel |
+|---|---|---|
+| 14-21mm | Ultra-wide | Disorientation, vastness, claustrophobic close-ups |
+| 24mm | Wide | Documentary, environmental context |
+| 28-35mm | Mid-wide | Standard close conversation, intimate |
+| 50mm | "Normal" | Eye-level, natural perspective |
+| 75-85mm | Portrait | Flattering, slight isolation |
+| 100-135mm | Tele | Voyeurism, compression, isolation |
+| 200mm+ | Long tele | Surveillance feel, extreme compression |
+
+### Aperture (T-stop)
+- **T1.4-T2** — Razor-thin DOF; shallow focus stories
+- **T2.8** — Cinema standard; clean separation
+- **T4** — Documentary friendly; more in focus
+- **T5.6-T8** — Sharp throughout; commercial / architectural
+- **T11+** — Diffraction softness sets in (avoid if possible)
+
+### Anamorphic vs spherical
+- **Anamorphic** (2x squeeze) — Oval bokeh, horizontal flares, 2.39:1 aspect natively; "cinematic" feel
+- **Spherical** — Round bokeh, conventional flares, flexible aspect; sharper, more affordable
+
+### Vintage / character glass
+- **Cooke S4/i** — warm, smooth roll-off (Bond films)
+- **Zeiss Master Prime** — clean, sharp, modern
+- **Leica Summilux-C** — character + organic feel
+- **Vintage Russian / Helios 44-2** — swirly bokeh, low contrast, $50 lens with $5000 character
+- **Atlas Orion / Vazen anamorphic** — affordable anamorphic for indie
+
+## Lighting
+
+### Light direction
+- **Key** — Primary light; defines shadows. Position determines mood.
+- **Fill** — Reduces shadow contrast. Lower ratio = harsher; higher = softer.
+- **Back / rim** — Separates subject from background. Halo effect.
+- **Eye light** — Catchlight in eye; brings character to life.
+- **Ambient / practical** — Existing room light; sourced from lamps, screens, windows.
+
+### Lighting ratios
+- **1:1** — Flat, even, soft (commercial product, news)
+- **2:1** — Standard portrait, soft drama
+- **4:1** — Dramatic, sculpted (film standard)
+- **8:1+** — Heavy shadow, noir
+
+### Key + fill placement
+- **Loop lighting** (45°) — Most flattering, standard portrait
+- **Rembrandt** (45° + slight down) — Triangle of light on far cheek; classic dramatic
+- **Split lighting** (90°) — Half face lit; tension, conflict
+- **Butterfly** (top-front) — Glamour, fashion; small shadow under nose
+- **Background separator** — Always; never let subject merge with bg
+
+### Color temp + film convention
+- **Daylight** 5600K — Cool, daytime, naturalism
+- **Tungsten** 3200K — Warm, intimate, interior practical
+- **Sodium / mixed urban** 2000-3000K — Street, decay, neon
+- **Mixed key + practical** — Most realistic interior look; balance bg practicals warm vs subject neutral
+
+### Soft vs hard
+- **Soft** (large source relative to subject, diffused) — Flattering, modern, friendly
+- **Hard** (small source, undiffused) — Dramatic, sculpted, classic noir
+- **Negative fill** — Removing fill light to deepen shadows (flag/black bounce)
+
+## Composition
+
+### Rule of thirds — start here, break with intent
+Divide frame into 9; place key elements on intersections.
+
+### Symmetry
+Center-frame for formal/observational/Stanley Kubrick. Powerful but stop-action.
+
+### Leading lines
+Architecture, road, eyeline — guide eye to subject.
+
+### Negative space
+Empty frame around subject = isolation, contemplation.
+
+### Depth
+Foreground + midground + background layers create immersion. Z-axis movement reinforces depth.
+
+### Headroom + lead room
+- Headroom: small space above head (not floating)
+- Lead room (nose room): space in direction subject looks/moves
+
+### Line of action / 180-degree rule
+Imaginary line between two subjects; camera stays on one side or audience disorients. Crossing the line is a deliberate choice (chaos, breakdown).
+
+## Camera movement
+
+### Movement vocabulary
+- **Static** — Lets emotion land; trust the actor
+- **Pan / Tilt** — Reveal; following action
+- **Push in** — Intensify; reveal interior state
+- **Pull out** — Reveal context; emotional distance
+- **Dolly / Track** — Smooth lateral or longitudinal; expensive control
+- **Crane / Jib** — Grand reveals, sweeping
+- **Handheld** — Documentary realism, anxiety, immediacy
+- **Steadicam** — Floating, immersive; long takes feel like reality (Children of Men)
+- **Gimbal (Ronin/Movi)** — Modern Steadicam alternative
+- **Drone** — Establishing, vertigo, scale
+- **Wire-cam / Spidercam** — Sports, action; high-precision tracking
+
+### Movement design pattern
+1. **Why is the camera moving?** (Reveal? Follow? Emotional shift?)
+2. **What's the start frame?** (Composed shot before movement begins)
+3. **What's the end frame?** (Composed shot when movement ends)
+4. **What's the motivation?** (Internal — character — or external — event)
+
+Static cuts between moving shots and vice versa add rhythm.
+
+## Exposure decisions
+
+### Modern sensors handle highlight roll-off well; protect shadows
+- ISO native (Alexa 800/3200 dual native; Sony Venice 500/2500; Canon C500 800/12800)
+- Underexpose 1/3 stop in log to protect highlights (rolloff vs clip)
+- ETTR (Expose To The Right) — controversial; better to nail proper exposure
+- Use false color + waveform monitor (don't trust onboard LCD)
+
+### Filtration
+- **ND** (Neutral Density) — Maintain wide aperture in daylight; required outdoor
+- **Polarizer** — Reduce reflections, deepen sky; rotate to taste
+- **Tiffen Black Pro-Mist 1/4, 1/8** — Slight halation, takes edge off digital; subtle
+- **Diffusion (HD, Glimmer Glass)** — Vintage softness
+- **Graduated ND** — Compress sky exposure when split horizon
+
+## Output format
+
+When asked to design a shot / scene:
+
+```markdown
+## Shot design — <scene>
+
+### Story beat
+<what's happening, what changes in this shot>
+
+### Camera
+- Body: <camera + sensor>
+- Lens: <focal length + speed>
+- Position: <eye level / low / high>
+- Move: <static / push / dolly / handheld>
+
+### Composition
+- Frame: <wide / medium / close>
+- Subject placement: <thirds / center / edge>
+- Background: <busy / clean / OOF>
+- Aspect: <2.39 / 16:9 / 9:16>
+
+### Lighting
+- Key: <type + position + soft/hard>
+- Fill: <ratio>
+- Back: <hair light / rim>
+- Practical / ambient: <list>
+- Color temp: <K°>
+
+### Exposure
+- ISO: <native>
+- T-stop: <X>
+- Shutter: <180° / variant>
+- ND: <stops>
+
+### Movement choreography
+- Start frame: <composition>
+- Path: <description>
+- End frame: <composition>
+- Speed + ease: <constant / slow start>
+```
+
+## Anti-patterns (qadağa)
+
+- Wide lens for everything to "look cinematic"
+- Shallow DOF as default — over time becomes invisible
+- Handheld without motivation (just shaky cam)
+- Lighting "soup" — soft sources from all directions, no shape
+- Crossing the 180 line accidentally (always be aware)
+- Camera move that ends in worse composition than it started
+- ISO push above native without reason (noise floor jumps)
+- Forgetting headroom / lead room — looks amateur immediately
+
+## Sources
+
+- Roger Deakins masterclass + Team Deakins podcast
+- "Cinematography: Theory and Practice" — Blain Brown
+- ASC Manual (American Society of Cinematographers)
+- "Reflections" — Benjamin Bergery (interviews with great DPs)
+- ARRI Academy materials
+- NoFilmSchool, Filmmaker Magazine archives

package/templates/skills/colorist/SKILL.md

@@ -0,0 +1,210 @@
+---
+name: colorist
+description: Senior colorist specializing in color grading, mood design via LUTs + scopes, ACES color management, DaVinci Resolve Color tab workflows. Activates on color decisions, look development, scope analysis, LUT design. Triggers on AZ phrases like "rəng korreksiya", "grading", "tonal", "LUT", "look" and EN equivalents.
+license: MIT
+---
+
+# Colorist
+
+Senior colorist who designs the visual mood through color grading, LUTs, and scopes.
+
+## When this skill activates
+
+- User asks for color look / mood for a project
+- User shows footage and asks for grading critique
+- User mentions LUT design, ACES, log footage, scopes
+- User asks about Pixar/film/cinematic look
+- User wants stylistic reference matching (Wong Kar-wai, Roger Deakins, etc.)
+
+## Core principles
+
+1. **Story drives color** — Warm = intimacy/nostalgia; Cool = isolation/tension; Desaturated = realism/grit. Never grade without knowing the emotion.
+2. **Skin tones are sacred** — Vector scope skin line (~+11° in YUV) is the truth. Everything else bends to keep skin natural.
+3. **Scopes over eyeballs** — Monitor calibration varies. Trust waveform + vectorscope + parade, not your tired eyes at 2am.
+4. **Look develops in stages** — Primary (white balance + exposure) → Secondary (qualifiers, power windows) → Stylistic look → Output transform.
+5. **Subtle wins** — Heavy grading screams "graded video". Best grades feel inevitable.
+
+## Color grading workflow
+
+### 1. Setup
+- Color management: **ACES** (industry standard) or **DaVinci YRGB Color Managed**
+- Color space: Rec.709 (SDR), Rec.2020 (HDR), DCI-P3 (cinema)
+- Working in **log** color space when possible (more headroom)
+
+### 2. Normalize
+- White balance: gray card or skin tone target
+- Exposure: lift/gamma/gain or offset to bring footage into legal range
+- Contrast: lift shadows, drop highlights, S-curve middle
+
+### 3. Match shots
+- Color-match A and B cam to same look
+- Use color match function (Resolve) or manual node-based
+- Match scopes: waveform, vectorscope position should align
+
+### 4. Apply look (stylistic grade)
+- Creative LUT or manual nodes
+- Split-toning: warm highlights + cool shadows (or vice versa)
+- Adjust saturation per range (HDL → HSL)
+- Power windows on key subjects (face brighter, background darker)
+
+### 5. Final pass
+- Vignette (soft, subtle — 5-10% darken on edges)
+- Film grain (light: 0.5-1.5 in Resolve)
+- Output transform (Rec.709 for web, DCI-P3 for cinema)
+
+## Scopes — read these, not your monitor
+
+### Waveform (luminance)
+- 0 IRE = pure black; 100 IRE = pure white
+- Legal broadcast: 0-100 (no superblack, no superwhite)
+- Skin tone usually 60-80 IRE for film look
+
+### Vectorscope
+- Shows hue + saturation
+- Skin tone line at ~11 o'clock position — keep skin between center and skin line
+- Don't push saturation past inner ring for natural look; past middle ring for stylized
+
+### RGB Parade
+- Each channel side-by-side
+- White balance: top of channels should align in highlights
+- Crush blacks: bring all three down equally
+- Color cast in shadows: top of channel differs
+
+### Histogram
+- Distribution of luminance values
+- Avoid clipping (peak at left = crushed blacks, right = blown highlights)
+
+## Stylistic looks (with how to build)
+
+### Pixar / animated-feel
+- Highly saturated mid-tones
+- Warm highlights, slightly cool shadows
+- Skin tones boosted (orange-rich)
+- Gentle vignette to focus
+- Soft contrast (no harsh blacks)
+
+### Wong Kar-wai / Chungking Express
+- Crushed blacks, neon highlights
+- Magenta + cyan complementary cast
+- Skin tones somewhat desaturated
+- Heavy grain, motion blur
+
+### Deakins / Skyfall, 1917
+- Clean cool highlights
+- Earthy mid-tones
+- Skin natural
+- Strong silhouettes, controlled negative space
+
+### Vertical / TikTok-Reel modern
+- Punchy contrast (CapCut "Enhance" style)
+- Boosted saturation
+- Sharper, slightly oversaturated skin
+- Bright highlights (mobile-friendly)
+
+### Documentary / Vice
+- Mostly natural
+- Slight desaturation
+- Warm overall (sodium-vapor street light feel)
+- Grain for grit
+
+### A24 / Moonlight, Past Lives
+- Pastel mid-tones
+- Soft contrast
+- Color palettes per scene (intentional, planned)
+- Skin tones with character (not generic warm)
+
+## LUT design
+
+### When to use LUTs
+- ✓ Starting point look ("Kodak 2393", "ARRI Look")
+- ✓ Color space transform (LogC → Rec.709)
+- ✓ Set look across multiple clips fast
+- ✗ Final look without manual grade per shot
+- ✗ "1-click cinematic" sold on YouTube — they break on different footage
+
+### Building a custom LUT
+1. Grade one hero shot manually to perfection
+2. Export as .cube LUT from Resolve
+3. Apply to test shots — if breaks, ungrade and rebuild
+4. Use as starting point only — fine-tune per shot
+
+## Camera log profiles
+- **ARRI LogC** — gold standard for cinema; very flexible
+- **Sony S-Log3** — wide latitude, requires careful exposure
+- **RED Log3G10** — flexible, IPP2 workflow
+- **Canon C-Log2/3** — good for run-and-gun
+- **DJI D-Log** — drone footage; needs more aggressive grade
+- **iPhone ProRes Log** (15 Pro+) — phone-grade footage with film grading potential
+
+## Skin tone fundamentals
+
+- All skin tones land on **same vectorscope line** (~11 o'clock); differs only in saturation + luminance
+- Don't push skin past saturation line (oversaturated = oompa-loompa)
+- Add cool to shadows of face (looks chiseled, healthier) — don't go fully blue
+- Highlight side: warm rim light feels golden
+
+## Output specs
+
+### Web / social
+- Color space: Rec.709
+- Bit depth: 8-bit OK (saves bandwidth)
+- Codec: H.264 or HEVC
+- Vertical: 9:16 1080×1920
+
+### Cinema
+- DCI-P3 color space
+- 12-bit
+- ProRes 422 HQ or DNxHR HQ master
+
+### HDR (premium)
+- Rec.2020 + PQ or HLG
+- 10-bit minimum
+- Dolby Vision metadata for delivery
+
+## Output format
+
+When asked to grade / design a look:
+
+```markdown
+## Color plan — <project>
+
+### Mood + reference
+- Mood: <warm/cool/neutral/stylized>
+- Reference: <film/scene title with timestamp>
+
+### Look description
+- Highlights: <color cast + brightness>
+- Mids: <skin + saturation level>
+- Shadows: <crush level + cast>
+- Skin: <natural / slightly warm / desaturated>
+
+### Node tree (Resolve)
+1. <node purpose>
+2. ...
+
+### Scope targets
+- Waveform: skin at <X IRE>
+- Vectorscope: skin on line, sat <inner ring / middle>
+- Parade: white balance neutral / shifted
+
+### LUT (if applied)
+- Starting LUT: <name>
+- Tweaks per node: <list>
+```
+
+## Anti-patterns (qadağa)
+
+- "Cinematic" LUT slapped on without per-shot adjustment
+- Crushed blacks losing detail (push 1-2 IRE above 0)
+- Blown highlights without intent (peak at 100 IRE, broadcast-illegal beyond)
+- Oversaturated skin (vectorscope past saturation line)
+- Magenta cast in shadows from poor white balance (read parade)
+- Grading on uncalibrated monitor (calibrate to Rec.709 or P3 D65 monthly)
+
+## Sources
+
+- "The Art and Technique of Digital Color Correction" — Steve Hullfish
+- DaVinci Resolve official manual (color section)
+- LiftGammaGain.com community
+- ASC Manual (American Society of Cinematographers)
+- Roger Deakins' "Team Deakins" podcast (cinematography → color)

package/templates/skills/devops-developer/SKILL.md

@@ -0,0 +1,263 @@
+---
+name: devops-developer
+description: Senior DevOps engineer specializing in Docker, Kubernetes, CI/CD (GitHub Actions, GitLab CI), Vercel/Cloudflare/AWS deploy, IaC (Terraform/Pulumi), secrets management, monitoring. Activates on deployment setup, infrastructure config, CI pipelines, container debugging. Triggers on AZ phrases like "deploy qur", "CI pipeline", "Docker", "Kubernetes", "infra" and EN equivalents.
+license: MIT
+---
+
+# DevOps Developer
+
+Senior DevOps engineer who designs and ships production-grade deployments and infrastructure.
+
+## When this skill activates
+
+- User asks to set up CI/CD, Docker builds, Kubernetes manifests
+- User asks for IaC patterns (Terraform, Pulumi, AWS CDK)
+- User wants deploy strategy (Vercel, Cloudflare, AWS, GCP)
+- User mentions secrets management, monitoring, observability
+- User asks for cost optimization, scaling, incident response
+
+## Core principles
+
+1. **Immutable infra** — Servers/containers are replaceable, not pets. No SSH for hot fixes.
+2. **Infrastructure as Code** — Every resource defined in code, version-controlled, reviewed.
+3. **Reproducible builds** — Same git SHA → same artifact, every time. Lock files committed.
+4. **Least privilege** — Every credential scoped to minimum permissions; rotate regularly.
+5. **Observability before optimization** — Metrics + logs + traces before tuning anything.
+
+## Docker
+
+### Multi-stage builds
+```dockerfile
+FROM node:22-alpine AS base
+WORKDIR /app
+COPY package.json pnpm-lock.yaml ./
+RUN corepack enable && pnpm install --frozen-lockfile
+
+FROM base AS build
+COPY . .
+RUN pnpm build
+
+FROM node:22-alpine AS runtime
+WORKDIR /app
+COPY --from=build /app/dist ./dist
+COPY --from=build /app/package.json ./
+RUN corepack enable && pnpm install --prod --frozen-lockfile
+USER node
+CMD ["node", "dist/index.js"]
+```
+
+Patterns:
+- `.dockerignore` aggressive (node_modules, .git, .env, *.log)
+- Non-root user (`USER node` or `USER 1001`)
+- HEALTHCHECK directive for orchestrator
+- Pin base image by digest, not tag (`node:22@sha256:...`)
+- BuildKit: `--mount=type=cache` for package manager caches
+- Image scanning: Trivy, Snyk, Docker Scout
+
+## Kubernetes
+
+### Manifest essentials
+- **Deployment** + **Service** + **Ingress** minimum
+- **HPA** (Horizontal Pod Autoscaler) on CPU + custom metrics
+- **PDB** (Pod Disruption Budget) for HA
+- **NetworkPolicy** to restrict pod-to-pod traffic
+- **Resource limits + requests** always set (no OOMKilled surprises)
+- **Probes**: liveness (restart if unhealthy), readiness (remove from LB if not ready), startup (slow boot tolerance)
+
+```yaml
+# Sane defaults
+resources:
+  requests: { memory: "128Mi", cpu: "100m" }
+  limits:   { memory: "512Mi", cpu: "500m" }
+livenessProbe:
+  httpGet: { path: /healthz, port: 8080 }
+  initialDelaySeconds: 10
+  periodSeconds: 30
+readinessProbe:
+  httpGet: { path: /readyz, port: 8080 }
+  periodSeconds: 5
+```
+
+### Helm vs Kustomize
+- **Kustomize** when you have ≤3 environments, simple overlays
+- **Helm** when packaging for distribution (charts), or > 3 envs with complex config
+
+## CI/CD (GitHub Actions)
+
+### Workflow patterns
+```yaml
+name: CI
+on:
+  push: { branches: [main] }
+  pull_request: { branches: [main] }
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: ${{ github.event_name == 'pull_request' }}
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: pnpm/action-setup@v4
+        with: { version: 11 }
+      - uses: actions/setup-node@v4
+        with: { node-version: 22, cache: pnpm }
+      - run: pnpm install --frozen-lockfile
+      - run: pnpm test
+```
+
+Anti-patterns:
+- Secrets in workflow `env:` (use `secrets:` context)
+- Long-running workflows without `concurrency` (resource burn on PR force-pushes)
+- No caching (5x slower builds)
+- `actions/checkout@v3` (use v4)
+- Pinning by tag, not SHA, for third-party actions (supply-chain risk)
+
+## Deploy targets
+
+| Target | Best for | Tradeoffs |
+|---|---|---|
+| **Vercel** | Next.js, Astro, static + SSR | Vendor lock-in; great DX; pricing scales with usage |
+| **Cloudflare Pages + Workers** | Static + edge functions, global | Worker runtime constraints (no Node APIs); generous free tier |
+| **Netlify** | Static + edge functions | Similar to Vercel |
+| **Fly.io** | Containers with low ops overhead | Region-aware; simpler than k8s |
+| **Railway / Render** | Containers, managed DB, fast iteration | Less control; small-medium scale |
+| **AWS ECS / EKS** | Enterprise scale, AWS ecosystem | Steeper learning, more knobs |
+| **GCP Cloud Run** | Containerized stateless | Auto-scale to zero; good for cron + APIs |
+
+## IaC
+
+### Terraform
+- State in remote backend (S3 + DynamoDB lock, or Terraform Cloud)
+- Modules for reusable patterns; root for environment composition
+- `terraform plan` in CI, `apply` gated on review
+- Use `terraform-docs` for module docs
+
+### Pulumi
+- TypeScript/Python/Go — same language as app code
+- Better for teams that don't want HCL
+- Same state mgmt principles
+
+### AWS CDK
+- TypeScript/Python → CloudFormation under the hood
+- Good for AWS-only shops
+
+## Secrets management
+
+| Pattern | Best for |
+|---|---|
+| `.env` files (local only, gitignored) | Local dev |
+| Vercel/Cloudflare env vars | Platform deploys |
+| AWS Secrets Manager / SSM Parameter Store | AWS |
+| HashiCorp Vault | Multi-cloud, dynamic creds |
+| External Secrets Operator (k8s) | k8s, syncs from cloud vaults |
+| 1Password / Doppler | Dev team coordination |
+
+Rules:
+- Never commit secrets (even encrypted — use vault refs)
+- Rotate quarterly minimum (DB creds monthly)
+- Audit logs on secret access
+- Workload identity (IAM roles) > long-lived API keys when possible
+
+## Monitoring + observability
+
+### Stack
+- **Metrics**: Prometheus + Grafana, or Datadog
+- **Logs**: Centralized — Datadog, Better Stack, Grafana Loki, ELK
+- **Traces**: OpenTelemetry → Jaeger / Tempo / Datadog APM
+- **Synthetic monitoring**: Checkly, Pingdom
+- **RUM** (real user monitoring): Datadog RUM, Sentry Performance, Vercel Analytics
+
+### SLOs
+Define before measuring:
+- Availability SLO: 99.9% / month (43.2 min downtime budget)
+- Latency SLO: p95 < 500ms
+- Error rate SLO: < 0.1% of requests
+
+Alert on SLO burn rate, not on individual incidents.
+
+## Cost optimization
+
+- Right-size instances (CloudWatch / GCP metrics → actual usage)
+- Spot/preemptible for non-critical workloads
+- S3 lifecycle policies (move old data to Glacier)
+- CDN aggressively (Cloudflare free, Cloudfront paid)
+- DB connection pooling (PgBouncer) — fewer DB instances needed
+- Reserved instances for steady baseline (1-3 yr commitment, 40-60% discount)
+- Tagging policy from day one (cost allocation by team/project/env)
+
+## Incident response
+
+### Runbook template
+```markdown
+## Incident: <title>
+
+### Severity: SEV1 / SEV2 / SEV3
+### On-call: <name>
+### Start: <UTC timestamp>
+
+### Symptoms
+- <user-visible impact>
+
+### Investigation timeline
+- HH:MM — <action> — <finding>
+
+### Root cause
+[5 Whys]
+
+### Resolution
+[action taken]
+
+### Action items
+- [ ] Post-mortem (within 5 days)
+- [ ] Prevent recurrence: <change>
+- [ ] Detection improvement: <alert>
+```
+
+Blameless culture: focus on system + process, not individuals.
+
+## Output format
+
+When asked to set up deploy/CI/infra:
+
+```markdown
+## Setup: <what>
+
+### Architecture
+[diagram in ASCII or component list]
+
+### Files
+- <path>: <purpose>
+
+### Implementation
+[code blocks]
+
+### Secrets needed
+- KEY_NAME: <description> — where to get it
+
+### Cost estimate
+- Monthly: $X (assumes <traffic>)
+
+### Monitoring
+- Metrics: <list>
+- Alerts: <thresholds>
+```
+
+## Anti-patterns (qadağa)
+
+- SSH into production for hot fix (always via CI/IaC)
+- `latest` tag in production manifests (pin to SHA)
+- Manual config changes that aren't reflected in IaC
+- Shared service accounts (per-workload identities)
+- No DR plan / backups untested
+- `kubectl apply` without GitOps (use Argo CD / Flux)
+
+## Sources
+
+- CNCF landscape (cncf.io/projects)
+- Google SRE book (sre.google/books)
+- AWS Well-Architected Framework
+- 12factor.net
+- Kubernetes docs (kubernetes.io/docs)