npm - @intentius/chant-lexicon-helm - Versions diffs - 0.0.22 → 0.0.24 - Mend

@intentius/chant-lexicon-helm 0.0.22 → 0.0.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

package/dist/integrity.json +5 -5
package/dist/manifest.json +1 -1
package/dist/skills/chant-helm.md +447 -0
package/package.json +1 -1
package/src/composites/composites.test.ts +116 -110
package/src/composites/helm-batch-job.ts +33 -19
package/src/composites/helm-crd-lifecycle.ts +37 -24
package/src/composites/helm-cron-job.ts +25 -13
package/src/composites/helm-daemon-set.ts +26 -14
package/src/composites/helm-external-secret.ts +21 -12
package/src/composites/helm-library.ts +21 -7
package/src/composites/helm-microservice.ts +46 -29
package/src/composites/helm-monitored-service.ts +75 -51
package/src/composites/helm-namespace-env.ts +80 -52
package/src/composites/helm-secure-ingress.ts +66 -50
package/src/composites/helm-stateful-service.ts +29 -16
package/src/composites/helm-web-app.ts +37 -22
package/src/composites/helm-worker.ts +34 -20
package/src/plugin.test.ts +3 -3
package/src/plugin.ts +8 -42
package/src/resources.ts +29 -0
package/src/skills/chant-helm.md +447 -0
package/dist/skills/chant-helm-create-chart.md +0 -211
package/src/skills/create-chart.md +0 -211
/package/dist/skills/{chant-helm-chart-patterns.md → chant-helm-patterns.md} +0 -0
/package/dist/skills/{chant-helm-chart-security-patterns.md → chant-helm-security.md} +0 -0
/package/src/skills/{chart-patterns.md → chant-helm-patterns.md} +0 -0
/package/src/skills/{chart-security-patterns.md → chant-helm-security.md} +0 -0

package/src/skills/create-chart.md DELETED Viewed

@@ -1,211 +0,0 @@
----
-skill: chant-helm
-description: Build, validate, and deploy Helm charts from a chant project
-user-invocable: true
----
-# Helm Chart Operational Playbook
-## How chant and Helm relate
-chant is a **synthesis compiler** — it compiles TypeScript source files into a complete Helm chart directory (Chart.yaml, values.yaml, templates/, etc.). `chant build` does not call the Helm CLI; synthesis is pure and deterministic. Your job as an agent is to bridge synthesis and deployment:
-- Use **chant** for: build, lint, diff (local chart comparison)
-- Use **helm** for: install, upgrade, rollback, test, dependency update
-The source of truth is the TypeScript in `src/`. The generated chart directory is an intermediate artifact — never edit it by hand.
-## Scaffolding a new project
-### Initialize with a template
-```bash
-chant init --lexicon helm                          # default: Deployment + Service chart
-```
-### Project structure after init
-```
-my-chart/
-  src/
-    chart.ts      ← Chart metadata, Values, K8s resources with Helm intrinsics
-  chant.json      ← project configuration
-  package.json
-```
-## Key concepts
-### Values proxy
-The `values` proxy creates `{{ .Values.x }}` template directives:
-```typescript
-import { values } from "@intentius/chant-lexicon-helm";
-// values.replicaCount → {{ .Values.replicaCount }}
-// values.image.repository → {{ .Values.image.repository }}
-```
-### Template functions
-```typescript
-import { include, printf, toYaml, quote, required, helmDefault } from "@intentius/chant-lexicon-helm";
-include("my-app.fullname")           // {{ include "my-app.fullname" . }}
-printf("%s:%s", values.image.repo, values.image.tag)  // {{ printf "%s:%s" ... }}
-toYaml(values.resources, 12)         // {{ toYaml .Values.resources | nindent 12 }}
-```
-### Conditional resources
-```typescript
-import { If, values } from "@intentius/chant-lexicon-helm";
-// Wrap an entire resource in {{- if .Values.ingress.enabled }}
-export const ingress = If(values.ingress.enabled, new Ingress({ ... }));
-```
-### Built-in objects
-```typescript
-import { Release, ChartRef } from "@intentius/chant-lexicon-helm";
-Release.Name       // {{ .Release.Name }}
-Release.Namespace  // {{ .Release.Namespace }}
-ChartRef.Version   // {{ .Chart.Version }}
-```
-## Build and validate workflow
-```bash
-# Build the chart
-chant build
-# Lint the TypeScript (pre-synth rules)
-chant lint
-# Validate the generated chart (post-synth checks)
-chant check
-# Validate with helm CLI
-helm lint dist/
-helm template test dist/
-```
-## Common patterns
-### Deployment with parameterized image
-```typescript
-export const deployment = new Deployment({
-  metadata: {
-    name: include("my-app.fullname"),
-    labels: include("my-app.labels"),
-  },
-  spec: {
-    replicas: values.replicaCount,
-    template: {
-      spec: {
-        containers: [{
-          name: "my-app",
-          image: printf("%s:%s", values.image.repository, values.image.tag),
-          resources: toYaml(values.resources),
-        }],
-      },
-    },
-  },
-});
-```
-### Composites for common patterns
-```typescript
-import { HelmWebApp, HelmMicroservice, HelmDaemonSet, HelmWorker } from "@intentius/chant-lexicon-helm";
-// Quick scaffold: Deployment + Service + Ingress + HPA + ServiceAccount
-const result = HelmWebApp({ name: "my-app", port: 3000, replicas: 3 });
-// Full microservice: + PDB + ConfigMap + health probes + resource limits
-const msvc = HelmMicroservice({ name: "api", port: 8080 });
-// DaemonSet for node-level agents (logging, monitoring)
-const agent = HelmDaemonSet({ name: "log-agent", imageRepository: "fluent/fluent-bit" });
-// Worker for background processors (no Service, exec probes, queue config)
-const worker = HelmWorker({ name: "job-processor", replicas: 4 });
-```
-### Secret management with ExternalSecret
-```typescript
-import { HelmExternalSecret } from "@intentius/chant-lexicon-helm";
-const secrets = HelmExternalSecret({
-  name: "app-secrets",
-  secretStoreName: "vault",
-  data: {
-    DB_PASSWORD: "secret/data/db-password",
-    API_KEY: "secret/data/api-key",
-  },
-});
-```
-### Resource ordering
-```typescript
-import { withOrder, argoWave } from "@intentius/chant-lexicon-helm";
-// Helm hook ordering (lower weight = runs first)
-metadata: { annotations: { ...withOrder(-5) } }
-// Argo CD sync waves
-metadata: { annotations: { ...argoWave(2) } }
-```
-### CRD lifecycle management
-```typescript
-import { HelmCRDLifecycle } from "@intentius/chant-lexicon-helm";
-// Managed CRD lifecycle via Helm hooks (solves Helm's CRD limitation)
-const lifecycle = HelmCRDLifecycle({
-  name: "my-operator",
-  crdContent: crdYaml,
-});
-```
-## Lint rules
-| Rule | Description |
-|------|-------------|
-| WHM001 | Chart must have name, version, apiVersion |
-| WHM002 | Values should not contain bare secrets |
-| WHM003 | Container images should use values references |
-| WHM101 | Chart.yaml has valid apiVersion (v2) |
-| WHM102 | values.schema.json present when Values used |
-| WHM103 | Go template syntax valid (balanced braces) |
-| WHM104 | NOTES.txt exists for application charts |
-| WHM105 | _helpers.tpl exists |
-| WHM201 | Resources have standard Helm labels |
-| WHM301 | At least one test for application charts |
-| WHM302 | Resource limits set |
-| WHM401 | Image uses :latest tag or no tag |
-| WHM402 | runAsNonRoot not set |
-| WHM403 | readOnlyRootFilesystem not set |
-| WHM404 | privileged: true detected |
-| WHM405 | Resource spec missing cpu/memory |
-| WHM406 | CRD lifecycle limitation |
-| WHM407 | Secret with inline data |
-| WHM501 | Unused values keys |
-| WHM502 | Deprecated K8s API versions |
-## Troubleshooting
-### "apiVersion must be v2"
-Helm 3 requires `apiVersion: v2` in Chart.yaml. Update your Chart metadata.
-### "unbalanced template braces"
-A Go template expression has mismatched `{{` / `}}`. Check your intrinsic usage.
-### "hardcoded image tag"
-Use `printf("%s:%s", values.image.repository, values.image.tag)` instead of literal strings for container images.

/package/dist/skills/{chant-helm-chart-patterns.md → chant-helm-patterns.md} RENAMED Viewed

File without changes

/package/dist/skills/{chant-helm-chart-security-patterns.md → chant-helm-security.md} RENAMED Viewed

File without changes

/package/src/skills/{chart-patterns.md → chant-helm-patterns.md} RENAMED Viewed

File without changes

/package/src/skills/{chart-security-patterns.md → chant-helm-security.md} RENAMED Viewed

File without changes