npm - @vaharoni/devops - Versions diffs - 1.0.47 - Mend

@vaharoni/devops 1.0.47

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (342) hide show

package/README.md +51 -0
package/dist/app-support/crypto/index.d.ts +15 -0
package/dist/app-support/crypto/index.d.ts.map +1 -0
package/dist/app-support/crypto/index.js +30 -0
package/dist/app-support/crypto/internal-token.d.ts +20 -0
package/dist/app-support/crypto/internal-token.d.ts.map +1 -0
package/dist/app-support/crypto/internal-token.js +42 -0
package/dist/app-support/crypto/internal-token.spec.d.ts +2 -0
package/dist/app-support/crypto/internal-token.spec.d.ts.map +1 -0
package/dist/app-support/crypto/internal-token.spec.js +45 -0
package/dist/app-support/crypto/secret.d.ts +3 -0
package/dist/app-support/crypto/secret.d.ts.map +1 -0
package/dist/app-support/crypto/secret.js +12 -0
package/dist/app-support/crypto/secret.spec.d.ts +2 -0
package/dist/app-support/crypto/secret.spec.d.ts.map +1 -0
package/dist/app-support/crypto/secret.spec.js +15 -0
package/dist/app-support/discovery/dev-discovery-loader.d.ts +2 -0
package/dist/app-support/discovery/dev-discovery-loader.d.ts.map +1 -0
package/dist/app-support/discovery/dev-discovery-loader.js +30 -0
package/dist/app-support/discovery/service-endpoint.d.ts +2 -0
package/dist/app-support/discovery/service-endpoint.d.ts.map +1 -0
package/dist/app-support/discovery/service-endpoint.js +10 -0
package/dist/cli/affected.d.ts +11 -0
package/dist/cli/affected.d.ts.map +1 -0
package/dist/cli/affected.js +103 -0
package/dist/cli/common.d.ts +89 -0
package/dist/cli/common.d.ts.map +1 -0
package/dist/cli/common.js +236 -0
package/dist/cli/common.spec.d.ts +2 -0
package/dist/cli/common.spec.d.ts.map +1 -0
package/dist/cli/common.spec.js +64 -0
package/dist/cli/console.d.ts +11 -0
package/dist/cli/console.d.ts.map +1 -0
package/dist/cli/console.js +35 -0
package/dist/cli/constant.d.ts +11 -0
package/dist/cli/constant.d.ts.map +1 -0
package/dist/cli/constant.js +22 -0
package/dist/cli/db.d.ts +11 -0
package/dist/cli/db.d.ts.map +1 -0
package/dist/cli/db.js +119 -0
package/dist/cli/dml.d.ts +11 -0
package/dist/cli/dml.d.ts.map +1 -0
package/dist/cli/dml.js +116 -0
package/dist/cli/env.d.ts +11 -0
package/dist/cli/env.d.ts.map +1 -0
package/dist/cli/env.js +67 -0
package/dist/cli/exec.d.ts +11 -0
package/dist/cli/exec.d.ts.map +1 -0
package/dist/cli/exec.js +50 -0
package/dist/cli/image.d.ts +11 -0
package/dist/cli/image.d.ts.map +1 -0
package/dist/cli/image.js +140 -0
package/dist/cli/init.d.ts +11 -0
package/dist/cli/init.d.ts.map +1 -0
package/dist/cli/init.js +66 -0
package/dist/cli/internal-curl.d.ts +11 -0
package/dist/cli/internal-curl.d.ts.map +1 -0
package/dist/cli/internal-curl.js +43 -0
package/dist/cli/job.d.ts +11 -0
package/dist/cli/job.d.ts.map +1 -0
package/dist/cli/job.js +67 -0
package/dist/cli/jwt.d.ts +11 -0
package/dist/cli/jwt.d.ts.map +1 -0
package/dist/cli/jwt.js +27 -0
package/dist/cli/namespace.d.ts +11 -0
package/dist/cli/namespace.d.ts.map +1 -0
package/dist/cli/namespace.js +70 -0
package/dist/cli/prep-build.d.ts +11 -0
package/dist/cli/prep-build.d.ts.map +1 -0
package/dist/cli/prep-build.js +82 -0
package/dist/cli/prisma.d.ts +11 -0
package/dist/cli/prisma.d.ts.map +1 -0
package/dist/cli/prisma.js +25 -0
package/dist/cli/redis.d.ts +11 -0
package/dist/cli/redis.d.ts.map +1 -0
package/dist/cli/redis.js +76 -0
package/dist/cli/registry.d.ts +11 -0
package/dist/cli/registry.d.ts.map +1 -0
package/dist/cli/registry.js +58 -0
package/dist/cli/run-many.d.ts +11 -0
package/dist/cli/run-many.d.ts.map +1 -0
package/dist/cli/run-many.js +50 -0
package/dist/cli/run.d.ts +11 -0
package/dist/cli/run.d.ts.map +1 -0
package/dist/cli/run.js +37 -0
package/dist/cli/template.d.ts +11 -0
package/dist/cli/template.d.ts.map +1 -0
package/dist/cli/template.js +123 -0
package/dist/cli/test.d.ts +11 -0
package/dist/cli/test.d.ts.map +1 -0
package/dist/cli/test.js +28 -0
package/dist/devops.d.ts +3 -0
package/dist/devops.d.ts.map +1 -0
package/dist/devops.js +103 -0
package/dist/index.d.ts +4 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +3 -0
package/dist/libs/affected-entities.d.ts +15 -0
package/dist/libs/affected-entities.d.ts.map +1 -0
package/dist/libs/affected-entities.js +52 -0
package/dist/libs/config.d.ts +6 -0
package/dist/libs/config.d.ts.map +1 -0
package/dist/libs/config.js +98 -0
package/dist/libs/dependencies.d.ts +19 -0
package/dist/libs/dependencies.d.ts.map +1 -0
package/dist/libs/dependencies.js +62 -0
package/dist/libs/dependencies.spec.d.ts +2 -0
package/dist/libs/dependencies.spec.d.ts.map +1 -0
package/dist/libs/dependencies.spec.js +21 -0
package/dist/libs/digital-ocean/container-reg.d.ts +6 -0
package/dist/libs/digital-ocean/container-reg.d.ts.map +1 -0
package/dist/libs/digital-ocean/container-reg.js +69 -0
package/dist/libs/discovery/dependencies.d.ts +19 -0
package/dist/libs/discovery/dependencies.d.ts.map +1 -0
package/dist/libs/discovery/dependencies.js +62 -0
package/dist/libs/discovery/dependencies.spec.d.ts +2 -0
package/dist/libs/discovery/dependencies.spec.d.ts.map +1 -0
package/dist/libs/discovery/dependencies.spec.js +21 -0
package/dist/libs/discovery/images.d.ts +5 -0
package/dist/libs/discovery/images.d.ts.map +1 -0
package/dist/libs/discovery/images.js +45 -0
package/dist/libs/discovery/index.d.ts +5 -0
package/dist/libs/discovery/index.d.ts.map +1 -0
package/dist/libs/discovery/index.js +55 -0
package/dist/libs/discovery/package-json-processor.d.ts +3 -0
package/dist/libs/discovery/package-json-processor.d.ts.map +1 -0
package/dist/libs/discovery/package-json-processor.js +34 -0
package/dist/libs/discovery/process-common.d.ts +25 -0
package/dist/libs/discovery/process-common.d.ts.map +1 -0
package/dist/libs/discovery/process-common.js +40 -0
package/dist/libs/discovery/process-package-json.d.ts +3 -0
package/dist/libs/discovery/process-package-json.d.ts.map +1 -0
package/dist/libs/discovery/process-package-json.js +34 -0
package/dist/libs/discovery/process-pyproject-toml.d.ts +3 -0
package/dist/libs/discovery/process-pyproject-toml.d.ts.map +1 -0
package/dist/libs/discovery/process-pyproject-toml.js +36 -0
package/dist/libs/discovery/pyproject-toml-processor.d.ts +3 -0
package/dist/libs/discovery/pyproject-toml-processor.d.ts.map +1 -0
package/dist/libs/discovery/pyproject-toml-processor.js +39 -0
package/dist/libs/git-helpers.d.ts +8 -0
package/dist/libs/git-helpers.d.ts.map +1 -0
package/dist/libs/git-helpers.js +20 -0
package/dist/libs/hetzner/reg-secret.d.ts +3 -0
package/dist/libs/hetzner/reg-secret.d.ts.map +1 -0
package/dist/libs/hetzner/reg-secret.js +39 -0
package/dist/libs/k8s-constants.d.ts +12 -0
package/dist/libs/k8s-constants.d.ts.map +1 -0
package/dist/libs/k8s-constants.js +66 -0
package/dist/libs/k8s-db.d.ts +18 -0
package/dist/libs/k8s-db.d.ts.map +1 -0
package/dist/libs/k8s-db.js +73 -0
package/dist/libs/k8s-generate.d.ts +17 -0
package/dist/libs/k8s-generate.d.ts.map +1 -0
package/dist/libs/k8s-generate.js +179 -0
package/dist/libs/k8s-helpers.d.ts +11 -0
package/dist/libs/k8s-helpers.d.ts.map +1 -0
package/dist/libs/k8s-helpers.js +42 -0
package/dist/libs/k8s-image-config.d.ts +8 -0
package/dist/libs/k8s-image-config.d.ts.map +1 -0
package/dist/libs/k8s-image-config.js +113 -0
package/dist/libs/k8s-job-waiter.d.ts +8 -0
package/dist/libs/k8s-job-waiter.d.ts.map +1 -0
package/dist/libs/k8s-job-waiter.js +84 -0
package/dist/libs/k8s-namespace.d.ts +7 -0
package/dist/libs/k8s-namespace.d.ts.map +1 -0
package/dist/libs/k8s-namespace.js +27 -0
package/dist/libs/k8s-redis.d.ts +6 -0
package/dist/libs/k8s-redis.d.ts.map +1 -0
package/dist/libs/k8s-redis.js +31 -0
package/dist/libs/k8s-secrets-manager.d.ts +5 -0
package/dist/libs/k8s-secrets-manager.d.ts.map +1 -0
package/dist/libs/k8s-secrets-manager.js +61 -0
package/dist/libs/validate-env.d.ts +56 -0
package/dist/libs/validate-env.d.ts.map +1 -0
package/dist/libs/validate-env.js +214 -0
package/dist/libs/validate-env.spec.d.ts +2 -0
package/dist/libs/validate-env.spec.d.ts.map +1 -0
package/dist/libs/validate-env.spec.js +168 -0
package/dist/libs/workspace-discovery.d.ts +2 -0
package/dist/libs/workspace-discovery.d.ts.map +1 -0
package/dist/libs/workspace-discovery.js +75 -0
package/dist/test.d.ts +2 -0
package/dist/test.d.ts.map +1 -0
package/dist/test.js +1 -0
package/dist/types/index.d.ts +925 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +79 -0
package/package.json +55 -0
package/src/app-support/crypto/index.ts +31 -0
package/src/app-support/crypto/internal-token.spec.ts +53 -0
package/src/app-support/crypto/internal-token.ts +82 -0
package/src/app-support/crypto/secret.spec.ts +18 -0
package/src/app-support/crypto/secret.ts +13 -0
package/src/app-support/discovery/dev-discovery-loader.ts +35 -0
package/src/app-support/discovery/service-endpoint.ts +12 -0
package/src/cli/affected.ts +116 -0
package/src/cli/common.spec.ts +78 -0
package/src/cli/common.ts +323 -0
package/src/cli/console.ts +46 -0
package/src/cli/constant.ts +25 -0
package/src/cli/db.ts +133 -0
package/src/cli/dml.ts +126 -0
package/src/cli/env.ts +87 -0
package/src/cli/exec.sh +21 -0
package/src/cli/exec.ts +57 -0
package/src/cli/image.ts +197 -0
package/src/cli/init.ts +75 -0
package/src/cli/internal-curl.ts +48 -0
package/src/cli/job.ts +80 -0
package/src/cli/jwt.ts +32 -0
package/src/cli/namespace.ts +78 -0
package/src/cli/prep-build.ts +96 -0
package/src/cli/prisma.ts +33 -0
package/src/cli/redis.ts +83 -0
package/src/cli/registry.ts +76 -0
package/src/cli/run-many.ts +61 -0
package/src/cli/run.ts +46 -0
package/src/cli/template.ts +169 -0
package/src/cli/test.ts +30 -0
package/src/devops.ts +119 -0
package/src/index.ts +3 -0
package/src/libs/affected-entities.ts +71 -0
package/src/libs/config.ts +117 -0
package/src/libs/digital-ocean/container-reg.ts +81 -0
package/src/libs/discovery/dependencies.spec.ts +25 -0
package/src/libs/discovery/dependencies.ts +73 -0
package/src/libs/discovery/images.ts +57 -0
package/src/libs/discovery/index.ts +60 -0
package/src/libs/discovery/process-common.ts +55 -0
package/src/libs/discovery/process-package-json.ts +47 -0
package/src/libs/discovery/process-pyproject-toml.ts +43 -0
package/src/libs/git-helpers.ts +32 -0
package/src/libs/hetzner/reg-secret.ts +54 -0
package/src/libs/k8s-constants.ts +83 -0
package/src/libs/k8s-db.ts +83 -0
package/src/libs/k8s-generate.ts +211 -0
package/src/libs/k8s-helpers.ts +59 -0
package/src/libs/k8s-image-config.ts +165 -0
package/src/libs/k8s-job-waiter.ts +124 -0
package/src/libs/k8s-namespace.ts +41 -0
package/src/libs/k8s-redis.ts +31 -0
package/src/libs/k8s-secrets-manager.ts +79 -0
package/src/libs/validate-env.spec.ts +223 -0
package/src/libs/validate-env.ts +266 -0
package/src/target-templates/.devops/config/constants.yaml +17 -0
package/src/target-templates/.devops/config/images.yaml +88 -0
package/src/target-templates/.devops/docker-images/common/docker-common.sh +23 -0
package/src/target-templates/.devops/docker-images/node-services/node-exec.sh +8 -0
package/src/target-templates/.devops/docker-images/node-services/node-run.sh +8 -0
package/src/target-templates/.devops/docker-images/node-services.Dockerfile +34 -0
package/src/target-templates/.devops/docker-images/python-services/python-exec.sh +8 -0
package/src/target-templates/.devops/docker-images/python-services/python-run.sh +8 -0
package/src/target-templates/.devops/docker-images/python-services.Dockerfile +29 -0
package/src/target-templates/.devops/env.example.yaml +23 -0
package/src/target-templates/.devops/infra/hetzner/abandoned/harbor-values.yaml +30 -0
package/src/target-templates/.devops/infra/hetzner/abandoned/hcloud-config.yaml +134 -0
package/src/target-templates/.devops/infra/hetzner/cert-manager.yaml +25 -0
package/src/target-templates/.devops/infra/hetzner/harbor-cert.yaml +13 -0
package/src/target-templates/.devops/infra/hetzner/harbor-values.yaml +76 -0
package/src/target-templates/.devops/infra/hetzner/hcloud-config.yaml +113 -0
package/src/target-templates/.devops/infra/hetzner/ingress-nginx-annotations.yaml +49 -0
package/src/target-templates/.devops/infra/hetzner/ingress-nginx-configmap.yaml +8 -0
package/src/target-templates/.devops/infra/hetzner/retain-storage-class.yaml +8 -0
package/src/target-templates/.devops/infra/monitoring-ingress.yaml +62 -0
package/src/target-templates/.devops/infra/stackgres-ui-ingress.yaml +35 -0
package/src/target-templates/.devops/infra/test.yaml +60 -0
package/src/target-templates/.devops/manifests/_index.yaml +21 -0
package/src/target-templates/.devops/manifests/cron-jobs.yaml.hb +55 -0
package/src/target-templates/.devops/manifests/db-migrate-job.yaml.hb +42 -0
package/src/target-templates/.devops/manifests/deployment-debug.yaml.hb +44 -0
package/src/target-templates/.devops/manifests/deployment-process.yaml.hb +47 -0
package/src/target-templates/.devops/manifests/deployment-web.yaml.hb +53 -0
package/src/target-templates/.devops/manifests/ingress.yaml.hb +21 -0
package/src/target-templates/.devops/manifests/prefect.yaml.hb +62 -0
package/src/target-templates/.devops/manifests/service.yaml.hb +15 -0
package/src/target-templates/.devops/milvus/production/milvus-values.yaml +2 -0
package/src/target-templates/.devops/milvus/staging/milvus-values.yaml +2 -0
package/src/target-templates/.devops/postgres/DailyOperatorRestart.yaml +54 -0
package/src/target-templates/.devops/postgres/production/cluster/PodDisruptionBudget.yaml +27 -0
package/src/target-templates/.devops/postgres/production/cluster/SGCluster.yaml +47 -0
package/src/target-templates/.devops/postgres/production/cluster/StackGres-alerts.yaml +191 -0
package/src/target-templates/.devops/postgres/production/configurations/06-SGDistributedLogs.yaml +11 -0
package/src/target-templates/.devops/postgres/production/configurations/07-SGObjectStorage.yaml +18 -0
package/src/target-templates/.devops/postgres/production/configurations/08-SGScript.yaml +12 -0
package/src/target-templates/.devops/postgres/staging/cluster/SGCluster.yaml +42 -0
package/src/target-templates/.devops/postgres/staging/configurations/07-SGObjectStorage.yaml +18 -0
package/src/target-templates/.devops/postgres/staging/configurations/08-SGScript.yaml +12 -0
package/src/target-templates/.devops/prefect/production/prefect-values.yaml +14 -0
package/src/target-templates/.devops/prefect/staging/prefect-values.yaml +14 -0
package/src/target-templates/.devops/redis/production/redis-values.yaml +20 -0
package/src/target-templates/.devops/redis/staging/redis-values.yaml +8 -0
package/src/target-templates/.envrc +5 -0
package/src/target-templates/.github/actions/build-image@v1/action.yaml +86 -0
package/src/target-templates/.github/actions/connect-to-digital-ocean@v1/action.yaml +29 -0
package/src/target-templates/.github/actions/connect-to-hetzner@v1/action.yaml +31 -0
package/src/target-templates/.github/actions/connect-to-infra@v1/action.yaml +46 -0
package/src/target-templates/.github/actions/db-migrate@v1/action.yaml +23 -0
package/src/target-templates/.github/actions/deploy-image@v1/action.yaml +33 -0
package/src/target-templates/.github/actions/setup-prereq@v1/action.yaml +29 -0
package/src/target-templates/.github/workflows/k8s-build.yaml +84 -0
package/src/target-templates/applications/example-data-pipeline/pyproject.toml +14 -0
package/src/target-templates/applications/example-data-pipeline/src/example_data_pipeline/main.py +38 -0
package/src/target-templates/applications/example-node/index.ts +30 -0
package/src/target-templates/applications/example-node/package.json +26 -0
package/src/target-templates/applications/example-node/tsconfig.json +3 -0
package/src/target-templates/applications/example-python/pyproject.toml +20 -0
package/src/target-templates/applications/example-python/src/example_python/__init__.py +0 -0
package/src/target-templates/applications/example-python/src/example_python/main.py +13 -0
package/src/target-templates/applications/example-python/src/example_python/scripts.py +17 -0
package/src/target-templates/applications/example-python/tests/__init__.py +0 -0
package/src/target-templates/applications/jobs/README.md +68 -0
package/src/target-templates/applications/jobs/index.ts +1 -0
package/src/target-templates/applications/jobs/package.json +30 -0
package/src/target-templates/applications/jobs/tsconfig.json +3 -0
package/src/target-templates/config/.env.development +1 -0
package/src/target-templates/config/.env.global +4 -0
package/src/target-templates/config/.env.test +1 -0
package/src/target-templates/db/db/__init__.py +0 -0
package/src/target-templates/db/db/db_client_test.py +46 -0
package/src/target-templates/db/db-client-test.ts +140 -0
package/src/target-templates/db/db-client.ts +19 -0
package/src/target-templates/db/env.yaml +4 -0
package/src/target-templates/db/package.json +17 -0
package/src/target-templates/db/prisma/schema.prisma +24 -0
package/src/target-templates/db/prisma-setup-vitest.ts +27 -0
package/src/target-templates/db/pyproject.toml +14 -0
package/src/target-templates/db/tsconfig.json +3 -0
package/src/target-templates/devops +3 -0
package/src/target-templates/devopspy +3 -0
package/src/target-templates/dml/package.json +7 -0
package/src/target-templates/dml/tsconfig.json +3 -0
package/src/target-templates/libs/example-node-lib/bun.lock +27 -0
package/src/target-templates/libs/example-node-lib/index.ts +3 -0
package/src/target-templates/libs/example-node-lib/package.json +12 -0
package/src/target-templates/libs/example-node-lib/tsconfig.json +3 -0
package/src/target-templates/libs/example-python-lib/pyproject.toml +11 -0
package/src/target-templates/libs/example-python-lib/src/example_python_lib/__init__.py +2 -0
package/src/target-templates/pyproject.toml +19 -0
package/src/target-templates/tmp/.gitkeep +0 -0
package/src/target-templates/tsconfig.json +27 -0
package/src/test.ts +0 -0
package/src/types/index.ts +173 -0

package/src/target-templates/.devops/manifests/deployment-web.yaml.hb ADDED Viewed

@@ -0,0 +1,53 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: {{app_name}}
+    env: {{monorepo_env}}
+  name: {{app_name}}
+  namespace: {{namespace}}
+spec:
+  replicas: {{replicas}}
+  selector:
+    matchLabels:
+      app: {{app_name}}
+  template:
+    metadata:
+      labels:
+        app: {{app_name}}
+        env: {{monorepo_env}}
+    spec:
+      volumes:
+        - name: secret-injection-hook
+          secret:
+            secretName: {{env_secret_name}}
+      containers:
+        - image: {{image_path}}
+          name: {{app_name}}
+          args:
+            - "{{project_name}}"
+          env:
+            - name: MONOREPO_ENV
+              value: {{monorepo_env}}
+            - name: MONOREPO_NAMESPACE
+              value: {{namespace}}
+            - name: IS_KUBERNETES
+              value: 'true'
+            - name: MONOREPO_BASE_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: {{env_secret_name}}
+                  key: {{env_base_secret_key}}
+          volumeMounts:
+            - name: secret-injection-hook
+              mountPath: /etc/kubernetes/secrets
+              readOnly: true
+          startupProbe:
+            httpGet:
+              path: /healthz
+              port: {{port}}
+            failureThreshold: 50
+            periodSeconds: 2
+          resources:
+            requests:
+              memory: 250Mi

package/src/target-templates/.devops/manifests/ingress.yaml.hb ADDED Viewed

@@ -0,0 +1,21 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{app_name}}
+  namespace: {{namespace}}
+  labels:
+    app: {{app_name}}
+    env: {{monorepo_env}}
+spec:
+  ingressClassName: nginx
+  rules:
+    - host: {{subdomain}}.{{domain_name}}
+      http:
+        paths:
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: {{service_name}}
+                port:
+                  number: 80

package/src/target-templates/.devops/manifests/prefect.yaml.hb ADDED Viewed

@@ -0,0 +1,62 @@
+{{#each prefectFlows}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: {{../app_name}}
+    env: {{../monorepo_env}}
+  name: {{../app_name}}-{{flow_name}}
+  namespace: {{../namespace}}
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: {{../app_name}}
+  template:
+    metadata:
+      labels:
+        app: {{../app_name}}
+        env: {{../monorepo_env}}
+    spec:
+      volumes:
+        - name: secret-injection-hook
+          secret:
+            secretName: {{../env_secret_name}}
+      containers:
+        - image: {{../image_path}}
+          name: {{flow_name}}
+          command:
+            - ./python-exec.sh
+          args:
+            - ./devopspy
+            - exec
+            - --in
+            - {{../app_name}}
+            - python
+            - -m
+            - {{script_path}}
+          env:
+            - name: PREFECT_API_URL
+              value: http://prefect-server.prefect-{{../monorepo_env}}:4200/api
+            - name: MONOREPO_ENV
+              value: {{../monorepo_env}}
+            - name: MONOREPO_NAMESPACE
+              value: {{../namespace}}
+            - name: IS_KUBERNETES
+              value: 'true'
+            - name: MONOREPO_BASE_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: {{../env_secret_name}}
+                  key: {{../env_base_secret_key}}
+          volumeMounts:
+            - name: secret-injection-hook
+              mountPath: /etc/kubernetes/secrets
+              readOnly: true
+          resources:
+            requests:
+              memory: 250Mi
+{{#unless @last}}
+---
+{{/unless}}
+{{/each}}

package/src/target-templates/.devops/manifests/service.yaml.hb ADDED Viewed

@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{service_name}}
+  labels:
+    app: {{app_name}}
+    env: {{monorepo_env}}
+  namespace: {{namespace}}
+spec:
+  selector:
+    app: {{app_name}}
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: {{port}}

package/src/target-templates/.devops/milvus/production/milvus-values.yaml ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ cluster:
2	+ enabled: true

package/src/target-templates/.devops/milvus/staging/milvus-values.yaml ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ cluster:
2	+ enabled: false

package/src/target-templates/.devops/postgres/DailyOperatorRestart.yaml ADDED Viewed

@@ -0,0 +1,54 @@
+# New service account for managing deployments in stackgres namespace
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: stackgres-deployment-manager
+  namespace: stackgres
+---
+# Role with permissions to restart deployments
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: deployment-manager
+  namespace: stackgres
+rules:
+- apiGroups: ["apps"]
+  resources: ["deployments"]
+  verbs: ["get", "list", "watch", "patch"]
+---
+# Bind the role to the service account
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: stackgres-deployment-manager-binding
+  namespace: stackgres
+subjects:
+- kind: ServiceAccount
+  name: stackgres-deployment-manager
+  namespace: stackgres
+roleRef:
+  kind: Role
+  name: deployment-manager
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: batch/v1
+kind: CronJob
+metadata:
+  name: stackgres-operator-restart-all-deployments
+  namespace: stackgres
+spec:
+  schedule: "0 2 * * *"
+  jobTemplate:
+    spec:
+      template:
+        spec:
+          serviceAccountName: stackgres-deployment-manager
+          containers:
+          - name: kubectl
+            image: bitnami/kubectl:latest
+            command:
+            - /bin/sh
+            - -c
+            # Restarts all deployments in the stackgres namespace, which include stackgres-collector, stackgres-operator, and stackgres-restapi
+            - kubectl rollout restart deployment -n stackgres
+          restartPolicy: OnFailure

package/src/target-templates/.devops/postgres/production/cluster/PodDisruptionBudget.yaml ADDED Viewed

@@ -0,0 +1,27 @@
+apiVersion: policy/v1
+kind: PodDisruptionBudget
+metadata:
+  name: db-production-replicas-pdb
+  namespace: db-production
+spec:
+  maxUnavailable: 1
+  selector:
+    matchLabels:
+      app: StackGresCluster
+      role: replica
+      stackgres.io/cluster-name: db-production
+      stackgres.io/cluster: "true"
+---
+apiVersion: policy/v1
+kind: PodDisruptionBudget
+metadata:
+  name: db-production-primary-pdb
+  namespace: db-production
+spec:
+  minAvailable: 1
+  selector:
+    matchLabels:
+      app: StackGresCluster
+      role: primary
+      stackgres.io/cluster-name: db-production
+      stackgres.io/cluster: "true"

package/src/target-templates/.devops/postgres/production/cluster/SGCluster.yaml ADDED Viewed

@@ -0,0 +1,47 @@
+apiVersion: stackgres.io/v1
+kind: SGCluster
+metadata:
+  namespace: db-production
+  name: db-production
+spec:
+  postgres:
+    version: '17.4'
+    extensions:
+    # - name: 'pg_repack'
+    - name: 'pg_trgm'  # required for prefect
+  instances: 2
+  # sgInstanceProfile: 'size-m'
+  profile: 'production'
+  pods:
+    persistentVolume:
+      size: '20Gi'
+      storageClass: 'hcloud-volumes-retain'
+    scheduling:
+      tolerations:
+        - key: "stackgres"
+          operator: "Exists"
+          effect: "NoSchedule"
+  configurations:
+    # sgPostgresConfig: 'pgconfig'
+    # sgPoolingConfig: 'poolconfig'
+    backups:
+    - sgObjectStorage: 'backupconfig'
+      cronSchedule: '30 02 * * *'
+      retention: 7
+      compression: lz4
+      performance:
+        maxDiskBandwidth: 26214400 #25 MB per seceod
+        maxNetworkBandwidth: 52428800 #50 MB per second
+        uploadDiskConcurrency: 2
+  # We do not use for now as it requires adding a few more nodes
+  # distributedLogs:
+  #   sgDistributedLogs: 'distributedlogs'
+  managedSql:
+    scripts:
+      - sgScript: create-db-script
+  postgresServices:
+    primary:
+      type: ClusterIP
+    replicas:
+      type: ClusterIP
+  prometheusAutobind: true

package/src/target-templates/.devops/postgres/production/cluster/StackGres-alerts.yaml ADDED Viewed

@@ -0,0 +1,191 @@
+apiVersion: monitoring.coreos.com/v1
+kind: PrometheusRule
+metadata:
+  labels:
+    app: kube-prometheus-stack
+    release: monitoring
+  name: stackgres-rules
+  namespace: monitoring
+spec:
+  groups:
+  - name: StackGres
+    rules:
+    - alert: PostgresInstanceDown
+      expr: pg_up == 0
+      for: 1m
+      labels:
+        severity: critical
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Postgres server instance is down"
+        description: "Postgres has not been responding for the past 1 minutes on {{ $labels.instance }}"
+        title: "Postgres server instance {{ $labels.instance }} is down "
+    - alert: PostgresExporterErrors
+      expr: pg_exporter_last_scrape_error == 1
+      for: 10m
+      labels:
+        severity: critical
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Postgres Exporter is down or is showing errors"
+        description: "postgres-exporter is not running or it is showing errors {{ $labels.instance }}"
+    - alert: PostgresReplicationLagSizeTooLarge
+      expr: pg_replication_status_lag_size > 1e+09
+      for: 5m
+      labels:
+        severity: critical
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Postgres replication lag size is to large"
+        description: "Replication lag size on server {{$labels.instance}} ({{$labels.application_name}}) is currently {{ $value | humanize1024}}B behind the leader in cluster {{$labels.cluster_name}}"
+    - alert: PostgresTooManyDeadTuples
+      expr: ((pg_stat_user_tables_n_dead_tup > 1e+06) / (pg_stat_user_tables_n_live_tup + pg_stat_user_tables_n_dead_tup)) >= 0.1
+      for: 30m
+      labels:
+        severity: info
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "PostgreSQL dead tuples is too large"
+        description: "The dead tuple ratio of {{$labels.relname}} on database {{$labels.datname}} is greater than 10% in cluster {{$labels.cluster_name}}"
+    - alert: PostgresInactiveReplicationSlots
+      expr: pg_replication_slots_active == 0
+      for: 10m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "There are inactive replications slots"
+        description: "The are some inactive replication slots on {{$labels.instance}} in cluster {{$labels.cluster_name}}"
+    - alert: PostgresSplitBrain
+      expr: count by(cluster_name) (pg_replication_is_replica == 0) > 1
+      for: 1m
+      labels:
+        severity: critical
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "There are more than one instance in read-write mode"
+        description: "Split Brain: too many postgres databases in cluster {{$labels.cluster_name}} in read-write mode"
+    - alert: PostgresTooManyConnections
+      expr: sum by (datname) (pg_stat_activity_count{datname!~"template.*|postgres"}) > pg_settings_max_connections * 0.9
+      for: 5m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: Postgresql too many connections (instance {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PostgreSQL instance has too many connections\n  VALUE = {{ $value }}\n  LABELS: {{ $labels }}"
+    - alert: PostgresNotEnoughConnections
+      expr: sum by (datname) (pg_stat_activity_count{datname!~"template.*|postgres"}) < 5
+      for: 5m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: Postgresql not enough connections (instance {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PostgreSQL instance should have more connections (> 5)\n  VALUE = {{ $value }}\n  LABELS: {{ $labels }}"
+    - alert: PostgresPromotedNode
+      expr: pg_replication_is_replica and changes(pg_replication_is_replica[1m]) > 0
+      for: 5m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Postgresql promoted node (instance {{ $labels.instance }}, cluster {{ $labels.cluster_name }})"
+        description: "Postgresql standby server has been promoted as primary node\n  VALUE = {{ $value }}\n  LABELS: {{ $labels }}"
+    - alert: PostgresLongRunningTransactionLeaderNode
+      expr: pg_long_running_transactions_transactions>0 and on (instance)(pg_replication_is_replica == 0)
+      for: 10m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Long running transaction on the leader node, {{ $labels.instance }}
+          cluster {{ $labels.cluster_name }}"
+        description: |-
+          There are long running transactions on the leader node, {{ $labels.instance }}
+            COUNT = {{ $value }}
+            LABELS: {{ $labels }}
+    - alert: PostgresLongRunningTransactionReplicaNode
+      expr: pg_long_running_transactions_transactions>0 and on (instance)(pg_replication_is_replica == 1)
+      for: 10m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: "Long running transaction on a replica node, {{ $labels.instance }}, cluster {{ $labels.cluster_name }}"
+        description: |-
+          There are long running transactions on a replica node, {{ $labels.instance }}
+            COUNT = {{ $value }}
+            LABELS: {{ $labels }}
+    # Connection Pooling alerts
+    - alert: PgBouncerWaitingClients
+      expr: pgbouncer_show_pools_cl_waiting > 0
+      for: 10m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: PgBouncer has waiting clients on instance {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PgBouncer instance has waiting clients\n  VALUE = {{ $value }}\n  LABELS: {{ $labels }}"
+    - alert: PgBouncerNotEnoughConnections
+      expr: (sum by (database,instance) (pgbouncer_show_pools_cl_active{database!~"template.*|postgres|pgbouncer"}) + sum by (database, instance) (pgbouncer_show_pools_cl_waiting{database!~"template.*|postgres|pgbouncer"}))  - on (database,instance) (pgbouncer_show_databases_pool_size{database!~"template.*|postgres|pgbouncer"}) > 0
+      for: 10m
+      labels:
+        severity: critical
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: PgBouncer pool size is not enough for the current connections on {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PgBouncer is getting more connections than the pool size, extra connections = {{ $value }}"
+    - alert: PgBouncerPoolFillingUp
+      expr: (sum by (database,instance) (pgbouncer_show_databases_pool_size{database!~"template.*|postgres|pgbouncer"})  - on (database,instance) pgbouncer_show_databases_current_connections)  <= 15
+      for: 1m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: PgBouncer pool is filling up on {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PgBouncer pool is filling up, remaining connections = {{ $value }}"
+    - alert: PgBouncerAvgWaitTimeTooHigh
+      expr: pgbouncer_show_stats_avg_wait_time > 1e+6
+      for: 5m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: PgBouncer time spent by clients waiting for a connections is too high on {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PgBouncer wait for a server connections is too high = {{ $value }}"
+    - alert: PgBouncerQueryTimeTooHigh
+      expr: pgbouncer_show_stats_avg_query_time > 5e+6
+      for: 5m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: PgBouncer average query duration more than 5 seconds on {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "PgBouncer average query duration more than 5 seconds = {{ $value }}"
+    - alert: DatabaseLowDiskAvailable
+      expr: (1.0 - node_filesystem_avail_bytes{mountpoint="/var/lib/postgresql",fstype!=""} / node_filesystem_size_bytes{mountpoint="/var/lib/postgresql",fstype!=""}) * 100 >= 80
+      for: 15m
+      labels:
+        severity: warning
+        service: "PostgreSQL"
+        cluster: "StackGres"
+      annotations:
+        summary: Database disk is filling up currently have less than 20% available on {{ $labels.instance }} in cluster {{$labels.cluster_name}})
+        description: "Database disk is filling up currently have less than 20%, currently occupied {{ $value }} %"

package/src/target-templates/.devops/postgres/production/configurations/06-SGDistributedLogs.yaml ADDED Viewed

@@ -0,0 +1,11 @@
+# We do not use for now as it requires adding a few more nodes
+# apiVersion: stackgres.io/v1
+# kind: SGDistributedLogs
+# metadata:
+#   name: distributedlogs
+#   namespace: db-production
+# spec:
+#   persistentVolume:
+#     size: 10Gi

package/src/target-templates/.devops/postgres/production/configurations/07-SGObjectStorage.yaml ADDED Viewed

@@ -0,0 +1,18 @@
+apiVersion: stackgres.io/v1beta1
+kind: SGObjectStorage
+metadata:
+  namespace: db-production
+  name: backupconfig
+spec:
+  type: s3Compatible
+  s3Compatible:
+    bucket: changeme-backups
+    endpoint: https://hel1.your-objectstorage.com
+    awsCredentials:
+      secretKeySelectors:
+        accessKeyId:
+          name: s3-backup-bucket-secret
+          key: accessKey
+        secretAccessKey:
+          name: s3-backup-bucket-secret
+          key: secretKey

package/src/target-templates/.devops/postgres/production/configurations/08-SGScript.yaml ADDED Viewed

@@ -0,0 +1,12 @@
+apiVersion: stackgres.io/v1
+kind: SGScript
+metadata:
+  name: create-db-script
+  namespace: db-production
+spec:
+  managedVersions: true
+  continueOnError: false
+  scripts:
+  - name: create-database
+    script: |
+      CREATE DATABASE changeme WITH OWNER postgres;

package/src/target-templates/.devops/postgres/staging/cluster/SGCluster.yaml ADDED Viewed

@@ -0,0 +1,42 @@
+apiVersion: stackgres.io/v1
+kind: SGCluster
+metadata:
+  namespace: db-staging
+  name: db-staging
+spec:
+  postgres:
+    version: '17.4'
+    extensions:
+    # - name: 'pg_repack'
+    - name: 'pg_trgm'  # required for prefect
+  instances: 1
+  # sgInstanceProfile: 'size-m'
+  profile: 'testing'
+  pods:
+    persistentVolume:
+      size: '10Gi'
+      storageClass: 'hcloud-volumes-retain'
+    scheduling:
+      tolerations:
+        - key: "stackgres"
+          operator: "Exists"
+          effect: "NoSchedule"
+  configurations:
+    # sgPostgresConfig: 'pgconfig'
+    # sgPoolingConfig: 'poolconfig'
+    backups:
+    - sgObjectStorage: 'backupconfig'
+      # cronSchedule: '30 02 */4 * *'
+      cronSchedule: '30 02 * * *'
+      retention: 4
+  # distributedLogs:
+  #   sgDistributedLogs: 'distributedlogs'
+  managedSql:
+    scripts:
+      - sgScript: create-db-script
+  postgresServices:
+    primary:
+      type: ClusterIP
+    replicas:
+      type: ClusterIP
+  prometheusAutobind: true

package/src/target-templates/.devops/postgres/staging/configurations/07-SGObjectStorage.yaml ADDED Viewed

@@ -0,0 +1,18 @@
+apiVersion: stackgres.io/v1beta1
+kind: SGObjectStorage
+metadata:
+  namespace: db-staging
+  name: backupconfig
+spec:
+  type: s3Compatible
+  s3Compatible:
+    bucket: changeme-backups
+    endpoint: https://hel1.your-objectstorage.com
+    awsCredentials:
+      secretKeySelectors:
+        accessKeyId:
+          name: s3-backup-bucket-secret
+          key: accessKey
+        secretAccessKey:
+          name: s3-backup-bucket-secret
+          key: secretKey

package/src/target-templates/.devops/postgres/staging/configurations/08-SGScript.yaml ADDED Viewed

@@ -0,0 +1,12 @@
+apiVersion: stackgres.io/v1
+kind: SGScript
+metadata:
+  name: create-db-script
+  namespace: db-staging
+spec:
+  managedVersions: true
+  continueOnError: false
+  scripts:
+  - name: create-database
+    script: |
+      CREATE DATABASE changeme WITH OWNER postgres;

package/src/target-templates/.devops/prefect/production/prefect-values.yaml ADDED Viewed

@@ -0,0 +1,14 @@
+ingress:
+  enabled: true
+  host:
+    hostname: "prefect-production.staging.com"
+server:
+  uiConfig:
+    prefectUiApiUrl: "https://prefect-production.staging.com/api"
+# We use the environment's stackgres postgres instance
+postgresql:
+  enabled: false
+secret:
+  create: false
+  name: prefect-server-postgresql-connection

package/src/target-templates/.devops/prefect/staging/prefect-values.yaml ADDED Viewed

@@ -0,0 +1,14 @@
+ingress:
+  enabled: true
+  host:
+    hostname: "prefect-staging.staging.com"
+server:
+  uiConfig:
+    prefectUiApiUrl: "https://prefect-staging.staging.com/api"
+# We use the environment's stackgres postgres instance
+postgresql:
+  enabled: false
+secret:
+  create: false
+  name: prefect-server-postgresql-connection

package/src/target-templates/.devops/redis/production/redis-values.yaml ADDED Viewed

@@ -0,0 +1,20 @@
+architecture: replication
+global:
+  defaultStorageClass: hcloud-volumes-retain
+master:
+  resources:
+    requests:
+      cpu: 1
+      memory: 256Mi
+    limits:
+      cpu: 3
+      memory: 1024Mi
+replica:
+  replicaCount: 1
+  resources:
+    requests:
+      cpu: 1
+      memory: 256Mi
+    limits:
+      cpu: 3
+      memory: 1024Mi

package/src/target-templates/.devops/redis/staging/redis-values.yaml ADDED Viewed

@@ -0,0 +1,8 @@
+architecture: standalone
+global:
+  defaultStorageClass: hcloud-volumes-retain
+master:
+  resources:
+    limits:
+      cpu: 1
+      memory: 256Mi

package/src/target-templates/.envrc ADDED Viewed

@@ -0,0 +1,5 @@
+if [ -f "$PWD/config/kubeconfig" ]; then
+  export KUBECONFIG="$PWD/config/kubeconfig"
+else
+  export KUBECONFIG="${HOME}/.kube/config"
+fi