aigroup-workflow 2.2.1 → 2.2.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.claude/commands/fix-build.md +10 -5
- package/.claude/commands/init-project.md +13 -8
- package/.claude/commands/plan.md +15 -8
- package/.claude/commands/review.md +12 -6
- package/.claude/commands/tdd.md +11 -5
- package/.claude/commands/workflow-start.md +20 -11
- package/.claude/settings.json +28 -0
- package/.codex/agents/architect.toml +207 -0
- package/.codex/agents/build-error-resolver.toml +110 -0
- package/.codex/agents/code-reviewer.toml +233 -0
- package/.codex/agents/doc-updater.toml +103 -0
- package/.codex/agents/e2e-runner.toml +103 -0
- package/.codex/agents/get-current-datetime.toml +23 -0
- package/.codex/agents/init-architect.toml +181 -0
- package/.codex/agents/planner.toml +208 -0
- package/.codex/agents/refactor-cleaner.toml +81 -0
- package/.codex/agents/rust-reviewer.toml +90 -0
- package/.codex/agents/security-reviewer.toml +104 -0
- package/.codex/agents/tdd-guide.toml +87 -0
- package/AGENTS.md +2 -2
- package/CLAUDE.md +23 -1
- package/LICENSE +20 -20
- package/README.md +333 -333
- package/agents/a11y-architect.md +141 -141
- package/agents/architect.md +211 -211
- package/agents/build-error-resolver.md +114 -114
- package/agents/chief-of-staff.md +151 -151
- package/agents/code-architect.md +71 -71
- package/agents/code-explorer.md +69 -69
- package/agents/code-reviewer.md +237 -237
- package/agents/code-simplifier.md +47 -47
- package/agents/comment-analyzer.md +45 -45
- package/agents/conversation-analyzer.md +52 -52
- package/agents/cpp-build-resolver.md +90 -90
- package/agents/cpp-reviewer.md +72 -72
- package/agents/csharp-reviewer.md +101 -101
- package/agents/dart-build-resolver.md +201 -201
- package/agents/database-reviewer.md +91 -91
- package/agents/doc-updater.md +107 -107
- package/agents/docs-lookup.md +68 -68
- package/agents/e2e-runner.md +107 -107
- package/agents/flutter-reviewer.md +243 -243
- package/agents/gan-evaluator.md +209 -209
- package/agents/gan-generator.md +131 -131
- package/agents/gan-planner.md +99 -99
- package/agents/get-current-datetime.md +26 -26
- package/agents/go-build-resolver.md +94 -94
- package/agents/go-reviewer.md +76 -76
- package/agents/harness-optimizer.md +35 -35
- package/agents/healthcare-reviewer.md +83 -83
- package/agents/java-build-resolver.md +153 -153
- package/agents/java-reviewer.md +92 -92
- package/agents/kotlin-build-resolver.md +118 -118
- package/agents/kotlin-reviewer.md +159 -159
- package/agents/loop-operator.md +36 -36
- package/agents/opensource-forker.md +198 -198
- package/agents/opensource-packager.md +249 -249
- package/agents/opensource-sanitizer.md +188 -188
- package/agents/performance-optimizer.md +446 -446
- package/agents/planner.md +212 -212
- package/agents/pr-test-analyzer.md +45 -45
- package/agents/python-reviewer.md +98 -98
- package/agents/pytorch-build-resolver.md +120 -120
- package/agents/refactor-cleaner.md +85 -85
- package/agents/rust-build-resolver.md +148 -148
- package/agents/rust-reviewer.md +94 -94
- package/agents/security-reviewer.md +108 -108
- package/agents/seo-specialist.md +59 -59
- package/agents/silent-failure-hunter.md +50 -50
- package/agents/tdd-guide.md +91 -91
- package/agents/type-design-analyzer.md +41 -41
- package/agents/typescript-reviewer.md +112 -112
- package/cli/commands/update.mjs +1 -1
- package/cli/utils/scaffold.mjs +53 -0
- package/docs/rules/agents.md +166 -50
- package/docs/rules/cpp/coding-style.md +44 -44
- package/docs/rules/cpp/hooks.md +39 -39
- package/docs/rules/cpp/patterns.md +51 -51
- package/docs/rules/cpp/security.md +51 -51
- package/docs/rules/cpp/testing.md +44 -44
- package/docs/rules/csharp/coding-style.md +72 -72
- package/docs/rules/csharp/hooks.md +25 -25
- package/docs/rules/csharp/patterns.md +50 -50
- package/docs/rules/csharp/security.md +58 -58
- package/docs/rules/csharp/testing.md +46 -46
- package/docs/rules/dart/coding-style.md +159 -159
- package/docs/rules/dart/hooks.md +66 -66
- package/docs/rules/dart/patterns.md +261 -261
- package/docs/rules/dart/security.md +135 -135
- package/docs/rules/dart/testing.md +215 -215
- package/docs/rules/golang/coding-style.md +32 -32
- package/docs/rules/golang/hooks.md +17 -17
- package/docs/rules/golang/patterns.md +45 -45
- package/docs/rules/golang/security.md +34 -34
- package/docs/rules/golang/testing.md +31 -31
- package/docs/rules/java/coding-style.md +114 -114
- package/docs/rules/java/hooks.md +18 -18
- package/docs/rules/java/patterns.md +146 -146
- package/docs/rules/java/security.md +100 -100
- package/docs/rules/java/testing.md +131 -131
- package/docs/rules/kotlin/coding-style.md +86 -86
- package/docs/rules/kotlin/hooks.md +17 -17
- package/docs/rules/kotlin/patterns.md +146 -146
- package/docs/rules/kotlin/security.md +82 -82
- package/docs/rules/kotlin/testing.md +128 -128
- package/docs/rules/perl/coding-style.md +46 -46
- package/docs/rules/perl/hooks.md +22 -22
- package/docs/rules/perl/patterns.md +76 -76
- package/docs/rules/perl/security.md +69 -69
- package/docs/rules/perl/testing.md +54 -54
- package/docs/rules/php/coding-style.md +40 -40
- package/docs/rules/php/hooks.md +24 -24
- package/docs/rules/php/patterns.md +33 -33
- package/docs/rules/php/security.md +37 -37
- package/docs/rules/php/testing.md +39 -39
- package/docs/rules/python/coding-style.md +42 -42
- package/docs/rules/python/hooks.md +19 -19
- package/docs/rules/python/patterns.md +39 -39
- package/docs/rules/python/security.md +30 -30
- package/docs/rules/python/testing.md +38 -38
- package/docs/rules/rust/coding-style.md +151 -151
- package/docs/rules/rust/hooks.md +16 -16
- package/docs/rules/rust/patterns.md +168 -168
- package/docs/rules/rust/security.md +141 -141
- package/docs/rules/rust/testing.md +154 -154
- package/docs/rules/swift/coding-style.md +47 -47
- package/docs/rules/swift/hooks.md +20 -20
- package/docs/rules/swift/patterns.md +66 -66
- package/docs/rules/swift/security.md +33 -33
- package/docs/rules/swift/testing.md +45 -45
- package/docs/rules/typescript/coding-style.md +199 -199
- package/docs/rules/typescript/hooks.md +22 -22
- package/docs/rules/typescript/patterns.md +52 -52
- package/docs/rules/typescript/security.md +28 -28
- package/docs/rules/typescript/testing.md +18 -18
- package/docs/rules/web/coding-style.md +96 -96
- package/docs/rules/web/design-quality.md +62 -62
- package/docs/rules/web/hooks.md +120 -120
- package/docs/rules/web/patterns.md +79 -79
- package/docs/rules/web/performance.md +64 -64
- package/docs/rules/web/security.md +57 -57
- package/docs/rules/web/testing.md +55 -55
- package/docs/templates/README.md +36 -36
- package/docs/templates/ai-project-final.md +124 -124
- package/docs/templates/ai-project.md +105 -105
- package/docs/templates/api.md +157 -157
- package/docs/templates/bug.md +62 -62
- package/docs/templates/code-review.md +87 -87
- package/docs/templates/generic.md +116 -116
- package/docs/templates/implementation-plan.md +1 -1
- package/docs/templates/meeting.md +68 -68
- package/docs/templates/prd.md +98 -98
- package/docs/templates/ui.md +134 -134
- package/docs/workflow-pipeline.md +5 -5
- package/package.json +40 -39
- package/skills/SUPERPOWERS-LICENSE +21 -21
- package/skills/ai-ml/fine-tuning-expert/SKILL.md +162 -162
- package/skills/ai-ml/fine-tuning-expert/references/dataset-preparation.md +540 -540
- package/skills/ai-ml/fine-tuning-expert/references/deployment-optimization.md +673 -673
- package/skills/ai-ml/fine-tuning-expert/references/evaluation-metrics.md +597 -597
- package/skills/ai-ml/fine-tuning-expert/references/hyperparameter-tuning.md +565 -565
- package/skills/ai-ml/fine-tuning-expert/references/lora-peft.md +347 -347
- package/skills/ai-ml/ml-pipeline/SKILL.md +159 -159
- package/skills/ai-ml/ml-pipeline/references/experiment-tracking.md +833 -833
- package/skills/ai-ml/ml-pipeline/references/feature-engineering.md +631 -631
- package/skills/ai-ml/ml-pipeline/references/model-validation.md +978 -978
- package/skills/ai-ml/ml-pipeline/references/pipeline-orchestration.md +907 -907
- package/skills/ai-ml/ml-pipeline/references/training-pipelines.md +782 -782
- package/skills/ai-ml/rag-architect/SKILL.md +194 -194
- package/skills/ai-ml/rag-architect/references/chunking-strategies.md +878 -878
- package/skills/ai-ml/rag-architect/references/embedding-models.md +561 -561
- package/skills/ai-ml/rag-architect/references/rag-evaluation.md +833 -833
- package/skills/ai-ml/rag-architect/references/retrieval-optimization.md +795 -795
- package/skills/ai-ml/rag-architect/references/vector-databases.md +589 -589
- package/skills/ai-ml/spark-engineer/SKILL.md +148 -148
- package/skills/ai-ml/spark-engineer/references/partitioning-caching.md +543 -543
- package/skills/ai-ml/spark-engineer/references/performance-tuning.md +544 -544
- package/skills/ai-ml/spark-engineer/references/rdd-operations.md +599 -599
- package/skills/ai-ml/spark-engineer/references/spark-sql-dataframes.md +474 -474
- package/skills/ai-ml/spark-engineer/references/streaming-patterns.md +786 -786
- package/skills/backend/api-designer/SKILL.md +217 -217
- package/skills/backend/api-designer/references/error-handling.md +541 -541
- package/skills/backend/api-designer/references/openapi.md +824 -824
- package/skills/backend/api-designer/references/pagination.md +494 -494
- package/skills/backend/api-designer/references/rest-patterns.md +335 -335
- package/skills/backend/api-designer/references/versioning.md +391 -391
- package/skills/backend/architecture-designer/SKILL.md +117 -117
- package/skills/backend/architecture-designer/references/adr-template.md +116 -116
- package/skills/backend/architecture-designer/references/architecture-patterns.md +111 -111
- package/skills/backend/architecture-designer/references/database-selection.md +102 -102
- package/skills/backend/architecture-designer/references/nfr-checklist.md +112 -112
- package/skills/backend/architecture-designer/references/system-design.md +100 -100
- package/skills/backend/code-documenter/SKILL.md +147 -147
- package/skills/backend/code-documenter/references/api-docs-fastapi-django.md +166 -166
- package/skills/backend/code-documenter/references/api-docs-nestjs-express.md +220 -220
- package/skills/backend/code-documenter/references/coverage-reports.md +125 -125
- package/skills/backend/code-documenter/references/documentation-systems.md +333 -333
- package/skills/backend/code-documenter/references/interactive-api-docs.md +531 -531
- package/skills/backend/code-documenter/references/python-docstrings.md +121 -121
- package/skills/backend/code-documenter/references/typescript-jsdoc.md +145 -145
- package/skills/backend/code-documenter/references/user-guides-tutorials.md +530 -530
- package/skills/backend/debugging-wizard/SKILL.md +105 -105
- package/skills/backend/debugging-wizard/references/common-patterns.md +132 -132
- package/skills/backend/debugging-wizard/references/debugging-tools.md +140 -140
- package/skills/backend/debugging-wizard/references/quick-fixes.md +177 -177
- package/skills/backend/debugging-wizard/references/strategies.md +142 -142
- package/skills/backend/debugging-wizard/references/systematic-debugging.md +367 -367
- package/skills/backend/feature-forge/SKILL.md +98 -98
- package/skills/backend/feature-forge/references/acceptance-criteria.md +104 -104
- package/skills/backend/feature-forge/references/ears-syntax.md +99 -99
- package/skills/backend/feature-forge/references/interview-questions.md +150 -150
- package/skills/backend/feature-forge/references/pre-discovery-subagents.md +54 -54
- package/skills/backend/feature-forge/references/specification-template.md +103 -103
- package/skills/backend/fullstack-guardian/SKILL.md +105 -105
- package/skills/backend/fullstack-guardian/references/api-design-standards.md +307 -307
- package/skills/backend/fullstack-guardian/references/architecture-decisions.md +350 -350
- package/skills/backend/fullstack-guardian/references/backend-patterns.md +237 -237
- package/skills/backend/fullstack-guardian/references/common-patterns.md +134 -134
- package/skills/backend/fullstack-guardian/references/deliverables-checklist.md +354 -354
- package/skills/backend/fullstack-guardian/references/design-template.md +91 -91
- package/skills/backend/fullstack-guardian/references/error-handling.md +135 -135
- package/skills/backend/fullstack-guardian/references/frontend-patterns.md +340 -340
- package/skills/backend/fullstack-guardian/references/integration-patterns.md +333 -333
- package/skills/backend/fullstack-guardian/references/security-checklist.md +106 -106
- package/skills/backend/graphql-architect/SKILL.md +146 -146
- package/skills/backend/graphql-architect/references/federation.md +418 -418
- package/skills/backend/graphql-architect/references/migration-from-rest.md +1141 -1141
- package/skills/backend/graphql-architect/references/resolvers.md +425 -425
- package/skills/backend/graphql-architect/references/schema-design.md +393 -393
- package/skills/backend/graphql-architect/references/security.md +569 -569
- package/skills/backend/graphql-architect/references/subscriptions.md +510 -510
- package/skills/backend/legacy-modernizer/SKILL.md +137 -137
- package/skills/backend/legacy-modernizer/references/legacy-testing.md +381 -381
- package/skills/backend/legacy-modernizer/references/migration-strategies.md +423 -423
- package/skills/backend/legacy-modernizer/references/refactoring-patterns.md +395 -395
- package/skills/backend/legacy-modernizer/references/strangler-fig-pattern.md +281 -281
- package/skills/backend/legacy-modernizer/references/system-assessment.md +487 -487
- package/skills/backend/microservices-architect/SKILL.md +164 -164
- package/skills/backend/microservices-architect/references/communication.md +499 -499
- package/skills/backend/microservices-architect/references/data.md +721 -721
- package/skills/backend/microservices-architect/references/decomposition.md +344 -344
- package/skills/backend/microservices-architect/references/observability.md +805 -805
- package/skills/backend/microservices-architect/references/patterns.md +603 -603
- package/skills/database/database-optimizer/SKILL.md +147 -147
- package/skills/database/database-optimizer/references/index-strategies.md +331 -331
- package/skills/database/database-optimizer/references/monitoring-analysis.md +501 -501
- package/skills/database/database-optimizer/references/mysql-tuning.md +452 -452
- package/skills/database/database-optimizer/references/postgresql-tuning.md +413 -413
- package/skills/database/database-optimizer/references/query-optimization.md +251 -251
- package/skills/database/postgres-pro/SKILL.md +152 -152
- package/skills/database/postgres-pro/references/extensions.md +404 -404
- package/skills/database/postgres-pro/references/jsonb.md +321 -321
- package/skills/database/postgres-pro/references/maintenance.md +481 -481
- package/skills/database/postgres-pro/references/performance.md +265 -265
- package/skills/database/postgres-pro/references/replication.md +446 -446
- package/skills/database/sql-pro/SKILL.md +129 -129
- package/skills/database/sql-pro/references/database-design.md +402 -402
- package/skills/database/sql-pro/references/dialect-differences.md +419 -419
- package/skills/database/sql-pro/references/optimization.md +384 -384
- package/skills/database/sql-pro/references/query-patterns.md +285 -285
- package/skills/database/sql-pro/references/window-functions.md +328 -328
- package/skills/dotnet/csharp-developer/SKILL.md +125 -125
- package/skills/dotnet/csharp-developer/references/aspnet-core.md +394 -394
- package/skills/dotnet/csharp-developer/references/blazor.md +553 -553
- package/skills/dotnet/csharp-developer/references/entity-framework.md +409 -409
- package/skills/dotnet/csharp-developer/references/modern-csharp.md +248 -248
- package/skills/dotnet/csharp-developer/references/performance.md +498 -498
- package/skills/dotnet/dotnet-core-expert/SKILL.md +138 -138
- package/skills/dotnet/dotnet-core-expert/references/authentication.md +546 -546
- package/skills/dotnet/dotnet-core-expert/references/clean-architecture.md +455 -455
- package/skills/dotnet/dotnet-core-expert/references/cloud-native.md +548 -548
- package/skills/dotnet/dotnet-core-expert/references/entity-framework.md +440 -440
- package/skills/dotnet/dotnet-core-expert/references/minimal-apis.md +319 -319
- package/skills/frontend/angular-architect/SKILL.md +152 -152
- package/skills/frontend/angular-architect/references/components.md +297 -297
- package/skills/frontend/angular-architect/references/ngrx.md +401 -401
- package/skills/frontend/angular-architect/references/routing.md +361 -361
- package/skills/frontend/angular-architect/references/rxjs.md +319 -319
- package/skills/frontend/angular-architect/references/testing.md +405 -405
- package/skills/frontend/design-commands/design.md +91 -91
- package/skills/frontend/design-commands/handoff.md +97 -97
- package/skills/frontend/design-commands/prototype.md +120 -120
- package/skills/frontend/design-commands/spec.md +160 -160
- package/skills/frontend/design-commands/style.md +78 -78
- package/skills/frontend/flutter-expert/SKILL.md +138 -138
- package/skills/frontend/flutter-expert/references/bloc-state.md +259 -259
- package/skills/frontend/flutter-expert/references/gorouter-navigation.md +119 -119
- package/skills/frontend/flutter-expert/references/performance.md +99 -99
- package/skills/frontend/flutter-expert/references/project-structure.md +118 -118
- package/skills/frontend/flutter-expert/references/riverpod-state.md +130 -130
- package/skills/frontend/flutter-expert/references/widget-patterns.md +123 -123
- package/skills/frontend/nextjs-developer/SKILL.md +143 -143
- package/skills/frontend/nextjs-developer/references/app-router.md +311 -311
- package/skills/frontend/nextjs-developer/references/data-fetching.md +482 -482
- package/skills/frontend/nextjs-developer/references/deployment.md +545 -545
- package/skills/frontend/nextjs-developer/references/server-actions.md +462 -462
- package/skills/frontend/nextjs-developer/references/server-components.md +384 -384
- package/skills/frontend/react-expert/SKILL.md +149 -149
- package/skills/frontend/react-expert/references/hooks-patterns.md +162 -162
- package/skills/frontend/react-expert/references/migration-class-to-modern.md +1119 -1119
- package/skills/frontend/react-expert/references/performance.md +168 -168
- package/skills/frontend/react-expert/references/react-19-features.md +174 -174
- package/skills/frontend/react-expert/references/server-components.md +143 -143
- package/skills/frontend/react-expert/references/state-management.md +171 -171
- package/skills/frontend/react-expert/references/testing-react.md +174 -174
- package/skills/frontend/react-native-expert/SKILL.md +185 -185
- package/skills/frontend/react-native-expert/references/expo-router.md +187 -187
- package/skills/frontend/react-native-expert/references/list-optimization.md +204 -204
- package/skills/frontend/react-native-expert/references/platform-handling.md +188 -188
- package/skills/frontend/react-native-expert/references/project-structure.md +171 -171
- package/skills/frontend/react-native-expert/references/storage-hooks.md +173 -173
- package/skills/frontend/senior-frontend/SKILL.md +477 -477
- package/skills/frontend/senior-frontend/references/frontend_best_practices.md +806 -806
- package/skills/frontend/senior-frontend/references/nextjs_optimization_guide.md +724 -724
- package/skills/frontend/senior-frontend/references/react_patterns.md +746 -746
- package/skills/frontend/senior-frontend/scripts/bundle_analyzer.py +407 -407
- package/skills/frontend/senior-frontend/scripts/component_generator.py +329 -329
- package/skills/frontend/senior-frontend/scripts/frontend_scaffolder.py +1005 -1005
- package/skills/frontend/ui-ux-pro-max/SKILL.md +386 -386
- package/skills/frontend/ui-ux-pro-max/data/charts.csv +26 -26
- package/skills/frontend/ui-ux-pro-max/data/colors.csv +97 -97
- package/skills/frontend/ui-ux-pro-max/data/icons.csv +101 -101
- package/skills/frontend/ui-ux-pro-max/data/landing.csv +31 -31
- package/skills/frontend/ui-ux-pro-max/data/products.csv +96 -96
- package/skills/frontend/ui-ux-pro-max/data/react-performance.csv +45 -45
- package/skills/frontend/ui-ux-pro-max/data/stacks/astro.csv +54 -54
- package/skills/frontend/ui-ux-pro-max/data/stacks/flutter.csv +53 -53
- package/skills/frontend/ui-ux-pro-max/data/stacks/html-tailwind.csv +56 -56
- package/skills/frontend/ui-ux-pro-max/data/stacks/jetpack-compose.csv +53 -53
- package/skills/frontend/ui-ux-pro-max/data/stacks/nextjs.csv +53 -53
- package/skills/frontend/ui-ux-pro-max/data/stacks/nuxt-ui.csv +51 -51
- package/skills/frontend/ui-ux-pro-max/data/stacks/nuxtjs.csv +59 -59
- package/skills/frontend/ui-ux-pro-max/data/stacks/react-native.csv +52 -52
- package/skills/frontend/ui-ux-pro-max/data/stacks/react.csv +54 -54
- package/skills/frontend/ui-ux-pro-max/data/stacks/shadcn.csv +61 -61
- package/skills/frontend/ui-ux-pro-max/data/stacks/svelte.csv +54 -54
- package/skills/frontend/ui-ux-pro-max/data/stacks/swiftui.csv +51 -51
- package/skills/frontend/ui-ux-pro-max/data/stacks/vue.csv +50 -50
- package/skills/frontend/ui-ux-pro-max/data/styles.csv +68 -68
- package/skills/frontend/ui-ux-pro-max/data/typography.csv +57 -57
- package/skills/frontend/ui-ux-pro-max/data/ui-reasoning.csv +101 -101
- package/skills/frontend/ui-ux-pro-max/data/ux-guidelines.csv +99 -99
- package/skills/frontend/ui-ux-pro-max/data/web-interface.csv +31 -31
- package/skills/frontend/ui-ux-pro-max/scripts/core.py +253 -253
- package/skills/frontend/ui-ux-pro-max/scripts/design_system.py +1067 -1067
- package/skills/frontend/ui-ux-pro-max/scripts/search.py +114 -114
- package/skills/frontend/vue-expert/SKILL.md +98 -98
- package/skills/frontend/vue-expert/references/build-tooling.md +480 -480
- package/skills/frontend/vue-expert/references/components.md +448 -448
- package/skills/frontend/vue-expert/references/composition-api.md +299 -299
- package/skills/frontend/vue-expert/references/mobile-hybrid.md +636 -636
- package/skills/frontend/vue-expert/references/nuxt.md +669 -669
- package/skills/frontend/vue-expert/references/state-management.md +449 -449
- package/skills/frontend/vue-expert/references/typescript.md +584 -584
- package/skills/frontend/vue-expert-js/SKILL.md +167 -167
- package/skills/frontend/vue-expert-js/references/component-architecture.md +219 -219
- package/skills/frontend/vue-expert-js/references/composables-patterns.md +183 -183
- package/skills/frontend/vue-expert-js/references/jsdoc-typing.md +535 -535
- package/skills/frontend/vue-expert-js/references/state-management.md +249 -249
- package/skills/frontend/vue-expert-js/references/testing-patterns.md +237 -237
- package/skills/go-rust-cpp/cpp-pro/SKILL.md +115 -115
- package/skills/go-rust-cpp/cpp-pro/references/build-tooling.md +440 -440
- package/skills/go-rust-cpp/cpp-pro/references/concurrency.md +437 -437
- package/skills/go-rust-cpp/cpp-pro/references/memory-performance.md +397 -397
- package/skills/go-rust-cpp/cpp-pro/references/modern-cpp.md +304 -304
- package/skills/go-rust-cpp/cpp-pro/references/templates.md +357 -357
- package/skills/go-rust-cpp/golang-pro/SKILL.md +122 -122
- package/skills/go-rust-cpp/golang-pro/references/concurrency.md +329 -329
- package/skills/go-rust-cpp/golang-pro/references/generics.md +442 -442
- package/skills/go-rust-cpp/golang-pro/references/interfaces.md +432 -432
- package/skills/go-rust-cpp/golang-pro/references/project-structure.md +477 -477
- package/skills/go-rust-cpp/golang-pro/references/testing.md +451 -451
- package/skills/go-rust-cpp/rust-engineer/SKILL.md +167 -167
- package/skills/go-rust-cpp/rust-engineer/references/async.md +458 -458
- package/skills/go-rust-cpp/rust-engineer/references/error-handling.md +334 -334
- package/skills/go-rust-cpp/rust-engineer/references/ownership.md +278 -278
- package/skills/go-rust-cpp/rust-engineer/references/testing.md +470 -470
- package/skills/go-rust-cpp/rust-engineer/references/traits.md +413 -413
- package/skills/infra/cli-developer/SKILL.md +113 -113
- package/skills/infra/cli-developer/references/design-patterns.md +221 -221
- package/skills/infra/cli-developer/references/go-cli.md +540 -540
- package/skills/infra/cli-developer/references/node-cli.md +383 -383
- package/skills/infra/cli-developer/references/python-cli.md +422 -422
- package/skills/infra/cli-developer/references/ux-patterns.md +448 -448
- package/skills/infra/cloud-architect/SKILL.md +216 -216
- package/skills/infra/cloud-architect/references/aws.md +394 -394
- package/skills/infra/cloud-architect/references/azure.md +562 -562
- package/skills/infra/cloud-architect/references/cost.md +582 -582
- package/skills/infra/cloud-architect/references/gcp.md +633 -633
- package/skills/infra/cloud-architect/references/multi-cloud.md +483 -483
- package/skills/infra/devops-engineer/SKILL.md +144 -144
- package/skills/infra/devops-engineer/references/deployment-strategies.md +241 -241
- package/skills/infra/devops-engineer/references/docker-patterns.md +113 -113
- package/skills/infra/devops-engineer/references/github-actions.md +139 -139
- package/skills/infra/devops-engineer/references/incident-response.md +331 -331
- package/skills/infra/devops-engineer/references/kubernetes.md +154 -154
- package/skills/infra/devops-engineer/references/platform-engineering.md +417 -417
- package/skills/infra/devops-engineer/references/release-automation.md +527 -527
- package/skills/infra/devops-engineer/references/terraform-iac.md +141 -141
- package/skills/infra/kubernetes-specialist/SKILL.md +241 -241
- package/skills/infra/kubernetes-specialist/references/configuration.md +452 -452
- package/skills/infra/kubernetes-specialist/references/cost-optimization.md +458 -458
- package/skills/infra/kubernetes-specialist/references/custom-operators.md +563 -563
- package/skills/infra/kubernetes-specialist/references/gitops.md +530 -530
- package/skills/infra/kubernetes-specialist/references/helm-charts.md +912 -912
- package/skills/infra/kubernetes-specialist/references/multi-cluster.md +507 -507
- package/skills/infra/kubernetes-specialist/references/networking.md +447 -447
- package/skills/infra/kubernetes-specialist/references/service-mesh.md +459 -459
- package/skills/infra/kubernetes-specialist/references/storage.md +535 -535
- package/skills/infra/kubernetes-specialist/references/troubleshooting.md +414 -414
- package/skills/infra/kubernetes-specialist/references/workloads.md +377 -377
- package/skills/infra/mcp-developer/SKILL.md +143 -143
- package/skills/infra/mcp-developer/references/protocol.md +244 -244
- package/skills/infra/mcp-developer/references/python-sdk.md +367 -367
- package/skills/infra/mcp-developer/references/resources.md +554 -554
- package/skills/infra/mcp-developer/references/tools.md +480 -480
- package/skills/infra/mcp-developer/references/typescript-sdk.md +350 -350
- package/skills/infra/monitoring-expert/SKILL.md +176 -176
- package/skills/infra/monitoring-expert/references/alerting-rules.md +141 -141
- package/skills/infra/monitoring-expert/references/application-profiling.md +331 -331
- package/skills/infra/monitoring-expert/references/capacity-planning.md +344 -344
- package/skills/infra/monitoring-expert/references/dashboards.md +126 -126
- package/skills/infra/monitoring-expert/references/opentelemetry.md +123 -123
- package/skills/infra/monitoring-expert/references/performance-testing.md +269 -269
- package/skills/infra/monitoring-expert/references/prometheus-metrics.md +136 -136
- package/skills/infra/monitoring-expert/references/structured-logging.md +142 -142
- package/skills/infra/sre-engineer/SKILL.md +181 -181
- package/skills/infra/sre-engineer/references/automation-toil.md +492 -492
- package/skills/infra/sre-engineer/references/error-budget-policy.md +334 -334
- package/skills/infra/sre-engineer/references/incident-chaos.md +576 -576
- package/skills/infra/sre-engineer/references/monitoring-alerting.md +424 -424
- package/skills/infra/sre-engineer/references/slo-sli-management.md +238 -238
- package/skills/infra/terraform-engineer/SKILL.md +143 -143
- package/skills/infra/terraform-engineer/references/best-practices.md +583 -583
- package/skills/infra/terraform-engineer/references/module-patterns.md +297 -297
- package/skills/infra/terraform-engineer/references/providers.md +452 -452
- package/skills/infra/terraform-engineer/references/state-management.md +371 -371
- package/skills/infra/terraform-engineer/references/testing.md +486 -486
- package/skills/infra/websocket-engineer/SKILL.md +168 -168
- package/skills/infra/websocket-engineer/references/alternatives.md +391 -391
- package/skills/infra/websocket-engineer/references/patterns.md +400 -400
- package/skills/infra/websocket-engineer/references/protocol.md +195 -195
- package/skills/infra/websocket-engineer/references/scaling.md +333 -333
- package/skills/infra/websocket-engineer/references/security.md +474 -474
- package/skills/java/java-architect/SKILL.md +132 -132
- package/skills/java/java-architect/references/jpa-optimization.md +393 -393
- package/skills/java/java-architect/references/reactive-webflux.md +356 -356
- package/skills/java/java-architect/references/spring-boot-setup.md +269 -269
- package/skills/java/java-architect/references/spring-security.md +445 -445
- package/skills/java/java-architect/references/testing-patterns.md +500 -500
- package/skills/java/kotlin-specialist/SKILL.md +147 -147
- package/skills/java/kotlin-specialist/references/android-compose.md +419 -419
- package/skills/java/kotlin-specialist/references/coroutines-flow.md +276 -276
- package/skills/java/kotlin-specialist/references/dsl-idioms.md +421 -421
- package/skills/java/kotlin-specialist/references/ktor-server.md +426 -426
- package/skills/java/kotlin-specialist/references/multiplatform-kmp.md +380 -380
- package/skills/java/spring-boot-engineer/SKILL.md +195 -195
- package/skills/java/spring-boot-engineer/references/cloud.md +498 -498
- package/skills/java/spring-boot-engineer/references/data.md +381 -381
- package/skills/java/spring-boot-engineer/references/security.md +459 -459
- package/skills/java/spring-boot-engineer/references/testing.md +545 -545
- package/skills/java/spring-boot-engineer/references/web.md +295 -295
- package/skills/javascript/javascript-pro/SKILL.md +132 -132
- package/skills/javascript/javascript-pro/references/async-patterns.md +334 -334
- package/skills/javascript/javascript-pro/references/browser-apis.md +398 -398
- package/skills/javascript/javascript-pro/references/modern-syntax.md +272 -272
- package/skills/javascript/javascript-pro/references/modules.md +357 -357
- package/skills/javascript/javascript-pro/references/node-essentials.md +471 -471
- package/skills/javascript/nestjs-expert/SKILL.md +206 -206
- package/skills/javascript/nestjs-expert/references/authentication.md +166 -166
- package/skills/javascript/nestjs-expert/references/controllers-routing.md +111 -111
- package/skills/javascript/nestjs-expert/references/dtos-validation.md +153 -153
- package/skills/javascript/nestjs-expert/references/migration-from-express.md +1237 -1237
- package/skills/javascript/nestjs-expert/references/services-di.md +140 -140
- package/skills/javascript/nestjs-expert/references/testing-patterns.md +186 -186
- package/skills/javascript/typescript-pro/SKILL.md +145 -145
- package/skills/javascript/typescript-pro/references/advanced-types.md +259 -259
- package/skills/javascript/typescript-pro/references/configuration.md +445 -445
- package/skills/javascript/typescript-pro/references/patterns.md +484 -484
- package/skills/javascript/typescript-pro/references/type-guards.md +352 -352
- package/skills/javascript/typescript-pro/references/utility-types.md +329 -329
- package/skills/php/laravel-specialist/SKILL.md +262 -262
- package/skills/php/laravel-specialist/references/eloquent.md +351 -351
- package/skills/php/laravel-specialist/references/livewire.md +512 -512
- package/skills/php/laravel-specialist/references/queues.md +423 -423
- package/skills/php/laravel-specialist/references/routing.md +362 -362
- package/skills/php/laravel-specialist/references/testing.md +522 -522
- package/skills/php/php-pro/SKILL.md +206 -206
- package/skills/php/php-pro/references/async-patterns.md +412 -412
- package/skills/php/php-pro/references/laravel-patterns.md +377 -377
- package/skills/php/php-pro/references/modern-php-features.md +323 -323
- package/skills/php/php-pro/references/symfony-patterns.md +466 -466
- package/skills/php/php-pro/references/testing-quality.md +466 -466
- package/skills/product/competitive-analysis/SKILL.md +257 -257
- package/skills/product/meeting-notes/SKILL.md +266 -266
- package/skills/product/prd-template/SKILL.md +150 -150
- package/skills/product/stakeholder-update/SKILL.md +225 -225
- package/skills/product/user-research-synthesis/SKILL.md +235 -235
- package/skills/python/django-expert/SKILL.md +162 -162
- package/skills/python/django-expert/references/authentication.md +145 -145
- package/skills/python/django-expert/references/drf-serializers.md +148 -148
- package/skills/python/django-expert/references/models-orm.md +151 -151
- package/skills/python/django-expert/references/testing-django.md +204 -204
- package/skills/python/django-expert/references/viewsets-views.md +153 -153
- package/skills/python/fastapi-expert/SKILL.md +185 -185
- package/skills/python/fastapi-expert/references/async-sqlalchemy.md +146 -146
- package/skills/python/fastapi-expert/references/authentication.md +159 -159
- package/skills/python/fastapi-expert/references/endpoints-routing.md +142 -142
- package/skills/python/fastapi-expert/references/migration-from-django.md +996 -996
- package/skills/python/fastapi-expert/references/pydantic-v2.md +135 -135
- package/skills/python/fastapi-expert/references/testing-async.md +159 -159
- package/skills/python/pandas-pro/SKILL.md +178 -178
- package/skills/python/pandas-pro/references/aggregation-groupby.md +545 -545
- package/skills/python/pandas-pro/references/data-cleaning.md +500 -500
- package/skills/python/pandas-pro/references/dataframe-operations.md +420 -420
- package/skills/python/pandas-pro/references/merging-joining.md +596 -596
- package/skills/python/pandas-pro/references/performance-optimization.md +597 -597
- package/skills/python/python-pro/SKILL.md +177 -177
- package/skills/python/python-pro/references/async-patterns.md +356 -356
- package/skills/python/python-pro/references/packaging.md +460 -460
- package/skills/python/python-pro/references/standard-library.md +378 -378
- package/skills/python/python-pro/references/testing.md +404 -404
- package/skills/python/python-pro/references/type-system.md +290 -290
- package/skills/quality/chaos-engineer/SKILL.md +182 -182
- package/skills/quality/chaos-engineer/references/chaos-tools.md +511 -511
- package/skills/quality/chaos-engineer/references/experiment-design.md +229 -229
- package/skills/quality/chaos-engineer/references/game-days.md +434 -434
- package/skills/quality/chaos-engineer/references/infrastructure-chaos.md +348 -348
- package/skills/quality/chaos-engineer/references/kubernetes-chaos.md +432 -432
- package/skills/quality/code-reviewer/SKILL.md +119 -119
- package/skills/quality/code-reviewer/references/common-issues.md +142 -142
- package/skills/quality/code-reviewer/references/feedback-examples.md +144 -144
- package/skills/quality/code-reviewer/references/receiving-feedback.md +238 -238
- package/skills/quality/code-reviewer/references/report-template.md +109 -109
- package/skills/quality/code-reviewer/references/review-checklist.md +88 -88
- package/skills/quality/code-reviewer/references/spec-compliance-review.md +258 -258
- package/skills/quality/playwright-expert/SKILL.md +169 -169
- package/skills/quality/playwright-expert/references/api-mocking.md +140 -140
- package/skills/quality/playwright-expert/references/configuration.md +155 -155
- package/skills/quality/playwright-expert/references/debugging-flaky.md +150 -150
- package/skills/quality/playwright-expert/references/page-object-model.md +152 -152
- package/skills/quality/playwright-expert/references/selectors-locators.md +119 -119
- package/skills/quality/secure-code-guardian/SKILL.md +191 -191
- package/skills/quality/secure-code-guardian/references/authentication.md +136 -136
- package/skills/quality/secure-code-guardian/references/input-validation.md +146 -146
- package/skills/quality/secure-code-guardian/references/owasp-prevention.md +135 -135
- package/skills/quality/secure-code-guardian/references/security-headers.md +133 -133
- package/skills/quality/secure-code-guardian/references/xss-csrf.md +157 -157
- package/skills/quality/security-reviewer/SKILL.md +103 -103
- package/skills/quality/security-reviewer/references/infrastructure-security.md +268 -268
- package/skills/quality/security-reviewer/references/penetration-testing.md +268 -268
- package/skills/quality/security-reviewer/references/report-template.md +170 -170
- package/skills/quality/security-reviewer/references/sast-tools.md +117 -117
- package/skills/quality/security-reviewer/references/secret-scanning.md +125 -125
- package/skills/quality/security-reviewer/references/vulnerability-patterns.md +152 -152
- package/skills/quality/senior-qa/README.md +196 -196
- package/skills/quality/senior-qa/SKILL.md +399 -399
- package/skills/quality/senior-qa/references/qa_best_practices.md +964 -964
- package/skills/quality/senior-qa/references/test_automation_patterns.md +1009 -1009
- package/skills/quality/senior-qa/references/testing_strategies.md +649 -649
- package/skills/quality/senior-qa/scripts/coverage_analyzer.py +836 -836
- package/skills/quality/senior-qa/scripts/e2e_test_scaffolder.py +820 -820
- package/skills/quality/senior-qa/scripts/test_suite_generator.py +605 -605
- package/skills/quality/tdd-guide/HOW_TO_USE.md +313 -313
- package/skills/quality/tdd-guide/README.md +680 -680
- package/skills/quality/tdd-guide/SKILL.md +122 -122
- package/skills/quality/tdd-guide/assets/expected_output.json +77 -77
- package/skills/quality/tdd-guide/assets/sample_input_python.json +39 -39
- package/skills/quality/tdd-guide/assets/sample_input_typescript.json +36 -36
- package/skills/quality/tdd-guide/references/ci-integration.md +195 -195
- package/skills/quality/tdd-guide/references/framework-guide.md +206 -206
- package/skills/quality/tdd-guide/references/tdd-best-practices.md +128 -128
- package/skills/quality/tdd-guide/scripts/coverage_analyzer.py +434 -434
- package/skills/quality/tdd-guide/scripts/fixture_generator.py +440 -440
- package/skills/quality/tdd-guide/scripts/format_detector.py +384 -384
- package/skills/quality/tdd-guide/scripts/framework_adapter.py +428 -428
- package/skills/quality/tdd-guide/scripts/metrics_calculator.py +456 -456
- package/skills/quality/tdd-guide/scripts/output_formatter.py +354 -354
- package/skills/quality/tdd-guide/scripts/tdd_workflow.py +474 -474
- package/skills/quality/tdd-guide/scripts/test_generator.py +438 -438
- package/skills/quality/test-master/SKILL.md +94 -94
- package/skills/quality/test-master/references/automation-frameworks.md +294 -294
- package/skills/quality/test-master/references/e2e-testing.md +128 -128
- package/skills/quality/test-master/references/integration-testing.md +120 -120
- package/skills/quality/test-master/references/performance-testing.md +118 -118
- package/skills/quality/test-master/references/qa-methodology.md +247 -247
- package/skills/quality/test-master/references/security-testing.md +127 -127
- package/skills/quality/test-master/references/tdd-iron-laws.md +174 -174
- package/skills/quality/test-master/references/test-reports.md +104 -104
- package/skills/quality/test-master/references/testing-anti-patterns.md +231 -231
- package/skills/quality/test-master/references/unit-testing.md +113 -113
- package/skills/ruby/rails-expert/SKILL.md +154 -154
- package/skills/ruby/rails-expert/references/active-record.md +244 -244
- package/skills/ruby/rails-expert/references/api-development.md +401 -401
- package/skills/ruby/rails-expert/references/background-jobs.md +272 -272
- package/skills/ruby/rails-expert/references/hotwire-turbo.md +228 -228
- package/skills/ruby/rails-expert/references/rspec-testing.md +367 -367
- package/skills/swift/swift-expert/SKILL.md +163 -163
- package/skills/swift/swift-expert/references/async-concurrency.md +360 -360
- package/skills/swift/swift-expert/references/memory-performance.md +377 -377
- package/skills/swift/swift-expert/references/protocol-oriented.md +354 -354
- package/skills/swift/swift-expert/references/swiftui-patterns.md +291 -291
- package/skills/swift/swift-expert/references/testing-patterns.md +399 -399
- package/skills/workflow/brainstorming/SKILL.md +164 -164
- package/skills/workflow/brainstorming/scripts/frame-template.html +214 -214
- package/skills/workflow/brainstorming/scripts/helper.js +88 -88
- package/skills/workflow/brainstorming/scripts/server.cjs +354 -354
- package/skills/workflow/brainstorming/scripts/start-server.sh +148 -148
- package/skills/workflow/brainstorming/scripts/stop-server.sh +56 -56
- package/skills/workflow/brainstorming/spec-document-reviewer-prompt.md +49 -49
- package/skills/workflow/brainstorming/visual-companion.md +287 -287
- package/skills/workflow/documentation/SKILL.md +45 -45
- package/skills/workflow/entropy-management/SKILL.md +115 -115
- package/skills/workflow/executing-plans/SKILL.md +70 -70
- package/skills/workflow/finishing-a-development-branch/SKILL.md +200 -200
- package/skills/workflow/receiving-code-review/SKILL.md +213 -213
- package/skills/workflow/requesting-code-review/SKILL.md +105 -105
- package/skills/workflow/requesting-code-review/code-reviewer.md +146 -146
- package/skills/workflow/requirement-engineering/SKILL.md +111 -111
- package/skills/workflow/systematic-debugging/CREATION-LOG.md +119 -119
- package/skills/workflow/systematic-debugging/SKILL.md +296 -296
- package/skills/workflow/systematic-debugging/condition-based-waiting-example.ts +158 -158
- package/skills/workflow/systematic-debugging/condition-based-waiting.md +115 -115
- package/skills/workflow/systematic-debugging/defense-in-depth.md +122 -122
- package/skills/workflow/systematic-debugging/find-polluter.sh +63 -63
- package/skills/workflow/systematic-debugging/root-cause-tracing.md +169 -169
- package/skills/workflow/systematic-debugging/test-academic.md +14 -14
- package/skills/workflow/systematic-debugging/test-pressure-1.md +58 -58
- package/skills/workflow/systematic-debugging/test-pressure-2.md +68 -68
- package/skills/workflow/systematic-debugging/test-pressure-3.md +69 -69
- package/skills/workflow/using-git-worktrees/SKILL.md +218 -218
- package/skills/workflow/verification-before-completion/SKILL.md +139 -139
- package/skills/workflow/writing-plans/SKILL.md +151 -151
- package/skills/workflow/writing-plans/plan-document-reviewer-prompt.md +49 -49
- package/skills/workflow/writing-skills/SKILL.md +655 -655
- package/skills/workflow/writing-skills/anthropic-best-practices.md +1150 -1150
- package/skills/workflow/writing-skills/examples/CLAUDE_MD_TESTING.md +189 -189
- package/skills/workflow/writing-skills/persuasion-principles.md +187 -187
- package/skills/workflow/writing-skills/render-graphs.js +168 -168
- package/skills/workflow/writing-skills/testing-skills-with-subagents.md +384 -384
|
@@ -1,912 +1,912 @@
|
|
|
1
|
-
# Helm Charts
|
|
2
|
-
|
|
3
|
-
## Chart Structure
|
|
4
|
-
|
|
5
|
-
```
|
|
6
|
-
mychart/
|
|
7
|
-
├── Chart.yaml # Chart metadata
|
|
8
|
-
├── values.yaml # Default values
|
|
9
|
-
├── values.schema.json # Values validation schema
|
|
10
|
-
├── charts/ # Dependency charts
|
|
11
|
-
├── templates/ # Template files
|
|
12
|
-
│ ├── NOTES.txt # Post-install notes
|
|
13
|
-
│ ├── _helpers.tpl # Template helpers
|
|
14
|
-
│ ├── deployment.yaml
|
|
15
|
-
│ ├── service.yaml
|
|
16
|
-
│ ├── ingress.yaml
|
|
17
|
-
│ ├── configmap.yaml
|
|
18
|
-
│ ├── secret.yaml
|
|
19
|
-
│ ├── serviceaccount.yaml
|
|
20
|
-
│ ├── hpa.yaml
|
|
21
|
-
│ └── tests/
|
|
22
|
-
│ └── test-connection.yaml
|
|
23
|
-
├── .helmignore # Ignore patterns
|
|
24
|
-
└── README.md # Chart documentation
|
|
25
|
-
```
|
|
26
|
-
|
|
27
|
-
## Chart.yaml
|
|
28
|
-
|
|
29
|
-
```yaml
|
|
30
|
-
apiVersion: v2
|
|
31
|
-
name: myapp
|
|
32
|
-
description: A Helm chart for MyApp on Kubernetes
|
|
33
|
-
type: application
|
|
34
|
-
version: 1.2.0
|
|
35
|
-
appVersion: "2.5.0"
|
|
36
|
-
|
|
37
|
-
keywords:
|
|
38
|
-
- web
|
|
39
|
-
- application
|
|
40
|
-
- microservice
|
|
41
|
-
|
|
42
|
-
home: https://example.com
|
|
43
|
-
sources:
|
|
44
|
-
- https://github.com/example/myapp
|
|
45
|
-
|
|
46
|
-
maintainers:
|
|
47
|
-
- name: DevOps Team
|
|
48
|
-
email: devops@example.com
|
|
49
|
-
url: https://example.com/team
|
|
50
|
-
|
|
51
|
-
icon: https://example.com/logo.png
|
|
52
|
-
|
|
53
|
-
dependencies:
|
|
54
|
-
- name: postgresql
|
|
55
|
-
version: "12.x.x"
|
|
56
|
-
repository: https://charts.bitnami.com/bitnami
|
|
57
|
-
condition: postgresql.enabled
|
|
58
|
-
tags:
|
|
59
|
-
- database
|
|
60
|
-
|
|
61
|
-
- name: redis
|
|
62
|
-
version: "17.x.x"
|
|
63
|
-
repository: https://charts.bitnami.com/bitnami
|
|
64
|
-
condition: redis.enabled
|
|
65
|
-
tags:
|
|
66
|
-
- cache
|
|
67
|
-
|
|
68
|
-
annotations:
|
|
69
|
-
category: Application
|
|
70
|
-
```
|
|
71
|
-
|
|
72
|
-
## values.yaml
|
|
73
|
-
|
|
74
|
-
```yaml
|
|
75
|
-
# Default values for myapp
|
|
76
|
-
replicaCount: 3
|
|
77
|
-
|
|
78
|
-
image:
|
|
79
|
-
repository: myregistry.io/myapp
|
|
80
|
-
pullPolicy: IfNotPresent
|
|
81
|
-
tag: "" # Overrides the image tag (default is .Chart.AppVersion)
|
|
82
|
-
|
|
83
|
-
imagePullSecrets:
|
|
84
|
-
- name: registry-credentials
|
|
85
|
-
|
|
86
|
-
nameOverride: ""
|
|
87
|
-
fullnameOverride: ""
|
|
88
|
-
|
|
89
|
-
serviceAccount:
|
|
90
|
-
create: true
|
|
91
|
-
annotations: {}
|
|
92
|
-
name: ""
|
|
93
|
-
|
|
94
|
-
podAnnotations:
|
|
95
|
-
prometheus.io/scrape: "true"
|
|
96
|
-
prometheus.io/port: "8080"
|
|
97
|
-
|
|
98
|
-
podSecurityContext:
|
|
99
|
-
runAsNonRoot: true
|
|
100
|
-
runAsUser: 1000
|
|
101
|
-
fsGroup: 2000
|
|
102
|
-
seccompProfile:
|
|
103
|
-
type: RuntimeDefault
|
|
104
|
-
|
|
105
|
-
securityContext:
|
|
106
|
-
allowPrivilegeEscalation: false
|
|
107
|
-
capabilities:
|
|
108
|
-
drop:
|
|
109
|
-
- ALL
|
|
110
|
-
readOnlyRootFilesystem: true
|
|
111
|
-
|
|
112
|
-
service:
|
|
113
|
-
type: ClusterIP
|
|
114
|
-
port: 80
|
|
115
|
-
targetPort: 8080
|
|
116
|
-
annotations: {}
|
|
117
|
-
|
|
118
|
-
ingress:
|
|
119
|
-
enabled: true
|
|
120
|
-
className: "nginx"
|
|
121
|
-
annotations:
|
|
122
|
-
cert-manager.io/cluster-issuer: "letsencrypt-prod"
|
|
123
|
-
nginx.ingress.kubernetes.io/ssl-redirect: "true"
|
|
124
|
-
hosts:
|
|
125
|
-
- host: myapp.example.com
|
|
126
|
-
paths:
|
|
127
|
-
- path: /
|
|
128
|
-
pathType: Prefix
|
|
129
|
-
tls:
|
|
130
|
-
- secretName: myapp-tls
|
|
131
|
-
hosts:
|
|
132
|
-
- myapp.example.com
|
|
133
|
-
|
|
134
|
-
resources:
|
|
135
|
-
limits:
|
|
136
|
-
cpu: 500m
|
|
137
|
-
memory: 512Mi
|
|
138
|
-
requests:
|
|
139
|
-
cpu: 100m
|
|
140
|
-
memory: 128Mi
|
|
141
|
-
|
|
142
|
-
autoscaling:
|
|
143
|
-
enabled: true
|
|
144
|
-
minReplicas: 3
|
|
145
|
-
maxReplicas: 10
|
|
146
|
-
targetCPUUtilizationPercentage: 80
|
|
147
|
-
targetMemoryUtilizationPercentage: 80
|
|
148
|
-
|
|
149
|
-
nodeSelector: {}
|
|
150
|
-
|
|
151
|
-
tolerations: []
|
|
152
|
-
|
|
153
|
-
affinity:
|
|
154
|
-
podAntiAffinity:
|
|
155
|
-
preferredDuringSchedulingIgnoredDuringExecution:
|
|
156
|
-
- weight: 100
|
|
157
|
-
podAffinityTerm:
|
|
158
|
-
labelSelector:
|
|
159
|
-
matchExpressions:
|
|
160
|
-
- key: app.kubernetes.io/name
|
|
161
|
-
operator: In
|
|
162
|
-
values:
|
|
163
|
-
- myapp
|
|
164
|
-
topologyKey: kubernetes.io/hostname
|
|
165
|
-
|
|
166
|
-
livenessProbe:
|
|
167
|
-
httpGet:
|
|
168
|
-
path: /health
|
|
169
|
-
port: http
|
|
170
|
-
initialDelaySeconds: 30
|
|
171
|
-
periodSeconds: 10
|
|
172
|
-
timeoutSeconds: 5
|
|
173
|
-
failureThreshold: 3
|
|
174
|
-
|
|
175
|
-
readinessProbe:
|
|
176
|
-
httpGet:
|
|
177
|
-
path: /ready
|
|
178
|
-
port: http
|
|
179
|
-
initialDelaySeconds: 10
|
|
180
|
-
periodSeconds: 5
|
|
181
|
-
timeoutSeconds: 3
|
|
182
|
-
failureThreshold: 2
|
|
183
|
-
|
|
184
|
-
env:
|
|
185
|
-
- name: ENVIRONMENT
|
|
186
|
-
value: production
|
|
187
|
-
- name: LOG_LEVEL
|
|
188
|
-
value: info
|
|
189
|
-
|
|
190
|
-
envFrom: []
|
|
191
|
-
|
|
192
|
-
volumeMounts: []
|
|
193
|
-
volumes: []
|
|
194
|
-
|
|
195
|
-
# PostgreSQL dependency
|
|
196
|
-
postgresql:
|
|
197
|
-
enabled: true
|
|
198
|
-
auth:
|
|
199
|
-
username: myapp
|
|
200
|
-
password: "" # Set via --set or separate secret
|
|
201
|
-
database: myapp
|
|
202
|
-
primary:
|
|
203
|
-
persistence:
|
|
204
|
-
enabled: true
|
|
205
|
-
size: 10Gi
|
|
206
|
-
|
|
207
|
-
# Redis dependency
|
|
208
|
-
redis:
|
|
209
|
-
enabled: true
|
|
210
|
-
architecture: standalone
|
|
211
|
-
auth:
|
|
212
|
-
enabled: true
|
|
213
|
-
password: ""
|
|
214
|
-
master:
|
|
215
|
-
persistence:
|
|
216
|
-
enabled: true
|
|
217
|
-
size: 5Gi
|
|
218
|
-
```
|
|
219
|
-
|
|
220
|
-
## templates/_helpers.tpl
|
|
221
|
-
|
|
222
|
-
```yaml
|
|
223
|
-
{{/*
|
|
224
|
-
Expand the name of the chart.
|
|
225
|
-
*/}}
|
|
226
|
-
{{- define "myapp.name" -}}
|
|
227
|
-
{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
|
|
228
|
-
{{- end }}
|
|
229
|
-
|
|
230
|
-
{{/*
|
|
231
|
-
Create a default fully qualified app name.
|
|
232
|
-
*/}}
|
|
233
|
-
{{- define "myapp.fullname" -}}
|
|
234
|
-
{{- if .Values.fullnameOverride }}
|
|
235
|
-
{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
|
|
236
|
-
{{- else }}
|
|
237
|
-
{{- $name := default .Chart.Name .Values.nameOverride }}
|
|
238
|
-
{{- if contains $name .Release.Name }}
|
|
239
|
-
{{- .Release.Name | trunc 63 | trimSuffix "-" }}
|
|
240
|
-
{{- else }}
|
|
241
|
-
{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
|
|
242
|
-
{{- end }}
|
|
243
|
-
{{- end }}
|
|
244
|
-
{{- end }}
|
|
245
|
-
|
|
246
|
-
{{/*
|
|
247
|
-
Create chart name and version as used by the chart label.
|
|
248
|
-
*/}}
|
|
249
|
-
{{- define "myapp.chart" -}}
|
|
250
|
-
{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
|
|
251
|
-
{{- end }}
|
|
252
|
-
|
|
253
|
-
{{/*
|
|
254
|
-
Common labels
|
|
255
|
-
*/}}
|
|
256
|
-
{{- define "myapp.labels" -}}
|
|
257
|
-
helm.sh/chart: {{ include "myapp.chart" . }}
|
|
258
|
-
{{ include "myapp.selectorLabels" . }}
|
|
259
|
-
{{- if .Chart.AppVersion }}
|
|
260
|
-
app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
|
|
261
|
-
{{- end }}
|
|
262
|
-
app.kubernetes.io/managed-by: {{ .Release.Service }}
|
|
263
|
-
{{- end }}
|
|
264
|
-
|
|
265
|
-
{{/*
|
|
266
|
-
Selector labels
|
|
267
|
-
*/}}
|
|
268
|
-
{{- define "myapp.selectorLabels" -}}
|
|
269
|
-
app.kubernetes.io/name: {{ include "myapp.name" . }}
|
|
270
|
-
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
271
|
-
{{- end }}
|
|
272
|
-
|
|
273
|
-
{{/*
|
|
274
|
-
Create the name of the service account to use
|
|
275
|
-
*/}}
|
|
276
|
-
{{- define "myapp.serviceAccountName" -}}
|
|
277
|
-
{{- if .Values.serviceAccount.create }}
|
|
278
|
-
{{- default (include "myapp.fullname" .) .Values.serviceAccount.name }}
|
|
279
|
-
{{- else }}
|
|
280
|
-
{{- default "default" .Values.serviceAccount.name }}
|
|
281
|
-
{{- end }}
|
|
282
|
-
{{- end }}
|
|
283
|
-
```
|
|
284
|
-
|
|
285
|
-
## templates/deployment.yaml
|
|
286
|
-
|
|
287
|
-
```yaml
|
|
288
|
-
apiVersion: apps/v1
|
|
289
|
-
kind: Deployment
|
|
290
|
-
metadata:
|
|
291
|
-
name: {{ include "myapp.fullname" . }}
|
|
292
|
-
labels:
|
|
293
|
-
{{- include "myapp.labels" . | nindent 4 }}
|
|
294
|
-
spec:
|
|
295
|
-
{{- if not .Values.autoscaling.enabled }}
|
|
296
|
-
replicas: {{ .Values.replicaCount }}
|
|
297
|
-
{{- end }}
|
|
298
|
-
selector:
|
|
299
|
-
matchLabels:
|
|
300
|
-
{{- include "myapp.selectorLabels" . | nindent 6 }}
|
|
301
|
-
template:
|
|
302
|
-
metadata:
|
|
303
|
-
annotations:
|
|
304
|
-
checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
|
|
305
|
-
{{- with .Values.podAnnotations }}
|
|
306
|
-
{{- toYaml . | nindent 8 }}
|
|
307
|
-
{{- end }}
|
|
308
|
-
labels:
|
|
309
|
-
{{- include "myapp.selectorLabels" . | nindent 8 }}
|
|
310
|
-
spec:
|
|
311
|
-
{{- with .Values.imagePullSecrets }}
|
|
312
|
-
imagePullSecrets:
|
|
313
|
-
{{- toYaml . | nindent 8 }}
|
|
314
|
-
{{- end }}
|
|
315
|
-
serviceAccountName: {{ include "myapp.serviceAccountName" . }}
|
|
316
|
-
securityContext:
|
|
317
|
-
{{- toYaml .Values.podSecurityContext | nindent 8 }}
|
|
318
|
-
containers:
|
|
319
|
-
- name: {{ .Chart.Name }}
|
|
320
|
-
securityContext:
|
|
321
|
-
{{- toYaml .Values.securityContext | nindent 12 }}
|
|
322
|
-
image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
|
|
323
|
-
imagePullPolicy: {{ .Values.image.pullPolicy }}
|
|
324
|
-
ports:
|
|
325
|
-
- name: http
|
|
326
|
-
containerPort: {{ .Values.service.targetPort }}
|
|
327
|
-
protocol: TCP
|
|
328
|
-
{{- with .Values.env }}
|
|
329
|
-
env:
|
|
330
|
-
{{- toYaml . | nindent 12 }}
|
|
331
|
-
{{- end }}
|
|
332
|
-
{{- with .Values.envFrom }}
|
|
333
|
-
envFrom:
|
|
334
|
-
{{- toYaml . | nindent 12 }}
|
|
335
|
-
{{- end }}
|
|
336
|
-
livenessProbe:
|
|
337
|
-
{{- toYaml .Values.livenessProbe | nindent 12 }}
|
|
338
|
-
readinessProbe:
|
|
339
|
-
{{- toYaml .Values.readinessProbe | nindent 12 }}
|
|
340
|
-
resources:
|
|
341
|
-
{{- toYaml .Values.resources | nindent 12 }}
|
|
342
|
-
{{- with .Values.volumeMounts }}
|
|
343
|
-
volumeMounts:
|
|
344
|
-
{{- toYaml . | nindent 12 }}
|
|
345
|
-
{{- end }}
|
|
346
|
-
{{- with .Values.volumes }}
|
|
347
|
-
volumes:
|
|
348
|
-
{{- toYaml . | nindent 8 }}
|
|
349
|
-
{{- end }}
|
|
350
|
-
{{- with .Values.nodeSelector }}
|
|
351
|
-
nodeSelector:
|
|
352
|
-
{{- toYaml . | nindent 8 }}
|
|
353
|
-
{{- end }}
|
|
354
|
-
{{- with .Values.affinity }}
|
|
355
|
-
affinity:
|
|
356
|
-
{{- toYaml . | nindent 8 }}
|
|
357
|
-
{{- end }}
|
|
358
|
-
{{- with .Values.tolerations }}
|
|
359
|
-
tolerations:
|
|
360
|
-
{{- toYaml . | nindent 8 }}
|
|
361
|
-
{{- end }}
|
|
362
|
-
```
|
|
363
|
-
|
|
364
|
-
## templates/hpa.yaml
|
|
365
|
-
|
|
366
|
-
```yaml
|
|
367
|
-
{{- if .Values.autoscaling.enabled }}
|
|
368
|
-
apiVersion: autoscaling/v2
|
|
369
|
-
kind: HorizontalPodAutoscaler
|
|
370
|
-
metadata:
|
|
371
|
-
name: {{ include "myapp.fullname" . }}
|
|
372
|
-
labels:
|
|
373
|
-
{{- include "myapp.labels" . | nindent 4 }}
|
|
374
|
-
spec:
|
|
375
|
-
scaleTargetRef:
|
|
376
|
-
apiVersion: apps/v1
|
|
377
|
-
kind: Deployment
|
|
378
|
-
name: {{ include "myapp.fullname" . }}
|
|
379
|
-
minReplicas: {{ .Values.autoscaling.minReplicas }}
|
|
380
|
-
maxReplicas: {{ .Values.autoscaling.maxReplicas }}
|
|
381
|
-
metrics:
|
|
382
|
-
{{- if .Values.autoscaling.targetCPUUtilizationPercentage }}
|
|
383
|
-
- type: Resource
|
|
384
|
-
resource:
|
|
385
|
-
name: cpu
|
|
386
|
-
target:
|
|
387
|
-
type: Utilization
|
|
388
|
-
averageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }}
|
|
389
|
-
{{- end }}
|
|
390
|
-
{{- if .Values.autoscaling.targetMemoryUtilizationPercentage }}
|
|
391
|
-
- type: Resource
|
|
392
|
-
resource:
|
|
393
|
-
name: memory
|
|
394
|
-
target:
|
|
395
|
-
type: Utilization
|
|
396
|
-
averageUtilization: {{ .Values.autoscaling.targetMemoryUtilizationPercentage }}
|
|
397
|
-
{{- end }}
|
|
398
|
-
{{- end }}
|
|
399
|
-
```
|
|
400
|
-
|
|
401
|
-
## Helm Hooks
|
|
402
|
-
|
|
403
|
-
### Pre-Install Hook (Database Migration)
|
|
404
|
-
|
|
405
|
-
```yaml
|
|
406
|
-
apiVersion: batch/v1
|
|
407
|
-
kind: Job
|
|
408
|
-
metadata:
|
|
409
|
-
name: {{ include "myapp.fullname" . }}-migration
|
|
410
|
-
labels:
|
|
411
|
-
{{- include "myapp.labels" . | nindent 4 }}
|
|
412
|
-
annotations:
|
|
413
|
-
"helm.sh/hook": pre-install,pre-upgrade
|
|
414
|
-
"helm.sh/hook-weight": "0"
|
|
415
|
-
"helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
|
|
416
|
-
spec:
|
|
417
|
-
backoffLimit: 3
|
|
418
|
-
template:
|
|
419
|
-
metadata:
|
|
420
|
-
labels:
|
|
421
|
-
app: migration
|
|
422
|
-
spec:
|
|
423
|
-
restartPolicy: Never
|
|
424
|
-
containers:
|
|
425
|
-
- name: migrate
|
|
426
|
-
image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
|
|
427
|
-
command: ["/app/migrate", "up"]
|
|
428
|
-
env:
|
|
429
|
-
- name: DATABASE_URL
|
|
430
|
-
valueFrom:
|
|
431
|
-
secretKeyRef:
|
|
432
|
-
name: {{ include "myapp.fullname" . }}-secrets
|
|
433
|
-
key: database-url
|
|
434
|
-
```
|
|
435
|
-
|
|
436
|
-
### Post-Install Hook (Test)
|
|
437
|
-
|
|
438
|
-
```yaml
|
|
439
|
-
apiVersion: v1
|
|
440
|
-
kind: Pod
|
|
441
|
-
metadata:
|
|
442
|
-
name: {{ include "myapp.fullname" . }}-test
|
|
443
|
-
labels:
|
|
444
|
-
{{- include "myapp.labels" . | nindent 4 }}
|
|
445
|
-
annotations:
|
|
446
|
-
"helm.sh/hook": test
|
|
447
|
-
"helm.sh/hook-weight": "0"
|
|
448
|
-
"helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
|
|
449
|
-
spec:
|
|
450
|
-
restartPolicy: Never
|
|
451
|
-
containers:
|
|
452
|
-
- name: test
|
|
453
|
-
image: curlimages/curl:latest
|
|
454
|
-
command: ['sh', '-c']
|
|
455
|
-
args:
|
|
456
|
-
- |
|
|
457
|
-
curl -f http://{{ include "myapp.fullname" . }}:{{ .Values.service.port }}/health || exit 1
|
|
458
|
-
```
|
|
459
|
-
|
|
460
|
-
## Helm Commands
|
|
461
|
-
|
|
462
|
-
```bash
|
|
463
|
-
# Create new chart
|
|
464
|
-
helm create myapp
|
|
465
|
-
|
|
466
|
-
# Lint chart
|
|
467
|
-
helm lint myapp/
|
|
468
|
-
|
|
469
|
-
# Template rendering (dry-run)
|
|
470
|
-
helm template myapp ./myapp -f values-prod.yaml
|
|
471
|
-
|
|
472
|
-
# Install chart
|
|
473
|
-
helm install myapp ./myapp \
|
|
474
|
-
--namespace production \
|
|
475
|
-
--create-namespace \
|
|
476
|
-
--values values-prod.yaml \
|
|
477
|
-
--set image.tag=v1.2.0
|
|
478
|
-
|
|
479
|
-
# Upgrade chart
|
|
480
|
-
helm upgrade myapp ./myapp \
|
|
481
|
-
--namespace production \
|
|
482
|
-
--values values-prod.yaml \
|
|
483
|
-
--set image.tag=v1.3.0 \
|
|
484
|
-
--atomic \
|
|
485
|
-
--timeout 5m
|
|
486
|
-
|
|
487
|
-
# Rollback
|
|
488
|
-
helm rollback myapp 1 --namespace production
|
|
489
|
-
|
|
490
|
-
# List releases
|
|
491
|
-
helm list --namespace production
|
|
492
|
-
|
|
493
|
-
# Get values
|
|
494
|
-
helm get values myapp --namespace production
|
|
495
|
-
|
|
496
|
-
# Get manifest
|
|
497
|
-
helm get manifest myapp --namespace production
|
|
498
|
-
|
|
499
|
-
# Uninstall
|
|
500
|
-
helm uninstall myapp --namespace production
|
|
501
|
-
|
|
502
|
-
# Test
|
|
503
|
-
helm test myapp --namespace production
|
|
504
|
-
|
|
505
|
-
# Package chart
|
|
506
|
-
helm package myapp/ --version 1.2.0
|
|
507
|
-
|
|
508
|
-
# Dependency update
|
|
509
|
-
helm dependency update myapp/
|
|
510
|
-
```
|
|
511
|
-
|
|
512
|
-
## values-prod.yaml (Environment Override)
|
|
513
|
-
|
|
514
|
-
```yaml
|
|
515
|
-
replicaCount: 5
|
|
516
|
-
|
|
517
|
-
image:
|
|
518
|
-
tag: v1.2.0
|
|
519
|
-
|
|
520
|
-
resources:
|
|
521
|
-
limits:
|
|
522
|
-
cpu: 1000m
|
|
523
|
-
memory: 1Gi
|
|
524
|
-
requests:
|
|
525
|
-
cpu: 250m
|
|
526
|
-
memory: 256Mi
|
|
527
|
-
|
|
528
|
-
autoscaling:
|
|
529
|
-
enabled: true
|
|
530
|
-
minReplicas: 5
|
|
531
|
-
maxReplicas: 20
|
|
532
|
-
|
|
533
|
-
ingress:
|
|
534
|
-
hosts:
|
|
535
|
-
- host: app.production.example.com
|
|
536
|
-
paths:
|
|
537
|
-
- path: /
|
|
538
|
-
pathType: Prefix
|
|
539
|
-
|
|
540
|
-
postgresql:
|
|
541
|
-
enabled: true
|
|
542
|
-
primary:
|
|
543
|
-
persistence:
|
|
544
|
-
size: 100Gi
|
|
545
|
-
resources:
|
|
546
|
-
limits:
|
|
547
|
-
cpu: 2000m
|
|
548
|
-
memory: 4Gi
|
|
549
|
-
requests:
|
|
550
|
-
cpu: 500m
|
|
551
|
-
memory: 1Gi
|
|
552
|
-
|
|
553
|
-
redis:
|
|
554
|
-
enabled: true
|
|
555
|
-
master:
|
|
556
|
-
persistence:
|
|
557
|
-
size: 20Gi
|
|
558
|
-
```
|
|
559
|
-
|
|
560
|
-
## Chart Testing
|
|
561
|
-
|
|
562
|
-
### Helm Test Command
|
|
563
|
-
|
|
564
|
-
```bash
|
|
565
|
-
# Run chart tests after installation
|
|
566
|
-
helm test myapp --namespace production
|
|
567
|
-
|
|
568
|
-
# Run tests with logs
|
|
569
|
-
helm test myapp --namespace production --logs
|
|
570
|
-
|
|
571
|
-
# Run tests with timeout
|
|
572
|
-
helm test myapp --namespace production --timeout 5m
|
|
573
|
-
```
|
|
574
|
-
|
|
575
|
-
### Chart Testing Tool (ct)
|
|
576
|
-
|
|
577
|
-
```bash
|
|
578
|
-
# Install chart-testing
|
|
579
|
-
brew install chart-testing
|
|
580
|
-
|
|
581
|
-
# Lint charts
|
|
582
|
-
ct lint --config ct.yaml
|
|
583
|
-
|
|
584
|
-
# Lint and install (CI/CD)
|
|
585
|
-
ct lint-and-install --config ct.yaml
|
|
586
|
-
|
|
587
|
-
# Test changed charts only
|
|
588
|
-
ct lint-and-install --target-branch main --config ct.yaml
|
|
589
|
-
```
|
|
590
|
-
|
|
591
|
-
```yaml
|
|
592
|
-
# ct.yaml - Chart Testing configuration
|
|
593
|
-
remote: origin
|
|
594
|
-
target-branch: main
|
|
595
|
-
chart-dirs:
|
|
596
|
-
- charts
|
|
597
|
-
chart-repos:
|
|
598
|
-
- bitnami=https://charts.bitnami.com/bitnami
|
|
599
|
-
helm-extra-args: --timeout 600s
|
|
600
|
-
validate-maintainers: true
|
|
601
|
-
check-version-increment: true
|
|
602
|
-
```
|
|
603
|
-
|
|
604
|
-
### Unit Testing with helm-unittest
|
|
605
|
-
|
|
606
|
-
```bash
|
|
607
|
-
# Install plugin
|
|
608
|
-
helm plugin install https://github.com/helm-unittest/helm-unittest
|
|
609
|
-
|
|
610
|
-
# Run tests
|
|
611
|
-
helm unittest ./mychart
|
|
612
|
-
```
|
|
613
|
-
|
|
614
|
-
```yaml
|
|
615
|
-
# tests/deployment_test.yaml
|
|
616
|
-
suite: deployment tests
|
|
617
|
-
templates:
|
|
618
|
-
- templates/deployment.yaml
|
|
619
|
-
tests:
|
|
620
|
-
- it: should create deployment with correct replicas
|
|
621
|
-
set:
|
|
622
|
-
replicaCount: 5
|
|
623
|
-
asserts:
|
|
624
|
-
- isKind:
|
|
625
|
-
of: Deployment
|
|
626
|
-
- equal:
|
|
627
|
-
path: spec.replicas
|
|
628
|
-
value: 5
|
|
629
|
-
|
|
630
|
-
- it: should set resource limits
|
|
631
|
-
set:
|
|
632
|
-
resources:
|
|
633
|
-
limits:
|
|
634
|
-
cpu: 500m
|
|
635
|
-
memory: 256Mi
|
|
636
|
-
asserts:
|
|
637
|
-
- equal:
|
|
638
|
-
path: spec.template.spec.containers[0].resources.limits.cpu
|
|
639
|
-
value: 500m
|
|
640
|
-
|
|
641
|
-
- it: should not create HPA when autoscaling disabled
|
|
642
|
-
set:
|
|
643
|
-
autoscaling:
|
|
644
|
-
enabled: false
|
|
645
|
-
template: templates/hpa.yaml
|
|
646
|
-
asserts:
|
|
647
|
-
- hasDocuments:
|
|
648
|
-
count: 0
|
|
649
|
-
```
|
|
650
|
-
|
|
651
|
-
## Values Schema Validation
|
|
652
|
-
|
|
653
|
-
```json
|
|
654
|
-
{
|
|
655
|
-
"$schema": "https://json-schema.org/draft-07/schema#",
|
|
656
|
-
"type": "object",
|
|
657
|
-
"required": ["image", "service"],
|
|
658
|
-
"properties": {
|
|
659
|
-
"replicaCount": {
|
|
660
|
-
"type": "integer",
|
|
661
|
-
"minimum": 1,
|
|
662
|
-
"maximum": 100,
|
|
663
|
-
"default": 1
|
|
664
|
-
},
|
|
665
|
-
"image": {
|
|
666
|
-
"type": "object",
|
|
667
|
-
"required": ["repository"],
|
|
668
|
-
"properties": {
|
|
669
|
-
"repository": {
|
|
670
|
-
"type": "string",
|
|
671
|
-
"pattern": "^[a-z0-9.-/]+$"
|
|
672
|
-
},
|
|
673
|
-
"tag": {
|
|
674
|
-
"type": "string"
|
|
675
|
-
},
|
|
676
|
-
"pullPolicy": {
|
|
677
|
-
"type": "string",
|
|
678
|
-
"enum": ["Always", "IfNotPresent", "Never"]
|
|
679
|
-
}
|
|
680
|
-
}
|
|
681
|
-
},
|
|
682
|
-
"service": {
|
|
683
|
-
"type": "object",
|
|
684
|
-
"properties": {
|
|
685
|
-
"type": {
|
|
686
|
-
"type": "string",
|
|
687
|
-
"enum": ["ClusterIP", "NodePort", "LoadBalancer"]
|
|
688
|
-
},
|
|
689
|
-
"port": {
|
|
690
|
-
"type": "integer",
|
|
691
|
-
"minimum": 1,
|
|
692
|
-
"maximum": 65535
|
|
693
|
-
}
|
|
694
|
-
}
|
|
695
|
-
},
|
|
696
|
-
"resources": {
|
|
697
|
-
"type": "object",
|
|
698
|
-
"properties": {
|
|
699
|
-
"limits": {
|
|
700
|
-
"$ref": "#/definitions/resourceRequirements"
|
|
701
|
-
},
|
|
702
|
-
"requests": {
|
|
703
|
-
"$ref": "#/definitions/resourceRequirements"
|
|
704
|
-
}
|
|
705
|
-
}
|
|
706
|
-
}
|
|
707
|
-
},
|
|
708
|
-
"definitions": {
|
|
709
|
-
"resourceRequirements": {
|
|
710
|
-
"type": "object",
|
|
711
|
-
"properties": {
|
|
712
|
-
"cpu": {
|
|
713
|
-
"type": "string",
|
|
714
|
-
"pattern": "^[0-9]+m?$"
|
|
715
|
-
},
|
|
716
|
-
"memory": {
|
|
717
|
-
"type": "string",
|
|
718
|
-
"pattern": "^[0-9]+(Mi|Gi)$"
|
|
719
|
-
}
|
|
720
|
-
}
|
|
721
|
-
}
|
|
722
|
-
}
|
|
723
|
-
}
|
|
724
|
-
```
|
|
725
|
-
|
|
726
|
-
## Chart Repository
|
|
727
|
-
|
|
728
|
-
### Create Repository
|
|
729
|
-
|
|
730
|
-
```bash
|
|
731
|
-
# Package chart
|
|
732
|
-
helm package mychart/ --version 1.2.0 --destination ./repo
|
|
733
|
-
|
|
734
|
-
# Generate index
|
|
735
|
-
helm repo index ./repo --url https://charts.example.com
|
|
736
|
-
|
|
737
|
-
# Update index with new chart
|
|
738
|
-
helm repo index ./repo --url https://charts.example.com --merge ./repo/index.yaml
|
|
739
|
-
```
|
|
740
|
-
|
|
741
|
-
### GitHub Pages Repository
|
|
742
|
-
|
|
743
|
-
```yaml
|
|
744
|
-
# .github/workflows/release.yaml
|
|
745
|
-
name: Release Charts
|
|
746
|
-
on:
|
|
747
|
-
push:
|
|
748
|
-
branches: [main]
|
|
749
|
-
paths: ['charts/**']
|
|
750
|
-
jobs:
|
|
751
|
-
release:
|
|
752
|
-
runs-on: ubuntu-latest
|
|
753
|
-
steps:
|
|
754
|
-
- uses: actions/checkout@v4
|
|
755
|
-
with:
|
|
756
|
-
fetch-depth: 0
|
|
757
|
-
- name: Configure Git
|
|
758
|
-
run: |
|
|
759
|
-
git config user.name "$GITHUB_ACTOR"
|
|
760
|
-
git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
|
|
761
|
-
- name: Install Helm
|
|
762
|
-
uses: azure/setup-helm@v3
|
|
763
|
-
- name: Run chart-releaser
|
|
764
|
-
uses: helm/chart-releaser-action@v1.6.0
|
|
765
|
-
env:
|
|
766
|
-
CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
|
|
767
|
-
```
|
|
768
|
-
|
|
769
|
-
### OCI Registry
|
|
770
|
-
|
|
771
|
-
```bash
|
|
772
|
-
# Login to registry
|
|
773
|
-
helm registry login myregistry.io -u user -p token
|
|
774
|
-
|
|
775
|
-
# Push chart to OCI registry
|
|
776
|
-
helm push mychart-1.2.0.tgz oci://myregistry.io/charts
|
|
777
|
-
|
|
778
|
-
# Pull from OCI
|
|
779
|
-
helm pull oci://myregistry.io/charts/mychart --version 1.2.0
|
|
780
|
-
|
|
781
|
-
# Install from OCI
|
|
782
|
-
helm install myapp oci://myregistry.io/charts/mychart --version 1.2.0
|
|
783
|
-
```
|
|
784
|
-
|
|
785
|
-
## Helm Plugins
|
|
786
|
-
|
|
787
|
-
```bash
|
|
788
|
-
# helm-diff - preview upgrades
|
|
789
|
-
helm plugin install https://github.com/databus23/helm-diff
|
|
790
|
-
helm diff upgrade myapp ./mychart -f values-prod.yaml
|
|
791
|
-
|
|
792
|
-
# helm-secrets - manage encrypted secrets
|
|
793
|
-
helm plugin install https://github.com/jkroepke/helm-secrets
|
|
794
|
-
helm secrets encrypt secrets.yaml
|
|
795
|
-
helm secrets decrypt secrets.yaml.enc
|
|
796
|
-
helm secrets install myapp ./mychart -f secrets.yaml.enc
|
|
797
|
-
|
|
798
|
-
# helm-git - use git repos as chart sources
|
|
799
|
-
helm plugin install https://github.com/aslafy-z/helm-git
|
|
800
|
-
helm repo add mycharts git+https://github.com/myorg/charts@charts?ref=main
|
|
801
|
-
|
|
802
|
-
# helm-s3 - S3 as chart repository
|
|
803
|
-
helm plugin install https://github.com/hypnoglow/helm-s3
|
|
804
|
-
helm s3 init s3://my-bucket/charts
|
|
805
|
-
helm s3 push mychart-1.2.0.tgz my-s3-repo
|
|
806
|
-
```
|
|
807
|
-
|
|
808
|
-
## Complex Upgrade/Rollback
|
|
809
|
-
|
|
810
|
-
```bash
|
|
811
|
-
# Upgrade with atomic (rollback on failure)
|
|
812
|
-
helm upgrade myapp ./mychart \
|
|
813
|
-
--namespace production \
|
|
814
|
-
--atomic \
|
|
815
|
-
--timeout 10m \
|
|
816
|
-
--wait
|
|
817
|
-
|
|
818
|
-
# Upgrade with cleanup on failure
|
|
819
|
-
helm upgrade myapp ./mychart \
|
|
820
|
-
--namespace production \
|
|
821
|
-
--cleanup-on-fail
|
|
822
|
-
|
|
823
|
-
# Force resource update (recreate)
|
|
824
|
-
helm upgrade myapp ./mychart \
|
|
825
|
-
--namespace production \
|
|
826
|
-
--force
|
|
827
|
-
|
|
828
|
-
# Dry run before upgrade
|
|
829
|
-
helm upgrade myapp ./mychart \
|
|
830
|
-
--namespace production \
|
|
831
|
-
--dry-run \
|
|
832
|
-
--debug
|
|
833
|
-
|
|
834
|
-
# Compare current vs new
|
|
835
|
-
helm get manifest myapp -n production > current.yaml
|
|
836
|
-
helm template myapp ./mychart -f values-prod.yaml > new.yaml
|
|
837
|
-
diff current.yaml new.yaml
|
|
838
|
-
|
|
839
|
-
# Rollback to specific revision
|
|
840
|
-
helm rollback myapp 3 --namespace production
|
|
841
|
-
|
|
842
|
-
# Rollback with wait
|
|
843
|
-
helm rollback myapp 3 --namespace production --wait --timeout 5m
|
|
844
|
-
|
|
845
|
-
# View revision history
|
|
846
|
-
helm history myapp --namespace production
|
|
847
|
-
```
|
|
848
|
-
|
|
849
|
-
## Library Charts
|
|
850
|
-
|
|
851
|
-
```yaml
|
|
852
|
-
# Chart.yaml for library chart
|
|
853
|
-
apiVersion: v2
|
|
854
|
-
name: mylib
|
|
855
|
-
type: library
|
|
856
|
-
version: 1.0.0
|
|
857
|
-
```
|
|
858
|
-
|
|
859
|
-
```yaml
|
|
860
|
-
# templates/_deployment.tpl in library
|
|
861
|
-
{{- define "mylib.deployment" -}}
|
|
862
|
-
apiVersion: apps/v1
|
|
863
|
-
kind: Deployment
|
|
864
|
-
metadata:
|
|
865
|
-
name: {{ include "mylib.fullname" . }}
|
|
866
|
-
labels:
|
|
867
|
-
{{- include "mylib.labels" . | nindent 4 }}
|
|
868
|
-
spec:
|
|
869
|
-
replicas: {{ .Values.replicaCount }}
|
|
870
|
-
selector:
|
|
871
|
-
matchLabels:
|
|
872
|
-
{{- include "mylib.selectorLabels" . | nindent 6 }}
|
|
873
|
-
template:
|
|
874
|
-
metadata:
|
|
875
|
-
labels:
|
|
876
|
-
{{- include "mylib.selectorLabels" . | nindent 8 }}
|
|
877
|
-
spec:
|
|
878
|
-
containers:
|
|
879
|
-
- name: {{ .Chart.Name }}
|
|
880
|
-
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
|
|
881
|
-
{{- end }}
|
|
882
|
-
```
|
|
883
|
-
|
|
884
|
-
```yaml
|
|
885
|
-
# Using library chart
|
|
886
|
-
# Chart.yaml
|
|
887
|
-
dependencies:
|
|
888
|
-
- name: mylib
|
|
889
|
-
version: "1.x.x"
|
|
890
|
-
repository: https://charts.example.com
|
|
891
|
-
|
|
892
|
-
# templates/deployment.yaml
|
|
893
|
-
{{- include "mylib.deployment" . }}
|
|
894
|
-
```
|
|
895
|
-
|
|
896
|
-
## Best Practices
|
|
897
|
-
|
|
898
|
-
1. **Versioning**: Follow semantic versioning for charts
|
|
899
|
-
2. **Values**: Provide sensible defaults, allow overrides
|
|
900
|
-
3. **Documentation**: Document all values in README
|
|
901
|
-
4. **Testing**: Include tests in templates/tests/
|
|
902
|
-
5. **Helpers**: Use _helpers.tpl for reusable templates
|
|
903
|
-
6. **Labels**: Include standard Kubernetes labels
|
|
904
|
-
7. **Annotations**: Use annotations for metadata and tools
|
|
905
|
-
8. **Hooks**: Use hooks for migrations, cleanup
|
|
906
|
-
9. **Dependencies**: Pin dependency versions
|
|
907
|
-
10. **Schema**: Validate values with values.schema.json
|
|
908
|
-
11. **Use ct** for comprehensive chart testing in CI
|
|
909
|
-
12. **Use helm-diff** before production upgrades
|
|
910
|
-
13. **Encrypt secrets** with helm-secrets or sealed-secrets
|
|
911
|
-
14. **Use library charts** for shared patterns
|
|
912
|
-
15. **Push to OCI registries** for better artifact management
|
|
1
|
+
# Helm Charts
|
|
2
|
+
|
|
3
|
+
## Chart Structure
|
|
4
|
+
|
|
5
|
+
```
|
|
6
|
+
mychart/
|
|
7
|
+
├── Chart.yaml # Chart metadata
|
|
8
|
+
├── values.yaml # Default values
|
|
9
|
+
├── values.schema.json # Values validation schema
|
|
10
|
+
├── charts/ # Dependency charts
|
|
11
|
+
├── templates/ # Template files
|
|
12
|
+
│ ├── NOTES.txt # Post-install notes
|
|
13
|
+
│ ├── _helpers.tpl # Template helpers
|
|
14
|
+
│ ├── deployment.yaml
|
|
15
|
+
│ ├── service.yaml
|
|
16
|
+
│ ├── ingress.yaml
|
|
17
|
+
│ ├── configmap.yaml
|
|
18
|
+
│ ├── secret.yaml
|
|
19
|
+
│ ├── serviceaccount.yaml
|
|
20
|
+
│ ├── hpa.yaml
|
|
21
|
+
│ └── tests/
|
|
22
|
+
│ └── test-connection.yaml
|
|
23
|
+
├── .helmignore # Ignore patterns
|
|
24
|
+
└── README.md # Chart documentation
|
|
25
|
+
```
|
|
26
|
+
|
|
27
|
+
## Chart.yaml
|
|
28
|
+
|
|
29
|
+
```yaml
|
|
30
|
+
apiVersion: v2
|
|
31
|
+
name: myapp
|
|
32
|
+
description: A Helm chart for MyApp on Kubernetes
|
|
33
|
+
type: application
|
|
34
|
+
version: 1.2.0
|
|
35
|
+
appVersion: "2.5.0"
|
|
36
|
+
|
|
37
|
+
keywords:
|
|
38
|
+
- web
|
|
39
|
+
- application
|
|
40
|
+
- microservice
|
|
41
|
+
|
|
42
|
+
home: https://example.com
|
|
43
|
+
sources:
|
|
44
|
+
- https://github.com/example/myapp
|
|
45
|
+
|
|
46
|
+
maintainers:
|
|
47
|
+
- name: DevOps Team
|
|
48
|
+
email: devops@example.com
|
|
49
|
+
url: https://example.com/team
|
|
50
|
+
|
|
51
|
+
icon: https://example.com/logo.png
|
|
52
|
+
|
|
53
|
+
dependencies:
|
|
54
|
+
- name: postgresql
|
|
55
|
+
version: "12.x.x"
|
|
56
|
+
repository: https://charts.bitnami.com/bitnami
|
|
57
|
+
condition: postgresql.enabled
|
|
58
|
+
tags:
|
|
59
|
+
- database
|
|
60
|
+
|
|
61
|
+
- name: redis
|
|
62
|
+
version: "17.x.x"
|
|
63
|
+
repository: https://charts.bitnami.com/bitnami
|
|
64
|
+
condition: redis.enabled
|
|
65
|
+
tags:
|
|
66
|
+
- cache
|
|
67
|
+
|
|
68
|
+
annotations:
|
|
69
|
+
category: Application
|
|
70
|
+
```
|
|
71
|
+
|
|
72
|
+
## values.yaml
|
|
73
|
+
|
|
74
|
+
```yaml
|
|
75
|
+
# Default values for myapp
|
|
76
|
+
replicaCount: 3
|
|
77
|
+
|
|
78
|
+
image:
|
|
79
|
+
repository: myregistry.io/myapp
|
|
80
|
+
pullPolicy: IfNotPresent
|
|
81
|
+
tag: "" # Overrides the image tag (default is .Chart.AppVersion)
|
|
82
|
+
|
|
83
|
+
imagePullSecrets:
|
|
84
|
+
- name: registry-credentials
|
|
85
|
+
|
|
86
|
+
nameOverride: ""
|
|
87
|
+
fullnameOverride: ""
|
|
88
|
+
|
|
89
|
+
serviceAccount:
|
|
90
|
+
create: true
|
|
91
|
+
annotations: {}
|
|
92
|
+
name: ""
|
|
93
|
+
|
|
94
|
+
podAnnotations:
|
|
95
|
+
prometheus.io/scrape: "true"
|
|
96
|
+
prometheus.io/port: "8080"
|
|
97
|
+
|
|
98
|
+
podSecurityContext:
|
|
99
|
+
runAsNonRoot: true
|
|
100
|
+
runAsUser: 1000
|
|
101
|
+
fsGroup: 2000
|
|
102
|
+
seccompProfile:
|
|
103
|
+
type: RuntimeDefault
|
|
104
|
+
|
|
105
|
+
securityContext:
|
|
106
|
+
allowPrivilegeEscalation: false
|
|
107
|
+
capabilities:
|
|
108
|
+
drop:
|
|
109
|
+
- ALL
|
|
110
|
+
readOnlyRootFilesystem: true
|
|
111
|
+
|
|
112
|
+
service:
|
|
113
|
+
type: ClusterIP
|
|
114
|
+
port: 80
|
|
115
|
+
targetPort: 8080
|
|
116
|
+
annotations: {}
|
|
117
|
+
|
|
118
|
+
ingress:
|
|
119
|
+
enabled: true
|
|
120
|
+
className: "nginx"
|
|
121
|
+
annotations:
|
|
122
|
+
cert-manager.io/cluster-issuer: "letsencrypt-prod"
|
|
123
|
+
nginx.ingress.kubernetes.io/ssl-redirect: "true"
|
|
124
|
+
hosts:
|
|
125
|
+
- host: myapp.example.com
|
|
126
|
+
paths:
|
|
127
|
+
- path: /
|
|
128
|
+
pathType: Prefix
|
|
129
|
+
tls:
|
|
130
|
+
- secretName: myapp-tls
|
|
131
|
+
hosts:
|
|
132
|
+
- myapp.example.com
|
|
133
|
+
|
|
134
|
+
resources:
|
|
135
|
+
limits:
|
|
136
|
+
cpu: 500m
|
|
137
|
+
memory: 512Mi
|
|
138
|
+
requests:
|
|
139
|
+
cpu: 100m
|
|
140
|
+
memory: 128Mi
|
|
141
|
+
|
|
142
|
+
autoscaling:
|
|
143
|
+
enabled: true
|
|
144
|
+
minReplicas: 3
|
|
145
|
+
maxReplicas: 10
|
|
146
|
+
targetCPUUtilizationPercentage: 80
|
|
147
|
+
targetMemoryUtilizationPercentage: 80
|
|
148
|
+
|
|
149
|
+
nodeSelector: {}
|
|
150
|
+
|
|
151
|
+
tolerations: []
|
|
152
|
+
|
|
153
|
+
affinity:
|
|
154
|
+
podAntiAffinity:
|
|
155
|
+
preferredDuringSchedulingIgnoredDuringExecution:
|
|
156
|
+
- weight: 100
|
|
157
|
+
podAffinityTerm:
|
|
158
|
+
labelSelector:
|
|
159
|
+
matchExpressions:
|
|
160
|
+
- key: app.kubernetes.io/name
|
|
161
|
+
operator: In
|
|
162
|
+
values:
|
|
163
|
+
- myapp
|
|
164
|
+
topologyKey: kubernetes.io/hostname
|
|
165
|
+
|
|
166
|
+
livenessProbe:
|
|
167
|
+
httpGet:
|
|
168
|
+
path: /health
|
|
169
|
+
port: http
|
|
170
|
+
initialDelaySeconds: 30
|
|
171
|
+
periodSeconds: 10
|
|
172
|
+
timeoutSeconds: 5
|
|
173
|
+
failureThreshold: 3
|
|
174
|
+
|
|
175
|
+
readinessProbe:
|
|
176
|
+
httpGet:
|
|
177
|
+
path: /ready
|
|
178
|
+
port: http
|
|
179
|
+
initialDelaySeconds: 10
|
|
180
|
+
periodSeconds: 5
|
|
181
|
+
timeoutSeconds: 3
|
|
182
|
+
failureThreshold: 2
|
|
183
|
+
|
|
184
|
+
env:
|
|
185
|
+
- name: ENVIRONMENT
|
|
186
|
+
value: production
|
|
187
|
+
- name: LOG_LEVEL
|
|
188
|
+
value: info
|
|
189
|
+
|
|
190
|
+
envFrom: []
|
|
191
|
+
|
|
192
|
+
volumeMounts: []
|
|
193
|
+
volumes: []
|
|
194
|
+
|
|
195
|
+
# PostgreSQL dependency
|
|
196
|
+
postgresql:
|
|
197
|
+
enabled: true
|
|
198
|
+
auth:
|
|
199
|
+
username: myapp
|
|
200
|
+
password: "" # Set via --set or separate secret
|
|
201
|
+
database: myapp
|
|
202
|
+
primary:
|
|
203
|
+
persistence:
|
|
204
|
+
enabled: true
|
|
205
|
+
size: 10Gi
|
|
206
|
+
|
|
207
|
+
# Redis dependency
|
|
208
|
+
redis:
|
|
209
|
+
enabled: true
|
|
210
|
+
architecture: standalone
|
|
211
|
+
auth:
|
|
212
|
+
enabled: true
|
|
213
|
+
password: ""
|
|
214
|
+
master:
|
|
215
|
+
persistence:
|
|
216
|
+
enabled: true
|
|
217
|
+
size: 5Gi
|
|
218
|
+
```
|
|
219
|
+
|
|
220
|
+
## templates/_helpers.tpl
|
|
221
|
+
|
|
222
|
+
```yaml
|
|
223
|
+
{{/*
|
|
224
|
+
Expand the name of the chart.
|
|
225
|
+
*/}}
|
|
226
|
+
{{- define "myapp.name" -}}
|
|
227
|
+
{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
|
|
228
|
+
{{- end }}
|
|
229
|
+
|
|
230
|
+
{{/*
|
|
231
|
+
Create a default fully qualified app name.
|
|
232
|
+
*/}}
|
|
233
|
+
{{- define "myapp.fullname" -}}
|
|
234
|
+
{{- if .Values.fullnameOverride }}
|
|
235
|
+
{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
|
|
236
|
+
{{- else }}
|
|
237
|
+
{{- $name := default .Chart.Name .Values.nameOverride }}
|
|
238
|
+
{{- if contains $name .Release.Name }}
|
|
239
|
+
{{- .Release.Name | trunc 63 | trimSuffix "-" }}
|
|
240
|
+
{{- else }}
|
|
241
|
+
{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
|
|
242
|
+
{{- end }}
|
|
243
|
+
{{- end }}
|
|
244
|
+
{{- end }}
|
|
245
|
+
|
|
246
|
+
{{/*
|
|
247
|
+
Create chart name and version as used by the chart label.
|
|
248
|
+
*/}}
|
|
249
|
+
{{- define "myapp.chart" -}}
|
|
250
|
+
{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
|
|
251
|
+
{{- end }}
|
|
252
|
+
|
|
253
|
+
{{/*
|
|
254
|
+
Common labels
|
|
255
|
+
*/}}
|
|
256
|
+
{{- define "myapp.labels" -}}
|
|
257
|
+
helm.sh/chart: {{ include "myapp.chart" . }}
|
|
258
|
+
{{ include "myapp.selectorLabels" . }}
|
|
259
|
+
{{- if .Chart.AppVersion }}
|
|
260
|
+
app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
|
|
261
|
+
{{- end }}
|
|
262
|
+
app.kubernetes.io/managed-by: {{ .Release.Service }}
|
|
263
|
+
{{- end }}
|
|
264
|
+
|
|
265
|
+
{{/*
|
|
266
|
+
Selector labels
|
|
267
|
+
*/}}
|
|
268
|
+
{{- define "myapp.selectorLabels" -}}
|
|
269
|
+
app.kubernetes.io/name: {{ include "myapp.name" . }}
|
|
270
|
+
app.kubernetes.io/instance: {{ .Release.Name }}
|
|
271
|
+
{{- end }}
|
|
272
|
+
|
|
273
|
+
{{/*
|
|
274
|
+
Create the name of the service account to use
|
|
275
|
+
*/}}
|
|
276
|
+
{{- define "myapp.serviceAccountName" -}}
|
|
277
|
+
{{- if .Values.serviceAccount.create }}
|
|
278
|
+
{{- default (include "myapp.fullname" .) .Values.serviceAccount.name }}
|
|
279
|
+
{{- else }}
|
|
280
|
+
{{- default "default" .Values.serviceAccount.name }}
|
|
281
|
+
{{- end }}
|
|
282
|
+
{{- end }}
|
|
283
|
+
```
|
|
284
|
+
|
|
285
|
+
## templates/deployment.yaml
|
|
286
|
+
|
|
287
|
+
```yaml
|
|
288
|
+
apiVersion: apps/v1
|
|
289
|
+
kind: Deployment
|
|
290
|
+
metadata:
|
|
291
|
+
name: {{ include "myapp.fullname" . }}
|
|
292
|
+
labels:
|
|
293
|
+
{{- include "myapp.labels" . | nindent 4 }}
|
|
294
|
+
spec:
|
|
295
|
+
{{- if not .Values.autoscaling.enabled }}
|
|
296
|
+
replicas: {{ .Values.replicaCount }}
|
|
297
|
+
{{- end }}
|
|
298
|
+
selector:
|
|
299
|
+
matchLabels:
|
|
300
|
+
{{- include "myapp.selectorLabels" . | nindent 6 }}
|
|
301
|
+
template:
|
|
302
|
+
metadata:
|
|
303
|
+
annotations:
|
|
304
|
+
checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
|
|
305
|
+
{{- with .Values.podAnnotations }}
|
|
306
|
+
{{- toYaml . | nindent 8 }}
|
|
307
|
+
{{- end }}
|
|
308
|
+
labels:
|
|
309
|
+
{{- include "myapp.selectorLabels" . | nindent 8 }}
|
|
310
|
+
spec:
|
|
311
|
+
{{- with .Values.imagePullSecrets }}
|
|
312
|
+
imagePullSecrets:
|
|
313
|
+
{{- toYaml . | nindent 8 }}
|
|
314
|
+
{{- end }}
|
|
315
|
+
serviceAccountName: {{ include "myapp.serviceAccountName" . }}
|
|
316
|
+
securityContext:
|
|
317
|
+
{{- toYaml .Values.podSecurityContext | nindent 8 }}
|
|
318
|
+
containers:
|
|
319
|
+
- name: {{ .Chart.Name }}
|
|
320
|
+
securityContext:
|
|
321
|
+
{{- toYaml .Values.securityContext | nindent 12 }}
|
|
322
|
+
image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
|
|
323
|
+
imagePullPolicy: {{ .Values.image.pullPolicy }}
|
|
324
|
+
ports:
|
|
325
|
+
- name: http
|
|
326
|
+
containerPort: {{ .Values.service.targetPort }}
|
|
327
|
+
protocol: TCP
|
|
328
|
+
{{- with .Values.env }}
|
|
329
|
+
env:
|
|
330
|
+
{{- toYaml . | nindent 12 }}
|
|
331
|
+
{{- end }}
|
|
332
|
+
{{- with .Values.envFrom }}
|
|
333
|
+
envFrom:
|
|
334
|
+
{{- toYaml . | nindent 12 }}
|
|
335
|
+
{{- end }}
|
|
336
|
+
livenessProbe:
|
|
337
|
+
{{- toYaml .Values.livenessProbe | nindent 12 }}
|
|
338
|
+
readinessProbe:
|
|
339
|
+
{{- toYaml .Values.readinessProbe | nindent 12 }}
|
|
340
|
+
resources:
|
|
341
|
+
{{- toYaml .Values.resources | nindent 12 }}
|
|
342
|
+
{{- with .Values.volumeMounts }}
|
|
343
|
+
volumeMounts:
|
|
344
|
+
{{- toYaml . | nindent 12 }}
|
|
345
|
+
{{- end }}
|
|
346
|
+
{{- with .Values.volumes }}
|
|
347
|
+
volumes:
|
|
348
|
+
{{- toYaml . | nindent 8 }}
|
|
349
|
+
{{- end }}
|
|
350
|
+
{{- with .Values.nodeSelector }}
|
|
351
|
+
nodeSelector:
|
|
352
|
+
{{- toYaml . | nindent 8 }}
|
|
353
|
+
{{- end }}
|
|
354
|
+
{{- with .Values.affinity }}
|
|
355
|
+
affinity:
|
|
356
|
+
{{- toYaml . | nindent 8 }}
|
|
357
|
+
{{- end }}
|
|
358
|
+
{{- with .Values.tolerations }}
|
|
359
|
+
tolerations:
|
|
360
|
+
{{- toYaml . | nindent 8 }}
|
|
361
|
+
{{- end }}
|
|
362
|
+
```
|
|
363
|
+
|
|
364
|
+
## templates/hpa.yaml
|
|
365
|
+
|
|
366
|
+
```yaml
|
|
367
|
+
{{- if .Values.autoscaling.enabled }}
|
|
368
|
+
apiVersion: autoscaling/v2
|
|
369
|
+
kind: HorizontalPodAutoscaler
|
|
370
|
+
metadata:
|
|
371
|
+
name: {{ include "myapp.fullname" . }}
|
|
372
|
+
labels:
|
|
373
|
+
{{- include "myapp.labels" . | nindent 4 }}
|
|
374
|
+
spec:
|
|
375
|
+
scaleTargetRef:
|
|
376
|
+
apiVersion: apps/v1
|
|
377
|
+
kind: Deployment
|
|
378
|
+
name: {{ include "myapp.fullname" . }}
|
|
379
|
+
minReplicas: {{ .Values.autoscaling.minReplicas }}
|
|
380
|
+
maxReplicas: {{ .Values.autoscaling.maxReplicas }}
|
|
381
|
+
metrics:
|
|
382
|
+
{{- if .Values.autoscaling.targetCPUUtilizationPercentage }}
|
|
383
|
+
- type: Resource
|
|
384
|
+
resource:
|
|
385
|
+
name: cpu
|
|
386
|
+
target:
|
|
387
|
+
type: Utilization
|
|
388
|
+
averageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }}
|
|
389
|
+
{{- end }}
|
|
390
|
+
{{- if .Values.autoscaling.targetMemoryUtilizationPercentage }}
|
|
391
|
+
- type: Resource
|
|
392
|
+
resource:
|
|
393
|
+
name: memory
|
|
394
|
+
target:
|
|
395
|
+
type: Utilization
|
|
396
|
+
averageUtilization: {{ .Values.autoscaling.targetMemoryUtilizationPercentage }}
|
|
397
|
+
{{- end }}
|
|
398
|
+
{{- end }}
|
|
399
|
+
```
|
|
400
|
+
|
|
401
|
+
## Helm Hooks
|
|
402
|
+
|
|
403
|
+
### Pre-Install Hook (Database Migration)
|
|
404
|
+
|
|
405
|
+
```yaml
|
|
406
|
+
apiVersion: batch/v1
|
|
407
|
+
kind: Job
|
|
408
|
+
metadata:
|
|
409
|
+
name: {{ include "myapp.fullname" . }}-migration
|
|
410
|
+
labels:
|
|
411
|
+
{{- include "myapp.labels" . | nindent 4 }}
|
|
412
|
+
annotations:
|
|
413
|
+
"helm.sh/hook": pre-install,pre-upgrade
|
|
414
|
+
"helm.sh/hook-weight": "0"
|
|
415
|
+
"helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
|
|
416
|
+
spec:
|
|
417
|
+
backoffLimit: 3
|
|
418
|
+
template:
|
|
419
|
+
metadata:
|
|
420
|
+
labels:
|
|
421
|
+
app: migration
|
|
422
|
+
spec:
|
|
423
|
+
restartPolicy: Never
|
|
424
|
+
containers:
|
|
425
|
+
- name: migrate
|
|
426
|
+
image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
|
|
427
|
+
command: ["/app/migrate", "up"]
|
|
428
|
+
env:
|
|
429
|
+
- name: DATABASE_URL
|
|
430
|
+
valueFrom:
|
|
431
|
+
secretKeyRef:
|
|
432
|
+
name: {{ include "myapp.fullname" . }}-secrets
|
|
433
|
+
key: database-url
|
|
434
|
+
```
|
|
435
|
+
|
|
436
|
+
### Post-Install Hook (Test)
|
|
437
|
+
|
|
438
|
+
```yaml
|
|
439
|
+
apiVersion: v1
|
|
440
|
+
kind: Pod
|
|
441
|
+
metadata:
|
|
442
|
+
name: {{ include "myapp.fullname" . }}-test
|
|
443
|
+
labels:
|
|
444
|
+
{{- include "myapp.labels" . | nindent 4 }}
|
|
445
|
+
annotations:
|
|
446
|
+
"helm.sh/hook": test
|
|
447
|
+
"helm.sh/hook-weight": "0"
|
|
448
|
+
"helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
|
|
449
|
+
spec:
|
|
450
|
+
restartPolicy: Never
|
|
451
|
+
containers:
|
|
452
|
+
- name: test
|
|
453
|
+
image: curlimages/curl:latest
|
|
454
|
+
command: ['sh', '-c']
|
|
455
|
+
args:
|
|
456
|
+
- |
|
|
457
|
+
curl -f http://{{ include "myapp.fullname" . }}:{{ .Values.service.port }}/health || exit 1
|
|
458
|
+
```
|
|
459
|
+
|
|
460
|
+
## Helm Commands
|
|
461
|
+
|
|
462
|
+
```bash
|
|
463
|
+
# Create new chart
|
|
464
|
+
helm create myapp
|
|
465
|
+
|
|
466
|
+
# Lint chart
|
|
467
|
+
helm lint myapp/
|
|
468
|
+
|
|
469
|
+
# Template rendering (dry-run)
|
|
470
|
+
helm template myapp ./myapp -f values-prod.yaml
|
|
471
|
+
|
|
472
|
+
# Install chart
|
|
473
|
+
helm install myapp ./myapp \
|
|
474
|
+
--namespace production \
|
|
475
|
+
--create-namespace \
|
|
476
|
+
--values values-prod.yaml \
|
|
477
|
+
--set image.tag=v1.2.0
|
|
478
|
+
|
|
479
|
+
# Upgrade chart
|
|
480
|
+
helm upgrade myapp ./myapp \
|
|
481
|
+
--namespace production \
|
|
482
|
+
--values values-prod.yaml \
|
|
483
|
+
--set image.tag=v1.3.0 \
|
|
484
|
+
--atomic \
|
|
485
|
+
--timeout 5m
|
|
486
|
+
|
|
487
|
+
# Rollback
|
|
488
|
+
helm rollback myapp 1 --namespace production
|
|
489
|
+
|
|
490
|
+
# List releases
|
|
491
|
+
helm list --namespace production
|
|
492
|
+
|
|
493
|
+
# Get values
|
|
494
|
+
helm get values myapp --namespace production
|
|
495
|
+
|
|
496
|
+
# Get manifest
|
|
497
|
+
helm get manifest myapp --namespace production
|
|
498
|
+
|
|
499
|
+
# Uninstall
|
|
500
|
+
helm uninstall myapp --namespace production
|
|
501
|
+
|
|
502
|
+
# Test
|
|
503
|
+
helm test myapp --namespace production
|
|
504
|
+
|
|
505
|
+
# Package chart
|
|
506
|
+
helm package myapp/ --version 1.2.0
|
|
507
|
+
|
|
508
|
+
# Dependency update
|
|
509
|
+
helm dependency update myapp/
|
|
510
|
+
```
|
|
511
|
+
|
|
512
|
+
## values-prod.yaml (Environment Override)
|
|
513
|
+
|
|
514
|
+
```yaml
|
|
515
|
+
replicaCount: 5
|
|
516
|
+
|
|
517
|
+
image:
|
|
518
|
+
tag: v1.2.0
|
|
519
|
+
|
|
520
|
+
resources:
|
|
521
|
+
limits:
|
|
522
|
+
cpu: 1000m
|
|
523
|
+
memory: 1Gi
|
|
524
|
+
requests:
|
|
525
|
+
cpu: 250m
|
|
526
|
+
memory: 256Mi
|
|
527
|
+
|
|
528
|
+
autoscaling:
|
|
529
|
+
enabled: true
|
|
530
|
+
minReplicas: 5
|
|
531
|
+
maxReplicas: 20
|
|
532
|
+
|
|
533
|
+
ingress:
|
|
534
|
+
hosts:
|
|
535
|
+
- host: app.production.example.com
|
|
536
|
+
paths:
|
|
537
|
+
- path: /
|
|
538
|
+
pathType: Prefix
|
|
539
|
+
|
|
540
|
+
postgresql:
|
|
541
|
+
enabled: true
|
|
542
|
+
primary:
|
|
543
|
+
persistence:
|
|
544
|
+
size: 100Gi
|
|
545
|
+
resources:
|
|
546
|
+
limits:
|
|
547
|
+
cpu: 2000m
|
|
548
|
+
memory: 4Gi
|
|
549
|
+
requests:
|
|
550
|
+
cpu: 500m
|
|
551
|
+
memory: 1Gi
|
|
552
|
+
|
|
553
|
+
redis:
|
|
554
|
+
enabled: true
|
|
555
|
+
master:
|
|
556
|
+
persistence:
|
|
557
|
+
size: 20Gi
|
|
558
|
+
```
|
|
559
|
+
|
|
560
|
+
## Chart Testing
|
|
561
|
+
|
|
562
|
+
### Helm Test Command
|
|
563
|
+
|
|
564
|
+
```bash
|
|
565
|
+
# Run chart tests after installation
|
|
566
|
+
helm test myapp --namespace production
|
|
567
|
+
|
|
568
|
+
# Run tests with logs
|
|
569
|
+
helm test myapp --namespace production --logs
|
|
570
|
+
|
|
571
|
+
# Run tests with timeout
|
|
572
|
+
helm test myapp --namespace production --timeout 5m
|
|
573
|
+
```
|
|
574
|
+
|
|
575
|
+
### Chart Testing Tool (ct)
|
|
576
|
+
|
|
577
|
+
```bash
|
|
578
|
+
# Install chart-testing
|
|
579
|
+
brew install chart-testing
|
|
580
|
+
|
|
581
|
+
# Lint charts
|
|
582
|
+
ct lint --config ct.yaml
|
|
583
|
+
|
|
584
|
+
# Lint and install (CI/CD)
|
|
585
|
+
ct lint-and-install --config ct.yaml
|
|
586
|
+
|
|
587
|
+
# Test changed charts only
|
|
588
|
+
ct lint-and-install --target-branch main --config ct.yaml
|
|
589
|
+
```
|
|
590
|
+
|
|
591
|
+
```yaml
|
|
592
|
+
# ct.yaml - Chart Testing configuration
|
|
593
|
+
remote: origin
|
|
594
|
+
target-branch: main
|
|
595
|
+
chart-dirs:
|
|
596
|
+
- charts
|
|
597
|
+
chart-repos:
|
|
598
|
+
- bitnami=https://charts.bitnami.com/bitnami
|
|
599
|
+
helm-extra-args: --timeout 600s
|
|
600
|
+
validate-maintainers: true
|
|
601
|
+
check-version-increment: true
|
|
602
|
+
```
|
|
603
|
+
|
|
604
|
+
### Unit Testing with helm-unittest
|
|
605
|
+
|
|
606
|
+
```bash
|
|
607
|
+
# Install plugin
|
|
608
|
+
helm plugin install https://github.com/helm-unittest/helm-unittest
|
|
609
|
+
|
|
610
|
+
# Run tests
|
|
611
|
+
helm unittest ./mychart
|
|
612
|
+
```
|
|
613
|
+
|
|
614
|
+
```yaml
|
|
615
|
+
# tests/deployment_test.yaml
|
|
616
|
+
suite: deployment tests
|
|
617
|
+
templates:
|
|
618
|
+
- templates/deployment.yaml
|
|
619
|
+
tests:
|
|
620
|
+
- it: should create deployment with correct replicas
|
|
621
|
+
set:
|
|
622
|
+
replicaCount: 5
|
|
623
|
+
asserts:
|
|
624
|
+
- isKind:
|
|
625
|
+
of: Deployment
|
|
626
|
+
- equal:
|
|
627
|
+
path: spec.replicas
|
|
628
|
+
value: 5
|
|
629
|
+
|
|
630
|
+
- it: should set resource limits
|
|
631
|
+
set:
|
|
632
|
+
resources:
|
|
633
|
+
limits:
|
|
634
|
+
cpu: 500m
|
|
635
|
+
memory: 256Mi
|
|
636
|
+
asserts:
|
|
637
|
+
- equal:
|
|
638
|
+
path: spec.template.spec.containers[0].resources.limits.cpu
|
|
639
|
+
value: 500m
|
|
640
|
+
|
|
641
|
+
- it: should not create HPA when autoscaling disabled
|
|
642
|
+
set:
|
|
643
|
+
autoscaling:
|
|
644
|
+
enabled: false
|
|
645
|
+
template: templates/hpa.yaml
|
|
646
|
+
asserts:
|
|
647
|
+
- hasDocuments:
|
|
648
|
+
count: 0
|
|
649
|
+
```
|
|
650
|
+
|
|
651
|
+
## Values Schema Validation
|
|
652
|
+
|
|
653
|
+
```json
|
|
654
|
+
{
|
|
655
|
+
"$schema": "https://json-schema.org/draft-07/schema#",
|
|
656
|
+
"type": "object",
|
|
657
|
+
"required": ["image", "service"],
|
|
658
|
+
"properties": {
|
|
659
|
+
"replicaCount": {
|
|
660
|
+
"type": "integer",
|
|
661
|
+
"minimum": 1,
|
|
662
|
+
"maximum": 100,
|
|
663
|
+
"default": 1
|
|
664
|
+
},
|
|
665
|
+
"image": {
|
|
666
|
+
"type": "object",
|
|
667
|
+
"required": ["repository"],
|
|
668
|
+
"properties": {
|
|
669
|
+
"repository": {
|
|
670
|
+
"type": "string",
|
|
671
|
+
"pattern": "^[a-z0-9.-/]+$"
|
|
672
|
+
},
|
|
673
|
+
"tag": {
|
|
674
|
+
"type": "string"
|
|
675
|
+
},
|
|
676
|
+
"pullPolicy": {
|
|
677
|
+
"type": "string",
|
|
678
|
+
"enum": ["Always", "IfNotPresent", "Never"]
|
|
679
|
+
}
|
|
680
|
+
}
|
|
681
|
+
},
|
|
682
|
+
"service": {
|
|
683
|
+
"type": "object",
|
|
684
|
+
"properties": {
|
|
685
|
+
"type": {
|
|
686
|
+
"type": "string",
|
|
687
|
+
"enum": ["ClusterIP", "NodePort", "LoadBalancer"]
|
|
688
|
+
},
|
|
689
|
+
"port": {
|
|
690
|
+
"type": "integer",
|
|
691
|
+
"minimum": 1,
|
|
692
|
+
"maximum": 65535
|
|
693
|
+
}
|
|
694
|
+
}
|
|
695
|
+
},
|
|
696
|
+
"resources": {
|
|
697
|
+
"type": "object",
|
|
698
|
+
"properties": {
|
|
699
|
+
"limits": {
|
|
700
|
+
"$ref": "#/definitions/resourceRequirements"
|
|
701
|
+
},
|
|
702
|
+
"requests": {
|
|
703
|
+
"$ref": "#/definitions/resourceRequirements"
|
|
704
|
+
}
|
|
705
|
+
}
|
|
706
|
+
}
|
|
707
|
+
},
|
|
708
|
+
"definitions": {
|
|
709
|
+
"resourceRequirements": {
|
|
710
|
+
"type": "object",
|
|
711
|
+
"properties": {
|
|
712
|
+
"cpu": {
|
|
713
|
+
"type": "string",
|
|
714
|
+
"pattern": "^[0-9]+m?$"
|
|
715
|
+
},
|
|
716
|
+
"memory": {
|
|
717
|
+
"type": "string",
|
|
718
|
+
"pattern": "^[0-9]+(Mi|Gi)$"
|
|
719
|
+
}
|
|
720
|
+
}
|
|
721
|
+
}
|
|
722
|
+
}
|
|
723
|
+
}
|
|
724
|
+
```
|
|
725
|
+
|
|
726
|
+
## Chart Repository
|
|
727
|
+
|
|
728
|
+
### Create Repository
|
|
729
|
+
|
|
730
|
+
```bash
|
|
731
|
+
# Package chart
|
|
732
|
+
helm package mychart/ --version 1.2.0 --destination ./repo
|
|
733
|
+
|
|
734
|
+
# Generate index
|
|
735
|
+
helm repo index ./repo --url https://charts.example.com
|
|
736
|
+
|
|
737
|
+
# Update index with new chart
|
|
738
|
+
helm repo index ./repo --url https://charts.example.com --merge ./repo/index.yaml
|
|
739
|
+
```
|
|
740
|
+
|
|
741
|
+
### GitHub Pages Repository
|
|
742
|
+
|
|
743
|
+
```yaml
|
|
744
|
+
# .github/workflows/release.yaml
|
|
745
|
+
name: Release Charts
|
|
746
|
+
on:
|
|
747
|
+
push:
|
|
748
|
+
branches: [main]
|
|
749
|
+
paths: ['charts/**']
|
|
750
|
+
jobs:
|
|
751
|
+
release:
|
|
752
|
+
runs-on: ubuntu-latest
|
|
753
|
+
steps:
|
|
754
|
+
- uses: actions/checkout@v4
|
|
755
|
+
with:
|
|
756
|
+
fetch-depth: 0
|
|
757
|
+
- name: Configure Git
|
|
758
|
+
run: |
|
|
759
|
+
git config user.name "$GITHUB_ACTOR"
|
|
760
|
+
git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
|
|
761
|
+
- name: Install Helm
|
|
762
|
+
uses: azure/setup-helm@v3
|
|
763
|
+
- name: Run chart-releaser
|
|
764
|
+
uses: helm/chart-releaser-action@v1.6.0
|
|
765
|
+
env:
|
|
766
|
+
CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
|
|
767
|
+
```
|
|
768
|
+
|
|
769
|
+
### OCI Registry
|
|
770
|
+
|
|
771
|
+
```bash
|
|
772
|
+
# Login to registry
|
|
773
|
+
helm registry login myregistry.io -u user -p token
|
|
774
|
+
|
|
775
|
+
# Push chart to OCI registry
|
|
776
|
+
helm push mychart-1.2.0.tgz oci://myregistry.io/charts
|
|
777
|
+
|
|
778
|
+
# Pull from OCI
|
|
779
|
+
helm pull oci://myregistry.io/charts/mychart --version 1.2.0
|
|
780
|
+
|
|
781
|
+
# Install from OCI
|
|
782
|
+
helm install myapp oci://myregistry.io/charts/mychart --version 1.2.0
|
|
783
|
+
```
|
|
784
|
+
|
|
785
|
+
## Helm Plugins
|
|
786
|
+
|
|
787
|
+
```bash
|
|
788
|
+
# helm-diff - preview upgrades
|
|
789
|
+
helm plugin install https://github.com/databus23/helm-diff
|
|
790
|
+
helm diff upgrade myapp ./mychart -f values-prod.yaml
|
|
791
|
+
|
|
792
|
+
# helm-secrets - manage encrypted secrets
|
|
793
|
+
helm plugin install https://github.com/jkroepke/helm-secrets
|
|
794
|
+
helm secrets encrypt secrets.yaml
|
|
795
|
+
helm secrets decrypt secrets.yaml.enc
|
|
796
|
+
helm secrets install myapp ./mychart -f secrets.yaml.enc
|
|
797
|
+
|
|
798
|
+
# helm-git - use git repos as chart sources
|
|
799
|
+
helm plugin install https://github.com/aslafy-z/helm-git
|
|
800
|
+
helm repo add mycharts git+https://github.com/myorg/charts@charts?ref=main
|
|
801
|
+
|
|
802
|
+
# helm-s3 - S3 as chart repository
|
|
803
|
+
helm plugin install https://github.com/hypnoglow/helm-s3
|
|
804
|
+
helm s3 init s3://my-bucket/charts
|
|
805
|
+
helm s3 push mychart-1.2.0.tgz my-s3-repo
|
|
806
|
+
```
|
|
807
|
+
|
|
808
|
+
## Complex Upgrade/Rollback
|
|
809
|
+
|
|
810
|
+
```bash
|
|
811
|
+
# Upgrade with atomic (rollback on failure)
|
|
812
|
+
helm upgrade myapp ./mychart \
|
|
813
|
+
--namespace production \
|
|
814
|
+
--atomic \
|
|
815
|
+
--timeout 10m \
|
|
816
|
+
--wait
|
|
817
|
+
|
|
818
|
+
# Upgrade with cleanup on failure
|
|
819
|
+
helm upgrade myapp ./mychart \
|
|
820
|
+
--namespace production \
|
|
821
|
+
--cleanup-on-fail
|
|
822
|
+
|
|
823
|
+
# Force resource update (recreate)
|
|
824
|
+
helm upgrade myapp ./mychart \
|
|
825
|
+
--namespace production \
|
|
826
|
+
--force
|
|
827
|
+
|
|
828
|
+
# Dry run before upgrade
|
|
829
|
+
helm upgrade myapp ./mychart \
|
|
830
|
+
--namespace production \
|
|
831
|
+
--dry-run \
|
|
832
|
+
--debug
|
|
833
|
+
|
|
834
|
+
# Compare current vs new
|
|
835
|
+
helm get manifest myapp -n production > current.yaml
|
|
836
|
+
helm template myapp ./mychart -f values-prod.yaml > new.yaml
|
|
837
|
+
diff current.yaml new.yaml
|
|
838
|
+
|
|
839
|
+
# Rollback to specific revision
|
|
840
|
+
helm rollback myapp 3 --namespace production
|
|
841
|
+
|
|
842
|
+
# Rollback with wait
|
|
843
|
+
helm rollback myapp 3 --namespace production --wait --timeout 5m
|
|
844
|
+
|
|
845
|
+
# View revision history
|
|
846
|
+
helm history myapp --namespace production
|
|
847
|
+
```
|
|
848
|
+
|
|
849
|
+
## Library Charts
|
|
850
|
+
|
|
851
|
+
```yaml
|
|
852
|
+
# Chart.yaml for library chart
|
|
853
|
+
apiVersion: v2
|
|
854
|
+
name: mylib
|
|
855
|
+
type: library
|
|
856
|
+
version: 1.0.0
|
|
857
|
+
```
|
|
858
|
+
|
|
859
|
+
```yaml
|
|
860
|
+
# templates/_deployment.tpl in library
|
|
861
|
+
{{- define "mylib.deployment" -}}
|
|
862
|
+
apiVersion: apps/v1
|
|
863
|
+
kind: Deployment
|
|
864
|
+
metadata:
|
|
865
|
+
name: {{ include "mylib.fullname" . }}
|
|
866
|
+
labels:
|
|
867
|
+
{{- include "mylib.labels" . | nindent 4 }}
|
|
868
|
+
spec:
|
|
869
|
+
replicas: {{ .Values.replicaCount }}
|
|
870
|
+
selector:
|
|
871
|
+
matchLabels:
|
|
872
|
+
{{- include "mylib.selectorLabels" . | nindent 6 }}
|
|
873
|
+
template:
|
|
874
|
+
metadata:
|
|
875
|
+
labels:
|
|
876
|
+
{{- include "mylib.selectorLabels" . | nindent 8 }}
|
|
877
|
+
spec:
|
|
878
|
+
containers:
|
|
879
|
+
- name: {{ .Chart.Name }}
|
|
880
|
+
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
|
|
881
|
+
{{- end }}
|
|
882
|
+
```
|
|
883
|
+
|
|
884
|
+
```yaml
|
|
885
|
+
# Using library chart
|
|
886
|
+
# Chart.yaml
|
|
887
|
+
dependencies:
|
|
888
|
+
- name: mylib
|
|
889
|
+
version: "1.x.x"
|
|
890
|
+
repository: https://charts.example.com
|
|
891
|
+
|
|
892
|
+
# templates/deployment.yaml
|
|
893
|
+
{{- include "mylib.deployment" . }}
|
|
894
|
+
```
|
|
895
|
+
|
|
896
|
+
## Best Practices
|
|
897
|
+
|
|
898
|
+
1. **Versioning**: Follow semantic versioning for charts
|
|
899
|
+
2. **Values**: Provide sensible defaults, allow overrides
|
|
900
|
+
3. **Documentation**: Document all values in README
|
|
901
|
+
4. **Testing**: Include tests in templates/tests/
|
|
902
|
+
5. **Helpers**: Use _helpers.tpl for reusable templates
|
|
903
|
+
6. **Labels**: Include standard Kubernetes labels
|
|
904
|
+
7. **Annotations**: Use annotations for metadata and tools
|
|
905
|
+
8. **Hooks**: Use hooks for migrations, cleanup
|
|
906
|
+
9. **Dependencies**: Pin dependency versions
|
|
907
|
+
10. **Schema**: Validate values with values.schema.json
|
|
908
|
+
11. **Use ct** for comprehensive chart testing in CI
|
|
909
|
+
12. **Use helm-diff** before production upgrades
|
|
910
|
+
13. **Encrypt secrets** with helm-secrets or sealed-secrets
|
|
911
|
+
14. **Use library charts** for shared patterns
|
|
912
|
+
15. **Push to OCI registries** for better artifact management
|