- Kubernetes: The container orchestration platform running on Talos.
- ArgoCD: GitOps control plane for Kubernetes.
- Renovate: Automated dependency updates.
- GitHub Actions: CI/CD workflows for automation.
- Cloudflare: DNS Services.
- Google SSO: Protect selected endpoints behind Google OAuth2.
- ArgoCD: GitOps controller for keeping Kubernetes clusters in sync with Git sources.
- cert-manager: Creates SSL certificates for services in the cluster.
- spegel: Stateless cluster local OCI registry mirror.
- cloudflared: Enables Cloudflare secure access to routes.
- envoy-gateway: Kubernetes Gateway API implementation for advanced traffic management, security, and routing.
- sops: Managed secrets for Kubernetes and Terraform which are committed to Git.
- external-secrets: Integrates external secret management systems (particularly 1Password) with Kubernetes Secrets.
- cilium: eBPF-based networking for my workloads.
- external-dns: Automatically syncs ingress DNS records to a DNS provider.
- reloader: Automatic reloading of Kubernetes resources when ConfigMaps or Secrets change.
- local-path-provisioner: Dynamic node-local persistent volume provisioning.
- echo: Simple HTTP/HTTPS echo server for testing.
- Grafana: Cluster dashboards and Explore UI.
- Prometheus: Scrapes and stores Kubernetes metrics with 30-day retention.
- Alertmanager: Routes firing and resolved alerts to Slack.
- Loki: Aggregates and stores Kubernetes logs for 7 days.
- Alloy: DaemonSet log shipper that labels pod logs and forwards them to Loki.
- oauth-pages: Static access-denied and logout confirmation pages for Envoy Gateway OIDC, including route rewrites from friendly paths to static HTML files.
| Device | Num | Processor | Cores | OS Disk | Data Disk | Memory | OS | Function |
|---|---|---|---|---|---|---|---|---|
| HP EliteDesk 800 G6 Mini | 1 | i5-10500T | 6 | 256GB NVMe | 1TB NVMe | 32GB | Talos | Kubernetes |
**more nodes to be added soon
- onedr0p: for the template to create this repo and the home-ops project with more apps and components
- home-operations: for their container images, helm charts, and discord community