Compare commits
37 Commits
86ea774167
...
renovate/u
| Author | SHA1 | Date | |
|---|---|---|---|
94f5e3fba5
|
|||
| 20e4f7363f | |||
| 46f296ce5d | |||
| b2ed2b49f8 | |||
|
f0ec0a0373
|
|||
| 4c82ad1f02 | |||
| 47be634c35 | |||
| c692dcb38c | |||
|
38759fc5a6
|
|||
| 0746224eef | |||
| 68b8885988 | |||
| 1f9cd3f708 | |||
| 3fcfe42510 | |||
| 8508972ac1 | |||
|
4dd3cd28bb
|
|||
| 3b3fa73210 | |||
| dbf6c2579c | |||
|
32afb63753
|
|||
| 50e3c1ce67 | |||
| 9bd75ac097 | |||
| be219aaeab | |||
| 52e990b289 | |||
| 67cd6faff5 | |||
| f6b515c785 | |||
| 696c510073 | |||
| ecf93e7193 | |||
|
02286480b3
|
|||
| e840636aef | |||
|
a288c23f92
|
|||
| 0202c6b08d | |||
| bce7bcfb2c | |||
| aaf87e30bc | |||
|
02896dbdb3
|
|||
| 6a3061cd43 | |||
|
296e3be9a9
|
|||
| 08297ed280 | |||
|
932489578e
|
@@ -13,7 +13,7 @@ on:
|
||||
jobs:
|
||||
renovate:
|
||||
runs-on: ubuntu-latest
|
||||
container: ghcr.io/renovatebot/renovate:43.104.2@sha256:450cc98e3f218e08850ca564d5f99f6ef6e9b4c7a88b4af1dde4487d335848b0
|
||||
container: ghcr.io/renovatebot/renovate:43.104.3@sha256:8248aad190150ce3f1016f9e93b45185679f075c428bca093e724a59f1fd426e
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
|
||||
|
||||
@@ -1,12 +0,0 @@
|
||||
dependencies:
|
||||
- name: argo-workflows
|
||||
repository: https://argoproj.github.io/argo-helm
|
||||
version: 1.0.7
|
||||
- name: argo-events
|
||||
repository: https://argoproj.github.io/argo-helm
|
||||
version: 2.4.21
|
||||
- name: postgres-cluster
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
version: 7.11.1
|
||||
digest: sha256:bcf7ba94885125ce6dac62ee376299f9868bf6ad391597deab0b08ae697a0c5b
|
||||
generated: "2026-04-03T23:47:41.400540573Z"
|
||||
@@ -1,32 +0,0 @@
|
||||
apiVersion: v2
|
||||
name: argo-workflows
|
||||
version: 1.0.0
|
||||
description: Argo Workflows
|
||||
keywords:
|
||||
- argo-workflows
|
||||
- argo-events
|
||||
- workflows
|
||||
- events
|
||||
home: https://docs.alexlebens.dev/applications/argo-workflows/
|
||||
sources:
|
||||
- https://github.com/argoproj/argo-workflows
|
||||
- https://github.com/argoproj/argo-events
|
||||
- https://github.com/argoproj/argo-helm/tree/main/charts/argo-workflows
|
||||
- https://github.com/argoproj/argo-helm/tree/main/charts/argo-events
|
||||
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/postgres-cluster
|
||||
maintainers:
|
||||
- name: alexlebens
|
||||
dependencies:
|
||||
- name: argo-workflows
|
||||
version: 1.0.7
|
||||
repository: https://argoproj.github.io/argo-helm
|
||||
- name: argo-events
|
||||
version: 2.4.21
|
||||
repository: https://argoproj.github.io/argo-helm
|
||||
- name: postgres-cluster
|
||||
alias: postgres-18-cluster
|
||||
version: 7.11.1
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/argo-cd.png
|
||||
# renovate: datasource=github-releases depName=argoproj/argo-workflows
|
||||
appVersion: v4.0.4
|
||||
@@ -1,22 +0,0 @@
|
||||
apiVersion: external-secrets.io/v1
|
||||
kind: ExternalSecret
|
||||
metadata:
|
||||
name: argo-workflows-oidc-secret
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: argo-workflows-oidc-secret
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
spec:
|
||||
secretStoreRef:
|
||||
kind: ClusterSecretStore
|
||||
name: vault
|
||||
data:
|
||||
- secretKey: secret
|
||||
remoteRef:
|
||||
key: /authentik/oidc/argo-workflows
|
||||
property: secret
|
||||
- secretKey: client
|
||||
remoteRef:
|
||||
key: /authentik/oidc/argo-workflows
|
||||
property: client
|
||||
@@ -1,109 +0,0 @@
|
||||
argo-workflows:
|
||||
crds:
|
||||
install: true
|
||||
keep: true
|
||||
full: true
|
||||
upgradeJob:
|
||||
image:
|
||||
repository: registry.k8s.io/kubectl
|
||||
tag: v1.35.3
|
||||
controller:
|
||||
metricsConfig:
|
||||
enabled: true
|
||||
persistence:
|
||||
postgresql:
|
||||
host: argo-workflows-postgresql-18-cluster-rw
|
||||
port: 5432
|
||||
database: app
|
||||
tableName: app
|
||||
userNameSecret:
|
||||
name: argo-workflows-postgresql-18-cluster-app
|
||||
key: username
|
||||
passwordSecret:
|
||||
name: argo-workflows-postgresql-18-cluster-app
|
||||
key: password
|
||||
ssl: false
|
||||
sslMode: disable
|
||||
workflowWorkers: 2
|
||||
workflowTTLWorkers: 2
|
||||
podCleanupWorkers: 2
|
||||
cronWorkflowWorkers: 2
|
||||
resources:
|
||||
requests:
|
||||
cpu: 1m
|
||||
memory: 20Mi
|
||||
serviceMonitor:
|
||||
enabled: true
|
||||
workflowNamespaces:
|
||||
- argo-workflows
|
||||
server:
|
||||
authModes:
|
||||
- sso
|
||||
httproute:
|
||||
enabled: true
|
||||
parentRefs:
|
||||
- group: gateway.networking.k8s.io
|
||||
kind: Gateway
|
||||
name: traefik-gateway
|
||||
namespace: traefik
|
||||
hostnames:
|
||||
- argo-workflows.alexlebens.net
|
||||
rules:
|
||||
- matches:
|
||||
- path:
|
||||
type: PathPrefix
|
||||
value: /
|
||||
sso:
|
||||
enabled: true
|
||||
issuer: https://authentik.alexlebens.net/application/o/argo-workflows/
|
||||
clientId:
|
||||
name: argo-workflows-oidc-secret
|
||||
key: client
|
||||
clientSecret:
|
||||
name: argo-workflows-oidc-secret
|
||||
key: secret
|
||||
redirectUrl: https://argo-workflows.alexlebens.net/oauth2/callback
|
||||
rbac:
|
||||
enabled: false
|
||||
scopes:
|
||||
- openid
|
||||
- email
|
||||
- profile
|
||||
argo-events:
|
||||
crds:
|
||||
install: true
|
||||
keep: true
|
||||
controller:
|
||||
resources:
|
||||
requests:
|
||||
cpu: 1m
|
||||
memory: 32Mi
|
||||
metrics:
|
||||
enabled: true
|
||||
serviceMonitor:
|
||||
enabled: true
|
||||
webhook:
|
||||
enabled: true
|
||||
resources:
|
||||
requests:
|
||||
cpu: 1m
|
||||
memory: 20Mi
|
||||
postgres-18-cluster:
|
||||
mode: recovery
|
||||
recovery:
|
||||
method: objectStore
|
||||
objectStore:
|
||||
index: 1
|
||||
backup:
|
||||
objectStore:
|
||||
- name: garage-local
|
||||
index: 1
|
||||
destinationBucket: postgres-backups
|
||||
externalSecretCredentialPath: /garage/home-infra/postgres-backups
|
||||
isWALArchiver: true
|
||||
scheduledBackups:
|
||||
- name: live-backup
|
||||
suspend: false
|
||||
immediate: true
|
||||
schedule: "0 0 14 * * *"
|
||||
backupName: garage-local
|
||||
@@ -102,14 +102,12 @@ blocky:
|
||||
;; Application Names
|
||||
actual IN CNAME traefik-cl01tl
|
||||
alertmanager IN CNAME traefik-cl01tl
|
||||
argo-workflows IN CNAME traefik-cl01tl
|
||||
argocd IN CNAME traefik-cl01tl
|
||||
audiobookshelf IN CNAME traefik-cl01tl
|
||||
authentik IN CNAME traefik-cl01tl
|
||||
backrest IN CNAME traefik-cl01tl
|
||||
bazarr IN CNAME traefik-cl01tl
|
||||
ceph IN CNAME traefik-cl01tl
|
||||
code-server IN CNAME traefik-cl01tl
|
||||
dawarich IN CNAME traefik-cl01tl
|
||||
directus IN CNAME traefik-cl01tl
|
||||
excalidraw IN CNAME traefik-cl01tl
|
||||
@@ -137,7 +135,6 @@ blocky:
|
||||
lidarr IN CNAME traefik-cl01tl
|
||||
mail IN CNAME traefik-cl01tl
|
||||
medialyze IN CNAME traefik-cl01tl
|
||||
movie-roulette IN CNAME traefik-cl01tl
|
||||
music-grabber IN CNAME traefik-cl01tl
|
||||
navidrome IN CNAME traefik-cl01tl
|
||||
ntfy IN CNAME traefik-cl01tl
|
||||
|
||||
@@ -1,6 +1,6 @@
|
||||
dependencies:
|
||||
- name: cilium
|
||||
repository: https://helm.cilium.io/
|
||||
version: 1.18.6
|
||||
digest: sha256:8ea328ac238524b5b423e6289f5e25d05ef64e6aa19cfd5de238f1d5dd533e9b
|
||||
generated: "2026-02-05T12:00:20.15778-06:00"
|
||||
version: 1.19.2
|
||||
digest: sha256:11f8eef4733b70c2b9a91ce39fe3c1ea1ad3fa3c46750efb015e03ff6ea3655b
|
||||
generated: "2026-04-04T22:36:55.586907876Z"
|
||||
|
||||
@@ -14,8 +14,8 @@ maintainers:
|
||||
- name: alexlebens
|
||||
dependencies:
|
||||
- name: cilium
|
||||
version: 1.18.6
|
||||
version: 1.19.2
|
||||
repository: https://helm.cilium.io/
|
||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/cilium.png
|
||||
# renovate: datasource=github-releases depName=cilium/cilium
|
||||
appVersion: 1.18.6
|
||||
appVersion: 1.19.2
|
||||
|
||||
@@ -1,12 +0,0 @@
|
||||
dependencies:
|
||||
- name: app-template
|
||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||
version: 4.6.2
|
||||
- name: cloudflared
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
version: 2.4.0
|
||||
- name: volsync-target
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
version: 0.8.0
|
||||
digest: sha256:dee0f52096efc543f4db3a5dc2732fd37ae9b7950b264e399a6e74c2f3e7cee6
|
||||
generated: "2026-03-09T22:04:00.58415637Z"
|
||||
@@ -1,32 +0,0 @@
|
||||
apiVersion: v2
|
||||
name: code-server
|
||||
version: 1.0.0
|
||||
description: Code Server
|
||||
keywords:
|
||||
- code-server
|
||||
- code
|
||||
home: https://docs.alexlebens.dev/applications/code-server/
|
||||
sources:
|
||||
- https://github.com/coder/code-server
|
||||
- https://github.com/linuxserver/docker-code-server
|
||||
- https://github.com/linuxserver/docker-code-server/pkgs/container/code-server
|
||||
- https://github.com/bjw-s-labs/helm-charts/tree/main/charts/other/app-template
|
||||
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/cloudflared
|
||||
- https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/volsync-target
|
||||
maintainers:
|
||||
- name: alexlebens
|
||||
dependencies:
|
||||
- name: app-template
|
||||
alias: code-server
|
||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||
version: 4.6.2
|
||||
- name: cloudflared
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
version: 2.4.0
|
||||
- name: volsync-target
|
||||
alias: volsync-target-config
|
||||
version: 0.8.0
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/visual-studio-code.png
|
||||
# renovate: datasource=github-releases depName=linuxserver/docker-code-server
|
||||
appVersion: 4.113.1
|
||||
@@ -1,22 +0,0 @@
|
||||
apiVersion: external-secrets.io/v1
|
||||
kind: ExternalSecret
|
||||
metadata:
|
||||
name: codeserver-password-secret
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: codeserver-password-secret
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
spec:
|
||||
secretStoreRef:
|
||||
kind: ClusterSecretStore
|
||||
name: vault
|
||||
data:
|
||||
- secretKey: PASSWORD
|
||||
remoteRef:
|
||||
key: /cl01tl/code-server/auth
|
||||
property: PASSWORD
|
||||
- secretKey: SUDO_PASSWORD
|
||||
remoteRef:
|
||||
key: /cl01tl/code-server/auth
|
||||
property: SUDO_PASSWORD
|
||||
@@ -1,83 +0,0 @@
|
||||
code-server:
|
||||
controllers:
|
||||
main:
|
||||
type: deployment
|
||||
replicas: 1
|
||||
strategy: Recreate
|
||||
pod:
|
||||
securityContext:
|
||||
fsGroup: 1000
|
||||
fsGroupChangePolicy: OnRootMismatch
|
||||
containers:
|
||||
main:
|
||||
image:
|
||||
repository: ghcr.io/linuxserver/code-server
|
||||
tag: 4.114.0-ls328@sha256:928e63f0b775d76cda606f181bae9d81c6d3fbd2d1daeef9438e3ba5579f391d
|
||||
env:
|
||||
- name: TZ
|
||||
value: America/Chicago
|
||||
- name: PUID
|
||||
value: 1000
|
||||
- name: PGID
|
||||
value: 1000
|
||||
- name: DEFAULT_WORKSPACE
|
||||
value: /config
|
||||
envFrom:
|
||||
- secretRef:
|
||||
name: codeserver-password-secret
|
||||
resources:
|
||||
requests:
|
||||
cpu: 1m
|
||||
memory: 40Mi
|
||||
service:
|
||||
main:
|
||||
controller: main
|
||||
ports:
|
||||
http:
|
||||
port: 8443
|
||||
targetPort: 8443
|
||||
route:
|
||||
main:
|
||||
kind: HTTPRoute
|
||||
parentRefs:
|
||||
- group: gateway.networking.k8s.io
|
||||
kind: Gateway
|
||||
name: traefik-gateway
|
||||
namespace: traefik
|
||||
hostnames:
|
||||
- code-server.alexlebens.net
|
||||
rules:
|
||||
- backendRefs:
|
||||
- name: code-server
|
||||
port: 8443
|
||||
matches:
|
||||
- path:
|
||||
type: PathPrefix
|
||||
value: /
|
||||
persistence:
|
||||
config:
|
||||
forceRename: code-server-config
|
||||
storageClass: ceph-block
|
||||
accessMode: ReadWriteOnce
|
||||
size: 2Gi
|
||||
advancedMounts:
|
||||
main:
|
||||
main:
|
||||
- path: /config
|
||||
readOnly: false
|
||||
volsync-target-config:
|
||||
pvcTarget: code-server-config
|
||||
moverSecurityContext:
|
||||
runAsUser: 1000
|
||||
runAsGroup: 1000
|
||||
fsGroup: 1000
|
||||
fsGroupChangePolicy: OnRootMismatch
|
||||
local:
|
||||
enabled: true
|
||||
schedule: 16 8 * * *
|
||||
remote:
|
||||
enabled: true
|
||||
schedule: 16 9 * * *
|
||||
external:
|
||||
enabled: true
|
||||
schedule: 16 10 * * *
|
||||
@@ -29,4 +29,4 @@ dependencies:
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/dawarich.png
|
||||
# renovate: datasource=github-releases depName=Freika/dawarich
|
||||
appVersion: 1.6.0
|
||||
appVersion: 1.6.1
|
||||
|
||||
@@ -8,6 +8,7 @@ keywords:
|
||||
home: https://docs.alexlebens.dev/applications/descheduler/
|
||||
sources:
|
||||
- https://github.com/kubernetes-sigs/descheduler
|
||||
- https://explore.ggcr.dev/?repo=registry.k8s.io%2Fdescheduler%2Fdescheduler
|
||||
- https://github.com/kubernetes-sigs/descheduler/tree/master/charts/descheduler
|
||||
maintainers:
|
||||
- name: alexlebens
|
||||
|
||||
@@ -1,4 +1,7 @@
|
||||
descheduler:
|
||||
image:
|
||||
repository: registry.k8s.io/descheduler/descheduler
|
||||
tag: v0.35.1@sha256:871d3b804390b0b8c7cb09d4e9b7856cf30e31f9e9e3d29562b0301a10453bb1
|
||||
kind: Deployment
|
||||
resources:
|
||||
limits:
|
||||
|
||||
@@ -8,6 +8,7 @@ keywords:
|
||||
home: https://docs.alexlebens.dev/applications/eraser/
|
||||
sources:
|
||||
- https://github.com/kubernetes-sigs/external-dns
|
||||
- https://explore.ggcr.dev/?repo=registry.k8s.io%2Fexternal-dns%2Fexternal-dns
|
||||
- https://github.com/kashalls/external-dns-unifi-webhook
|
||||
- https://github.com/kubernetes-sigs/external-dns/tree/master/charts/external-dns
|
||||
maintainers:
|
||||
|
||||
@@ -1,4 +1,7 @@
|
||||
external-dns-unifi:
|
||||
image:
|
||||
repository: registry.k8s.io/external-dns/external-dns
|
||||
tag: v0.20.0@sha256:ddc7f4212ed09a21024deb1f470a05240837712e74e4b9f6d1f2632ff10672e7
|
||||
fullnameOverride: external-dns-unifi
|
||||
resources:
|
||||
requests:
|
||||
|
||||
@@ -113,9 +113,6 @@ gatus:
|
||||
- name: yamtrack
|
||||
url: https://yamtrack.alexlebens.net
|
||||
<<: *defaults
|
||||
- name: movie-roulette
|
||||
url: https://movie-roulette.alexlebens.net
|
||||
<<: *defaults
|
||||
- name: jellyfin
|
||||
url: https://jellyfin.alexlebens.net
|
||||
<<: *defaults
|
||||
@@ -185,9 +182,6 @@ gatus:
|
||||
- name: komodo
|
||||
url: https://komodo.alexlebens.net
|
||||
<<: *defaults
|
||||
- name: argo-workflows
|
||||
url: https://argo-workflows.alexlebens.net
|
||||
<<: *defaults
|
||||
- name: omni-tools
|
||||
url: https://omni-tools.alexlebens.net
|
||||
<<: *defaults
|
||||
@@ -380,10 +374,6 @@ gatus:
|
||||
url: https://gitea.alexlebens.dev
|
||||
<<: *defaults
|
||||
group: external
|
||||
- name: codeserver
|
||||
url: https://codeserver.alexlebens.dev
|
||||
<<: *defaults
|
||||
group: external
|
||||
- name: authentik
|
||||
url: https://auth.alexlebens.dev
|
||||
<<: *defaults
|
||||
|
||||
@@ -145,12 +145,6 @@ homepage:
|
||||
href: https://yamtrack.alexlebens.net
|
||||
siteMonitor: http://yamtrack.yamtrack:80
|
||||
statusStyle: dot
|
||||
- Movie Roulette:
|
||||
icon: https://raw.githubusercontent.com/sahara101/Movie-Roulette/refs/heads/main/static/icons/icon.png
|
||||
description: Movie Roulette
|
||||
href: https://movie-roulette.alexlebens.net
|
||||
siteMonitor: http://movie-roulette.movie-roulette:80
|
||||
statusStyle: dot
|
||||
- Movies and TV:
|
||||
icon: sh-jellyfin.webp
|
||||
description: Jellyfin
|
||||
@@ -350,12 +344,6 @@ homepage:
|
||||
href: https://gitea-ps10rp.boreal-beaufort.ts.net
|
||||
siteMonitor: https://gitea-ps10rp.boreal-beaufort.ts.net
|
||||
statusStyle: dot
|
||||
- IDE (External):
|
||||
icon: sh-visual-studio-code.webp
|
||||
description: VS Code
|
||||
href: https://codeserver.alexlebens.dev
|
||||
siteMonitor: https://codeserver.alexlebens.dev
|
||||
statusStyle: dot
|
||||
- IDE (Home Assistant):
|
||||
icon: sh-visual-studio-code.webp
|
||||
description: Edit config for Home Assistant
|
||||
@@ -393,12 +381,6 @@ homepage:
|
||||
secret: {{ "{{HOMEPAGE_VAR_KOMODO_API_SECRET}}" }}
|
||||
showStacks: true
|
||||
fields: ["running", "down", "unhealthy", "unknown"]
|
||||
- Deployment Workflows:
|
||||
icon: sh-argo-cd.webp
|
||||
description: Argo Workflows
|
||||
href: https://argo-workflows.alexlebens.net
|
||||
siteMonitor: http://argo-workflows-server.argo-workflows:2746
|
||||
statusStyle: dot
|
||||
- Uptime:
|
||||
icon: sh-gatus.webp
|
||||
description: Gatus
|
||||
|
||||
@@ -25,4 +25,4 @@ dependencies:
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/houndarr.png
|
||||
# renovate: datasource=github-releases depName=av1155/houndarr
|
||||
appVersion: v1.6.6
|
||||
appVersion: v1.7.0
|
||||
|
||||
@@ -8,7 +8,7 @@ houndarr:
|
||||
main:
|
||||
image:
|
||||
repository: ghcr.io/av1155/houndarr
|
||||
tag: v1.6.6@sha256:6ecf6c92759a82068a3fbef3eae9065c88e1d8706b538832d07dc4854bc94ec0
|
||||
tag: v1.7.0@sha256:8ae2a8b86497cbc54d11591c12220f3be3319039c2bdd0c8b041b2b7c2fd7943
|
||||
env:
|
||||
- name: TZ
|
||||
value: America/Chicago
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
dependencies:
|
||||
- name: kube-prometheus-stack
|
||||
repository: oci://ghcr.io/prometheus-community/charts
|
||||
version: 82.17.1
|
||||
version: 82.18.0
|
||||
- name: app-template
|
||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||
version: 4.6.2
|
||||
- name: valkey
|
||||
repository: oci://harbor.alexlebens.net/helm-charts
|
||||
version: 0.5.0
|
||||
digest: sha256:8c2a56a7d6bf858a59e6a46a7ff2d3cbfdf022adb985254ec869e348d3ddb68b
|
||||
generated: "2026-04-04T12:02:57.648448879Z"
|
||||
digest: sha256:bd480d8e4de9a528a73ec1bbadff5afb4d1f37ba6a85d98ec82a607283148f3d
|
||||
generated: "2026-04-04T21:48:51.739477322Z"
|
||||
|
||||
@@ -18,7 +18,7 @@ maintainers:
|
||||
- name: alexlebens
|
||||
dependencies:
|
||||
- name: kube-prometheus-stack
|
||||
version: 82.17.1
|
||||
version: 82.18.0
|
||||
repository: oci://ghcr.io/prometheus-community/charts
|
||||
- name: app-template
|
||||
alias: ntfy-alertmanager
|
||||
|
||||
@@ -12,7 +12,7 @@ kubernetes-cloudflare-ddns:
|
||||
main:
|
||||
image:
|
||||
repository: kubitodev/kubernetes-cloudflare-ddns
|
||||
tag: 2.0.0sha256:80979b046e32ecccedfa6c00804676d070ef87c7f77a65e4afa4e91ffdeb7309
|
||||
tag: 2.0.0@sha256:80979b046e32ecccedfa6c00804676d070ef87c7f77a65e4afa4e91ffdeb7309
|
||||
envFrom:
|
||||
- secretRef:
|
||||
name: kubernetes-cloudflare-ddns-secret
|
||||
|
||||
@@ -242,10 +242,6 @@ mautrix-discord:
|
||||
# image:
|
||||
# repository: busybox
|
||||
# tag: 1.37.0
|
||||
# resources:
|
||||
# requests:
|
||||
# cpu: 10m
|
||||
# memory: 128Mi
|
||||
# command:
|
||||
# - /bin/sh
|
||||
# - -ec
|
||||
@@ -322,10 +318,6 @@ mautrix-whatsapp:
|
||||
# image:
|
||||
# repository: busybox
|
||||
# tag: 1.37.0
|
||||
# resources:
|
||||
# requests:
|
||||
# cpu: 10m
|
||||
# memory: 128Mi
|
||||
# command:
|
||||
# - /bin/sh
|
||||
# - -ec
|
||||
@@ -340,7 +332,7 @@ mautrix-whatsapp:
|
||||
main:
|
||||
image:
|
||||
repository: dock.mau.dev/mautrix/whatsapp
|
||||
tag: v0.2602.0@sha256:07fca07f8746c09e6d5f486d002e638da014d0a134e053e2ed7af9875053104d
|
||||
tag: v0.2603.0@sha256:b49009312361d9ea0d7090716fd09f2323f477b32bd119648c6ca2d558a3e236
|
||||
resources:
|
||||
requests:
|
||||
cpu: 1m
|
||||
|
||||
@@ -5,7 +5,7 @@ description: MediaLyze
|
||||
keywords:
|
||||
- medialyze
|
||||
- jellyfin
|
||||
home: https://wiki.alexlebens.dev/
|
||||
home: https://docs.alexlebens.dev/applications/medialyze/
|
||||
sources:
|
||||
- https://github.com/frederikemmer/MediaLyze
|
||||
- https://github.com/frederikemmer/MediaLyze/pkgs/container/medialyze
|
||||
|
||||
@@ -4,13 +4,15 @@ medialyze:
|
||||
type: deployment
|
||||
replicas: 1
|
||||
strategy: Recreate
|
||||
revisionHistoryLimit: 3
|
||||
pod:
|
||||
securityContext:
|
||||
fsGroup: 1000
|
||||
fsGroupChangePolicy: OnRootMismatch
|
||||
containers:
|
||||
main:
|
||||
image:
|
||||
repository: ghcr.io/frederikemmer/medialyze
|
||||
tag: 0.4.1
|
||||
pullPolicy: IfNotPresent
|
||||
tag: 0.4.1@sha256:d4f2e04d3759f308bea605c9b7242ab6da98813adc0b276dc3cbe9c283071eb8
|
||||
env:
|
||||
- name: HOST_PORT
|
||||
value: 8080
|
||||
@@ -22,8 +24,8 @@ medialyze:
|
||||
value: /media
|
||||
resources:
|
||||
requests:
|
||||
cpu: 10m
|
||||
memory: 128Mi
|
||||
cpu: 5m
|
||||
memory: 400Mi
|
||||
service:
|
||||
main:
|
||||
controller: main
|
||||
@@ -31,7 +33,6 @@ medialyze:
|
||||
http:
|
||||
port: 80
|
||||
targetPort: 8080
|
||||
protocol: HTTP
|
||||
route:
|
||||
main:
|
||||
kind: HTTPRoute
|
||||
@@ -44,11 +45,8 @@ medialyze:
|
||||
- medialyze.alexlebens.net
|
||||
rules:
|
||||
- backendRefs:
|
||||
- group: ''
|
||||
kind: Service
|
||||
name: medialyze
|
||||
- name: medialyze
|
||||
port: 80
|
||||
weight: 100
|
||||
matches:
|
||||
- path:
|
||||
type: PathPrefix
|
||||
@@ -59,7 +57,6 @@ medialyze:
|
||||
storageClass: ceph-block
|
||||
accessMode: ReadWriteOnce
|
||||
size: 1Gi
|
||||
retain: true
|
||||
advancedMounts:
|
||||
main:
|
||||
main:
|
||||
|
||||
@@ -5,10 +5,10 @@ description: Metrics Server
|
||||
keywords:
|
||||
- metrics-server
|
||||
- metrics
|
||||
- kubernetes
|
||||
home: https://wiki.alexlebens.dev/s/feb71856-e3d9-4655-9808-6c4bfb330872
|
||||
home: https://docs.alexlebens.dev/applications/metrics-server/
|
||||
sources:
|
||||
- https://github.com/kubernetes-sigs/metrics-server
|
||||
- https://explore.ggcr.dev/?repo=registry.k8s.io%2Fmetrics-server%2Fmetrics-server
|
||||
- https://github.com/kubernetes-sigs/metrics-server/tree/master/charts/metrics-server
|
||||
maintainers:
|
||||
- name: alexlebens
|
||||
|
||||
@@ -1,12 +1,19 @@
|
||||
metrics-server:
|
||||
replicas: 3
|
||||
metrics:
|
||||
enabled: true
|
||||
serviceMonitor:
|
||||
enabled: true
|
||||
image:
|
||||
repository: registry.k8s.io/metrics-server/metrics-server
|
||||
tag: v0.8.0@sha256:89258156d0e9af60403eafd44da9676fd66f600c7934d468ccc17e42b199aee2
|
||||
replicas: 2
|
||||
defaultArgs:
|
||||
- --cert-dir=/tmp
|
||||
- --kubelet-preferred-address-types=InternalIP,ExternalIP,Hostname
|
||||
- --kubelet-use-node-status-port
|
||||
- --metric-resolution=15s
|
||||
- --kubelet-insecure-tls
|
||||
metrics:
|
||||
enabled: true
|
||||
serviceMonitor:
|
||||
enabled: true
|
||||
resources:
|
||||
requests:
|
||||
cpu: 10m
|
||||
memory: 60Mi
|
||||
|
||||
@@ -1,6 +0,0 @@
|
||||
dependencies:
|
||||
- name: app-template
|
||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||
version: 4.6.2
|
||||
digest: sha256:faa35ccfc18b2d47fad558e168bd3c68e64790fe2b1356881452ae4f5cd8b443
|
||||
generated: "2026-03-10T16:01:13.738843-05:00"
|
||||
@@ -1,22 +0,0 @@
|
||||
apiVersion: v2
|
||||
name: movie-roulette
|
||||
version: 1.0.0
|
||||
description: Movie Roulette
|
||||
keywords:
|
||||
- movie-roulette
|
||||
- jellyfin
|
||||
home: https://wiki.alexlebens.dev/
|
||||
sources:
|
||||
- https://github.com/sahara101/Movie-Roulette
|
||||
- https://github.com/sahara101/Movie-Roulette/pkgs/container/movie-roulette
|
||||
- https://github.com/bjw-s-labs/helm-charts/tree/main/charts/other/app-template
|
||||
maintainers:
|
||||
- name: alexlebens
|
||||
dependencies:
|
||||
- name: app-template
|
||||
alias: movie-roulette
|
||||
repository: https://bjw-s-labs.github.io/helm-charts/
|
||||
version: 4.6.2
|
||||
icon: https://raw.githubusercontent.com/sahara101/Movie-Roulette/refs/heads/main/static/icons/icon.png
|
||||
# renovate: datasource=github-releases depName=sahara101/Movie-Roulette
|
||||
appVersion: v5.4.2
|
||||
@@ -1,42 +0,0 @@
|
||||
apiVersion: external-secrets.io/v1
|
||||
kind: ExternalSecret
|
||||
metadata:
|
||||
name: movie-roulette-config-secret
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: movie-roulette-config-secret
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
spec:
|
||||
secretStoreRef:
|
||||
kind: ClusterSecretStore
|
||||
name: vault
|
||||
data:
|
||||
- secretKey: secret-key
|
||||
remoteRef:
|
||||
conversionStrategy: Default
|
||||
decodingStrategy: None
|
||||
key: /cl01tl/movie-roulette/key
|
||||
metadataPolicy: None
|
||||
property: secret-key
|
||||
- secretKey: jellyfin-key
|
||||
remoteRef:
|
||||
conversionStrategy: Default
|
||||
decodingStrategy: None
|
||||
key: /cl01tl/jellyfin/movie-roulette
|
||||
metadataPolicy: None
|
||||
property: jellyfin-key
|
||||
- secretKey: jellyfin-user
|
||||
remoteRef:
|
||||
conversionStrategy: Default
|
||||
decodingStrategy: None
|
||||
key: /cl01tl/jellyfin/movie-roulette
|
||||
metadataPolicy: None
|
||||
property: user
|
||||
- secretKey: seerr-key
|
||||
remoteRef:
|
||||
conversionStrategy: Default
|
||||
decodingStrategy: None
|
||||
key: /cl01tl/seerr/key
|
||||
metadataPolicy: None
|
||||
property: key
|
||||
@@ -1,128 +0,0 @@
|
||||
movie-roulette:
|
||||
controllers:
|
||||
main:
|
||||
type: deployment
|
||||
replicas: 1
|
||||
strategy: Recreate
|
||||
revisionHistoryLimit: 3
|
||||
containers:
|
||||
main:
|
||||
image:
|
||||
repository: ghcr.io/sahara101/movie-roulette
|
||||
tag: v5.4.2
|
||||
pullPolicy: IfNotPresent
|
||||
env:
|
||||
- name: FLASK_SECRET_KEY
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: movie-roulette-config-secret
|
||||
key: secret-key
|
||||
- name: CORS_ALLOWED_ORIGINS
|
||||
value: movie-roulette.alexlebens.net
|
||||
- name: DISABLE_SETTINGS
|
||||
value: "TRUE"
|
||||
- name: AUTH_ENABLED
|
||||
value: "TRUE"
|
||||
- name: AUTH_SESSION_LIFETIME
|
||||
value: "86400"
|
||||
- name: JELLYFIN_URL
|
||||
value: http://jellyfin.alexlebens.net
|
||||
- name: JELLYFIN_API_KEY
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: movie-roulette-config-secret
|
||||
key: jellyfin-key
|
||||
- name: JELLYFIN_USER_ID
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: movie-roulette-config-secret
|
||||
key: jellyfin-user
|
||||
- name: LOGIN_BACKDROP_ENABLED
|
||||
value: "TRUE"
|
||||
- name: HOMEPAGE_MODE
|
||||
value: "FALSE"
|
||||
- name: USE_LINKS
|
||||
value: "TRUE"
|
||||
- name: USE_FILTER
|
||||
value: "TRUE"
|
||||
- name: USE_WATCH_BUTTON
|
||||
value: "TRUE"
|
||||
- name: USE_NEXT_BUTTON
|
||||
value: "TRUE"
|
||||
- name: USE_GRID_VIEW
|
||||
value: "true"
|
||||
- name: ENABLE_MOBILE_TRUNCATION
|
||||
value: "TRUE"
|
||||
- name: SHOW_NOW_WATCHING_CARD
|
||||
value: "FALSE"
|
||||
- name: USE_HEROUI_THEME
|
||||
value: "FALSE"
|
||||
- name: ENABLE_MOVIE_LOGOS
|
||||
value: "TRUE"
|
||||
- name: LOAD_MOVIE_ON_START
|
||||
value: "FALSE"
|
||||
- name: SEERR_URL
|
||||
value: http://seerr.alexlebens.net
|
||||
- name: SEERR_API_KEY
|
||||
valueFrom:
|
||||
secretKeyRef:
|
||||
name: movie-roulette-config-secret
|
||||
key: seerr-key
|
||||
- name: REQUEST_SERVICE_DEFAULT
|
||||
value: "seerr"
|
||||
resources:
|
||||
requests:
|
||||
cpu: 10m
|
||||
memory: 128Mi
|
||||
service:
|
||||
main:
|
||||
controller: main
|
||||
ports:
|
||||
http:
|
||||
port: 80
|
||||
targetPort: 4000
|
||||
protocol: HTTP
|
||||
route:
|
||||
main:
|
||||
kind: HTTPRoute
|
||||
parentRefs:
|
||||
- group: gateway.networking.k8s.io
|
||||
kind: Gateway
|
||||
name: traefik-gateway
|
||||
namespace: traefik
|
||||
hostnames:
|
||||
- movie-roulette.alexlebens.net
|
||||
rules:
|
||||
- backendRefs:
|
||||
- group: ''
|
||||
kind: Service
|
||||
name: movie-roulette
|
||||
port: 80
|
||||
weight: 100
|
||||
matches:
|
||||
- path:
|
||||
type: PathPrefix
|
||||
value: /
|
||||
persistence:
|
||||
data:
|
||||
forceRename: movie-roulette-data
|
||||
storageClass: ceph-block
|
||||
accessMode: ReadWriteOnce
|
||||
size: 1Gi
|
||||
retain: true
|
||||
advancedMounts:
|
||||
main:
|
||||
main:
|
||||
- path: /config
|
||||
readOnly: false
|
||||
volsync-target-data:
|
||||
pvcTarget: movie-roulette-data
|
||||
local:
|
||||
enabled: true
|
||||
schedule: 44 8 * * *
|
||||
remote:
|
||||
enabled: true
|
||||
schedule: 44 9 * * *
|
||||
external:
|
||||
enabled: true
|
||||
schedule: 44 10 * * *
|
||||
@@ -178,7 +178,7 @@ volsync-target-data:
|
||||
enabled: true
|
||||
schedule: 2 10 * * *
|
||||
volsync-target-media:
|
||||
pvcTarget: paperless-ngx-metadata
|
||||
pvcTarget: paperless-ngx-media
|
||||
local:
|
||||
enabled: true
|
||||
schedule: 4 8 * * *
|
||||
@@ -189,7 +189,7 @@ volsync-target-media:
|
||||
enabled: true
|
||||
schedule: 4 10 * * *
|
||||
volsync-target-export:
|
||||
pvcTarget: paperless-ngx-data
|
||||
pvcTarget: paperless-ngx-export
|
||||
local:
|
||||
enabled: true
|
||||
schedule: 2 8 * * *
|
||||
@@ -200,7 +200,7 @@ volsync-target-export:
|
||||
enabled: true
|
||||
schedule: 2 10 * * *
|
||||
volsync-target-consume:
|
||||
pvcTarget: paperless-ngx-metadata
|
||||
pvcTarget: paperless-ngx-consume
|
||||
local:
|
||||
enabled: true
|
||||
schedule: 4 8 * * *
|
||||
|
||||
@@ -9,7 +9,7 @@ searxng:
|
||||
main:
|
||||
image:
|
||||
repository: searxng/searxng
|
||||
tag: latest@sha256:a89ed4a9dc2cbafeee79fc5fd75067e201543ed453fb43eae576d3e09c61780b
|
||||
tag: latest@sha256:054395b06d5afc43b8d0f51b65257290896779bdd8a1fdc7075dda52461585e1
|
||||
pullPolicy: IfNotPresent
|
||||
env:
|
||||
- name: SEARXNG_BASE_URL
|
||||
@@ -39,7 +39,7 @@ searxng:
|
||||
main:
|
||||
image:
|
||||
repository: searxng/searxng
|
||||
tag: latest@sha256:a89ed4a9dc2cbafeee79fc5fd75067e201543ed453fb43eae576d3e09c61780b
|
||||
tag: latest@sha256:054395b06d5afc43b8d0f51b65257290896779bdd8a1fdc7075dda52461585e1
|
||||
pullPolicy: IfNotPresent
|
||||
env:
|
||||
- name: SEARXNG_BASE_URL
|
||||
|
||||
@@ -11,7 +11,7 @@ site-documentation:
|
||||
main:
|
||||
image:
|
||||
repository: harbor.alexlebens.net/images/site-documentation
|
||||
tag: 0.15.0
|
||||
tag: 0.16.0
|
||||
pullPolicy: IfNotPresent
|
||||
resources:
|
||||
requests:
|
||||
|
||||
@@ -79,14 +79,12 @@ customDNS:
|
||||
;; Application Names
|
||||
actual IN CNAME traefik-cl01tl
|
||||
alertmanager IN CNAME traefik-cl01tl
|
||||
argo-workflows IN CNAME traefik-cl01tl
|
||||
argocd IN CNAME traefik-cl01tl
|
||||
audiobookshelf IN CNAME traefik-cl01tl
|
||||
authentik IN CNAME traefik-cl01tl
|
||||
backrest IN CNAME traefik-cl01tl
|
||||
bazarr IN CNAME traefik-cl01tl
|
||||
ceph IN CNAME traefik-cl01tl
|
||||
code-server IN CNAME traefik-cl01tl
|
||||
dawarich IN CNAME traefik-cl01tl
|
||||
directus IN CNAME traefik-cl01tl
|
||||
excalidraw IN CNAME traefik-cl01tl
|
||||
@@ -114,7 +112,6 @@ customDNS:
|
||||
lidarr IN CNAME traefik-cl01tl
|
||||
mail IN CNAME traefik-cl01tl
|
||||
medialyze IN CNAME traefik-cl01tl
|
||||
movie-roulette IN CNAME traefik-cl01tl
|
||||
music-grabber IN CNAME traefik-cl01tl
|
||||
navidrome IN CNAME traefik-cl01tl
|
||||
ntfy IN CNAME traefik-cl01tl
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
---
|
||||
services:
|
||||
node-exporter:
|
||||
image: quay.io/prometheus/node-exporter:v1.10.2@sha256:337ff1d356b68d39cef853e8c6345de11ce7556bb34cda8bd205bcf2ed30b565
|
||||
image: quay.io/prometheus/node-exporter:v1.11.0@sha256:2f0cc335ef9ea15d6c96e1c0d693d8b57c0b794d0244b22313a6c162bd1cb1b8
|
||||
container_name: node-exporter
|
||||
command:
|
||||
- '--path.rootfs=/rootfs'
|
||||
|
||||
@@ -100,14 +100,12 @@ customDNS:
|
||||
;; Application Names
|
||||
actual IN CNAME traefik-cl01tl
|
||||
alertmanager IN CNAME traefik-cl01tl
|
||||
argo-workflows IN CNAME traefik-cl01tl
|
||||
argocd IN CNAME traefik-cl01tl
|
||||
audiobookshelf IN CNAME traefik-cl01tl
|
||||
authentik IN CNAME traefik-cl01tl
|
||||
backrest IN CNAME traefik-cl01tl
|
||||
bazarr IN CNAME traefik-cl01tl
|
||||
ceph IN CNAME traefik-cl01tl
|
||||
code-server IN CNAME traefik-cl01tl
|
||||
dawarich IN CNAME traefik-cl01tl
|
||||
directus IN CNAME traefik-cl01tl
|
||||
excalidraw IN CNAME traefik-cl01tl
|
||||
@@ -135,7 +133,6 @@ customDNS:
|
||||
lidarr IN CNAME traefik-cl01tl
|
||||
mail IN CNAME traefik-cl01tl
|
||||
medialyze IN CNAME traefik-cl01tl
|
||||
movie-roulette IN CNAME traefik-cl01tl
|
||||
music-grabber IN CNAME traefik-cl01tl
|
||||
navidrome IN CNAME traefik-cl01tl
|
||||
ntfy IN CNAME traefik-cl01tl
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
---
|
||||
services:
|
||||
node-exporter:
|
||||
image: quay.io/prometheus/node-exporter:v1.10.2@sha256:337ff1d356b68d39cef853e8c6345de11ce7556bb34cda8bd205bcf2ed30b565
|
||||
image: quay.io/prometheus/node-exporter:v1.11.0@sha256:2f0cc335ef9ea15d6c96e1c0d693d8b57c0b794d0244b22313a6c162bd1cb1b8
|
||||
container_name: node-exporter
|
||||
command:
|
||||
- '--path.rootfs=/rootfs'
|
||||
|
||||
@@ -20,7 +20,7 @@ services:
|
||||
- /dev/net/tun:/dev/net/tun
|
||||
|
||||
node-exporter:
|
||||
image: quay.io/prometheus/node-exporter:v1.10.2@sha256:337ff1d356b68d39cef853e8c6345de11ce7556bb34cda8bd205bcf2ed30b565
|
||||
image: quay.io/prometheus/node-exporter:v1.11.0@sha256:2f0cc335ef9ea15d6c96e1c0d693d8b57c0b794d0244b22313a6c162bd1cb1b8
|
||||
container_name: node-exporter
|
||||
command:
|
||||
- '--path.rootfs=/rootfs'
|
||||
|
||||
@@ -77,10 +77,10 @@
|
||||
{
|
||||
"description": "Specific app grouping overrides",
|
||||
"matchPackageNames": [
|
||||
"/(^|/)(argo-cd|bazarr|cilium|code-server|dawarich|element-web|home-assistant|immich|komodo|postiz|rook-ceph|roundcube|rybbit|tdarr|traefik)/",
|
||||
"/(^|/|-)(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|postiz|rook-ceph|roundcube|rybbit|tdarr|traefik)/",
|
||||
"/^rook(-ceph|/rook|/ceph)/"
|
||||
],
|
||||
"groupName": "{{{replace '^.*(argo-cd|bazarr|cilium|code-server|dawarich|element-web|home-assistant|immich|komodo|postiz|rook-ceph|roundcube|rybbit|tdarr|traefik).*$' '$1' depName}}}",
|
||||
"groupName": "{{#if packageName}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|postiz|rook-ceph|roundcube|rybbit|tdarr|traefik).*$' '$1' packageName}}}{{else}}{{{replace '^.*(argo-cd|bazarr|cilium|dawarich|element-web|home-assistant|immich|komodo|postiz|rook-ceph|roundcube|rybbit|tdarr|traefik).*$' '$1' depName}}}{{/if}}",
|
||||
"groupSlug": "unified-{{{groupName}}}"
|
||||
},
|
||||
{
|
||||
|
||||
Reference in New Issue
Block a user