Skip to content

Instantly share code, notes, and snippets.

View curx's full-sized avatar

Thorsten Schifferdecker curx

88 followers · 172 following
View GitHub Profile
@curx
curx / cilium-noproxy-talos.yaml
Created September 21, 2025 12:28
Cilium v1.18.1, no-kube-proxy, for talos
---
# Source: cilium/templates/cilium-secrets-namespace.yaml
apiVersion: v1
kind: Namespace
metadata:
name: "cilium-secrets"
labels:
app.kubernetes.io/part-of: cilium
annotations:
---
@curx
curx / create-sops-key.sh
Created September 14, 2023 06:21
helper for sops for fluxcd
#!/usr/bin/env bash
## desc: create sops key for fluxcd and more
## author: Thorsten Schifferdecker https://github.com/curx
## license: Apache 2.0
## variables
HASH="$(xxd -l5 -ps /dev/urandom)"
# the keyname and comment
@curx
curx / app-soft-serve.yaml
Last active April 10, 2023 18:51
Kubernetes manifest-file for soft-serve
## desc: create application for soft-serve
## author: Thorsten Schifferdecker <https://github.com/curx>
## license: Apache 2.0
apiVersion: v1
kind: Namespace
metadata:
name: soft-serve
labels:
app: soft-serve
@curx
curx / create-helmchart-crd-for-neuvector.sh
Created February 25, 2023 15:39
create a helmChart CRD yaml for neuvector
#!/usr/bin/env bash
## desc: create k3s/rke2 crd helmChart for neuvector
## author: Thorsten Schifferdecker https://github.com/curx
## license: Apache 2.0
## vars
le_acme_email="${1:?ERR | no lets encypt email for acme is given, abort.}"
neuvector_admin_password="${2:?ERR | no neuvector admin password is given, abort.}"
neuvector_ingress_hostname="${3:?ERR | no neuvector ingress hostname is given, abort.}"
@curx
curx / create-helmchart.sh
Last active July 28, 2025 13:13
create CRD rancher helm chart the easy
#!/usr/bin/env bash
## desc: create k3s/rke2 crd helmChart from a default helmChart
## author: Thorsten Schifferdecker https://github.com/curx
## license: Apache 2.0
## vars
helmrepo="${1:?error no helm repository given, abort.}"
helmchart_name="${2:?error no helm name given, abort.}"
helmchart_namespace="${3:-${helmchart_name}-system}"
@curx
curx / steps.md
Created July 29, 2022 09:10
create a serviceaccount, a role and rolebinding to create a kubeconfig for byoh-hostagent

Steps to create a dedicated kubeconfig.yaml for a byoh-host

on kubernetes version < v1.24.x

  1. Create files for the needed resources

  • a kustomize

    ---
@curx
curx / gshibernate
Created November 27, 2021 10:21
hibernate or not a shoot cluster
#!/usr/bin/env bash
## desc: hibernate a gardener shoot cluster
## author: Thorsten Schifferdecker https://github.com/curx
## license: ASL-2.0
kubectl patch shoot ${1:?shootcluster name not given} \
-p '{"spec": { "hibernation": { "enabled": '${2:?hibernate true or false}'}}}'
@curx
curx / .tflint.hcl
Created October 23, 2021 22:29
sample .tflint.hcl
config {
module = true
}
rule "terraform_deprecated_index" {
enabled = true
}
rule "terraform_unused_declarations" {
enabled = true
@curx
curx / docker-compose.yaml
Created October 9, 2021 16:04
a simple docker-compose with a nginx webserver
# a simple dockerized nginx webserver
version: '3'
services:
webserver:
container_name: webserver
image: docker.io/library/nginx:1.21-alpine
ports:
- 80:80
volumes:
@curx
curx / cosign.pub
Created October 7, 2021 04:36
cosign public key for usage
-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEv2Ynap1t0laT6cMDMv4rPN5Rvpo3
pU+IGUULCuB/L1Ae1R/hmr0Bq85vpu57mwHEEyNzqqc1SKuRdMOT4u7ZFg==
-----END PUBLIC KEY-----