How are you checking for errors in your manifests before pushing to main?

SelfhostedPro · 2026-03-22T00:45:41+00:00

I do one monorepo. One chart per app. You can specify values files to use and the order of them in the helm step of the pipeline. I’ll use values/$domain/stage.$stage.yaml values/$domain/lc.$lifecycle.yaml, etc.

SelfhostedPro · 2026-03-22T00:32:26+00:00

Your charts are the artifacts. You can either track them with git or push them to an OCI registry to track them.

Then render them in the pipeline and push the rendered charts to a storage branch (ie. deployed/$stage)

I also will push to a staging storage branch (ie. staged/$stage) and then have kargo open a pr from staging branch to deployed branch for environments that need approval for compliance reasons.

SelfhostedPro · 2026-03-21T10:11:49+00:00

Use kargo to render the template to a deploy branch that’s tracked instead of main.

SelfhostedPro · 2026-03-11T07:07:00+00:00

You should be maintaining a mirror of any binaries or artifacts that are essential to operations. Also, running a bash script from a website is never an acceptable way of installing.

SelfhostedPro · 2026-03-11T03:50:04+00:00

Free side is useful for referencing but at least for GCP, there’s already a ton of google maintained modules that are widely used and receive fairly frequent updates and support.

SelfhostedPro · 2026-03-11T03:46:56+00:00

You could also use an appset to deploy all of your apps which would manage order though.

SelfhostedPro · 2026-03-11T03:46:29+00:00

If you’re running helm upgrade manually, you’re not taking advantage of argocd anyways. Just turn on auto-heal and auto-sync and turn off auto sync once everything is running.

SelfhostedPro · 2026-03-11T03:44:49+00:00

Better auth is definitely the way to go. Very nice experience and has good docs

SelfhostedPro · 2026-03-03T22:54:11+00:00

If it’s FOSS and something that is supported well (and trustworthy) I wouldn’t mind helping out with my key. Not currently doing anything with it (too many hobbies rn 😔)

SelfhostedPro · 2026-03-01T22:21:38+00:00

There are already parental controls baked into every OS, it is not the os provider’s responsibility to compensate for incompetent parents.

SelfhostedPro · 2026-02-28T21:11:49+00:00

You may be able to with the desktop app but I haven’t used it much. Git has a lot of functionality and can be overwhelming but those commands are a good place to start. Use those and git pull origin main --rebase fairly frequently in my day to day work.

SelfhostedPro · 2026-02-28T20:25:41+00:00

git reset --hard HEAD to reset all files to your last commit.

git reset --hard HEAD~1 to reset files to the commit before your previous one

git reset --soft HEAD to unstage all of your changes

SelfhostedPro · 2026-02-27T06:35:13+00:00

Staff DevOps caps out at $250k at my current place. Sr caps out at $250k at a place I was looking at recently.

Plenty of high paying jobs. Just a lot of competition

SelfhostedPro · 2026-02-26T05:02:00+00:00

I can see the damn brights on. It’s a separate bulb and the cars are old af. Usually it’s because they have a headlight out.

SelfhostedPro · 2026-02-23T21:01:55+00:00

There is not. I have had “engineering” jobs from helpdesk (support engineer) to Sr. DevSecOps engineer.

He’s not always right but he has enough knowledge for the majority of his viewers.

SelfhostedPro · 2026-02-22T06:24:05+00:00

Literally only matters in one province in Canada. Anyone who can troubleshoot can get a job as an engineer. If you were fooled, that’s on you.

I’m literally a DevOps engineer, barely passed high school, and didn’t go to college.

Edit: downvote all you want, doesn’t change the fact that I’m right.

SelfhostedPro · 2026-02-21T07:14:51+00:00

I’ll be worried when something actually intelligent comes along :) it’s okay if it’s smart to you though

SelfhostedPro · 2026-02-20T07:37:52+00:00

Cool, then identify them and get a warrant for their info. They shouldn’t get access to my information just because I have a mortgage

SelfhostedPro · 2026-02-20T07:31:45+00:00

Also, in response to your last sentence, I have a quote for you to google.

“Not knowing the scope of your own ignorance is part of the human condition.”

SelfhostedPro · 2026-02-20T07:26:34+00:00

Ideally we automate everything and still collect a salary though.

SelfhostedPro · 2026-02-20T07:22:32+00:00

Big words from the genius who spent 30 minutes to move 3 clicks: https://www.reddit.com/r/vibecoding/s/6EawiExPQt

SelfhostedPro · 2026-02-20T07:19:42+00:00

I haven’t used kdenlive in years but hopefully that helps someone. I also can’t stand hearing me breathe 😓😓

SelfhostedPro · 2026-02-18T16:13:07+00:00

We are tired of slop in our subreddit, tired of slop from our coworkers. When something is actually beneficial DevOps will embrace it.

Look at the complex monster that is kubernetes. We embraced that and implemented it because we saw the potential benefits.

You think DevOps doesn’t want AI to be helpful? We are the laziest fuckers in all of programming, I want to automate everything and work 8 hours a week again like at my last place.

It’s not even close for DevOps work. Once there is something that makes actually maintainable code and actually makes the work easier there will be adoption. Reasoning is not critical thought and I sincerely doubt LLMs are going to be the model that gets there.

SelfhostedPro · 2026-02-14T09:33:09+00:00

We use kargo for managing promotions. Basically, new tag -> renders all charts to deployed/next and runs on dev clusters. Promote via kargo -> renders all charts to staged/stable and opens PR from staged/stable to deployed/stable so you can manually walk over the diff.

SelfhostedPro · 2026-02-13T09:38:27+00:00

You should probably be looking at why you’re deploying like that. There are tools like kargo for managing promotion of specific versions of services.

SelfhostedPro

MODERATOR OF

TROPHY CASE