ingress_factory: replace protected bool with auth enum + audit pass across 100 stacks
2026-05-10 18:53:49 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
authentik: worker replicas 3 -> 2
2026-05-21 09:14:35 +00:00
beads-server: codify Keel annotations on Dolt deployment (drift cleanup)
2026-05-17 22:22:40 +00:00
nfs-mirror: append transferred files to offsite-sync manifest
2026-05-24 15:32:22 +00:00
broker-sync(imap): fix command name + add fsGroup for sync.db writes
2026-05-22 14:41:54 +00:00
security(wave1): W1.6 expand observation from recruiter-responder pilot → tier 3+4 (82 namespaces)
2026-05-19 22:14:16 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
claude-agent-service: cut memory request 2Gi → 1Gi (limit 4Gi → 2Gi)
2026-05-23 10:03:42 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
mailserver: decommission SendGrid
2026-05-22 20:08:38 +00:00
cnpg: bump webhook-cert renewal threshold 7d -> 30d
2026-05-22 15:00:41 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
crowdsec: pin image to v1.7.8 + remove ENROLL_KEY, CAPI restored
2026-05-24 11:11:29 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
dbaas: opt MySQL out of Keel + add do-not-bump warning
2026-05-19 13:21:03 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
enrolled-patch stacks: ignore image drift from Keel auto-update
2026-05-16 13:24:16 +00:00
excalidraw: migrate PVC from proxmox-lvm to NFS
2026-05-26 02:33:41 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
f1-stream: migrate PVC from proxmox-lvm to NFS
2026-05-26 02:49:43 +00:00
fire-planner: COL refresh CronJob + Grafana Cost-of-Living dashboard
2026-05-22 14:15:38 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
Woodpecker CI deploy [CI SKIP]
2026-05-24 22:07:58 +00:00
recruiter-responder: bump image_tag to 189ef901
2026-05-16 12:41:05 +00:00
infra: add kubectl + authentik providers across 6 stacks
2026-05-21 08:07:22 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
immich: harden against bulk-import load (memory + probe + Job retries)
2026-05-24 22:14:05 +00:00
infra: per-VM I/O caps + terragrunt v0.77 plumbing + state recovery
2026-05-26 06:46:47 +00:00
[infra] Sweep dns_config ignore_changes across all pod-owning resources [ci skip]
2026-04-18 21:19:48 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
Bucket A retrigger + Bucket D enrollment (5 module-nested stacks)
2026-05-16 23:10:38 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
Bucket A retrigger + Bucket D enrollment (5 module-nested stacks)
2026-05-16 23:10:38 +00:00
k8s-version-upgrade: ignore IngressTTFBCritical in halt-on-alert check
2026-05-24 01:10:44 +00:00
upgrade-state: skill + script + Keel scrape for periodic three-pipeline audit
2026-05-18 10:50:43 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
kyverno: allowlist woodpeckerci/* for CI step pods
2026-05-23 08:52:48 +00:00
infra: add kubectl + authentik providers across 6 stacks
2026-05-21 08:07:22 +00:00
llama-cpp: ignore_changes for keel/k8s-managed annotations
2026-05-24 09:01:17 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
mailserver: decommission SendGrid
2026-05-22 20:08:38 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
keel: enroll 11 more namespaces (operators + critical infra)
2026-05-17 20:59:14 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
monitoring: alerts for proxmox-csi LUN saturation per node
2026-05-26 02:45:13 +00:00
nfs-mirror: append transferred files to offsite-sync manifest
2026-05-24 15:32:22 +00:00
infra: add kubectl + authentik providers across 6 stacks
2026-05-21 08:07:22 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
nextcloud(external_storage): add per-mount enableSharing option
2026-05-24 11:39:16 +00:00
keel: enroll 11 more namespaces (operators + critical infra)
2026-05-17 20:59:14 +00:00
[dns] NodeLocal DNSCache — deploy DaemonSet to all nodes (WS C)
2026-04-19 15:46:41 +00:00
Woodpecker CI deploy [CI SKIP]
2026-05-16 23:17:44 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
nvidia: fix driver install deadlock + extend startup probe
2026-05-25 11:53:44 +00:00
onlyoffice: restore replicas 0 → 1 post IO-storm recovery
2026-05-26 03:08:17 +00:00
nfs-mirror: append transferred files to offsite-sync manifest
2026-05-24 15:32:22 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
paperless-mcp: deploy MCP for AI document search
2026-05-17 11:14:35 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
[infra] Add Cloudflare provider to all stack lock files and generated providers
2026-04-16 16:31:36 +00:00
Woodpecker CI deploy [CI SKIP]
2026-05-16 23:17:44 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
postiz: bump memory request 512Mi → 2Gi, limit 4Gi → 3Gi (right-size for next deploy)
2026-05-24 01:11:25 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
proxmox-csi/node: bump memory request 64Mi → 1Gi (LUKS unlock reservation)
2026-05-24 01:10:44 +00:00
[infra] Suppress Goldilocks vpa-update-mode label drift on all namespaces [ci skip]
2026-04-18 21:15:27 +00:00
[infra] Migrate Terraform state from local SOPS to PostgreSQL backend
2026-04-16 19:33:12 +00:00
realestate-crawler: dockerhub pull-secret + lift image-pin on ui/api
2026-05-18 19:11:43 +00:00
nfs-mirror: append transferred files to offsite-sync manifest
2026-05-24 15:32:22 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
resume: migrate PVC from proxmox-lvm to NFS
2026-05-26 02:36:20 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
keel: enroll 11 more namespaces (operators + critical infra)
2026-05-17 20:59:14 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
keel: enroll 11 more namespaces (operators + critical infra)
2026-05-17 20:59:14 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
[infra] Establish KYVERNO_LIFECYCLE_V1 drift-suppression convention [ci skip]
2026-04-18 14:15:51 +00:00
ci: retrigger v2 — apply pending Keel-enrolled stacks ( #697 was cancelled by #698 )
2026-05-16 13:47:13 +00:00
infra: add kubectl + authentik providers across 6 stacks
2026-05-21 08:07:22 +00:00
technitium: cut memory — primary 2Gi → 1Gi, secondary+tertiary 2Gi → 512Mi
2026-05-23 10:03:51 +00:00
terminal: probe + alerts after Traefik replica routing-table skew
2026-05-17 10:04:26 +00:00
ci: retrigger v3 — apply remaining 22 Keel-enrolled stacks
2026-05-16 14:06:39 +00:00
trading-bot: add kevin_signal_bridge container (kill-switch OFF for Phase 1)
2026-05-24 01:22:53 +00:00
traefik: bump auth-proxy nginx header buffers to handle Authentik cookie pile
2026-05-23 08:34:33 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
ci: retrigger v3 — apply remaining 22 Keel-enrolled stacks
2026-05-16 14:06:39 +00:00
Bucket A retrigger + Bucket D enrollment (5 module-nested stacks)
2026-05-16 23:10:38 +00:00
nfs-mirror: append transferred files to offsite-sync manifest
2026-05-24 15:32:22 +00:00
trading-bot: revive K8s stack + add meet-kevin-watcher
2026-05-22 11:23:30 +00:00
Bucket A retrigger + Bucket D enrollment (5 module-nested stacks)
2026-05-16 23:10:38 +00:00
keel: enroll 11 more namespaces (operators + critical infra)
2026-05-17 20:59:14 +00:00
Woodpecker CI deploy [CI SKIP]
2026-05-16 13:45:45 +00:00
final wave: enroll immich + status-page, retrigger 17 pending Bucket A
2026-05-16 23:19:20 +00:00
whisper: migrate PVC from proxmox-lvm to NFS
2026-05-26 02:38:34 +00:00
keel: enroll 15 critical-path namespaces for digest-only auto-update
2026-05-17 12:13:22 +00:00
ci: retrigger v3 — apply remaining 22 Keel-enrolled stacks
2026-05-16 14:06:39 +00:00
xray: drop dead vless ingress + pin Service target_port
2026-05-24 01:13:54 +00:00
ci: retrigger v3 — apply remaining 22 Keel-enrolled stacks
2026-05-16 14:06:39 +00:00
445feb118f