Kubermates
Cloud Kubernetes and CI CD - practical guides and tools.
Why Kubermates?
Kubermates is a knowledge hub for Platform Engineers, SREs and DevOps. You will find step by step tutorials, infrastructure deep dives and practical snippets, tested in production clusters and homelabs.
Latest articles
launching kubermates
we are live kubermates will publish practical guides across aks eks gke and onprem
🧩 GitHub Actions Composite vs Reusable Workflows
How to standardize and supercharge your CI/CD pipelines across projects
When your teams manage multiple projects with similar deployment patterns, repeating the same GitHub Actions steps over and over can become tedious, error-prone, and hard to maintain
Thankfully, GitHub Actions offers two powerful solutions to help standardize, reuse, and scale your CI/CD pipelines: Composite Actions and Reusable Workflows. When used together, they form a clean, modular, and DRY (don’t repeat yourself) CI/CD strategy
🚀🌐 Elevating Infrastructure: From Terraform/Terragrunt Foundations to Platform Engineering 😊
Hey there, cloud adventurers! 🚀 Let’s chat about why keeping Terraform (or OpenTofu) and Terragrunt in their own lanes is absolutely essential—and how using Terraform JSON tfvars makes life easier when you’re building nifty tools on top. Ready? Let’s dive in! 😄
Why Separation Is a Must, Not an Option 🙅♂️🙅♀️
It might be tempting to mix Terraform and Terragrunt into one big file—after all, they work together, right? But trust me, keeping them decoupled is a game‑changer:
🔐 Secure Secret Management with SOPS in Helm 🚀
When managing applications deployed on Kubernetes, keeping secrets safe while still making them accessible to Helm charts is a challenge. Storing secrets in plaintext is a security risk 🚨 — and that’s where SOPS (Secrets OPerationS) and the Helm Secrets plugin come in!
In this guide, we’ll cover:
- ✅ How to use SOPS with age and GPG
- ✅ How to configure SOPS with
sops.yamlfor better management - ✅ How to use Helm Secrets Plugin to manage encrypted secrets directly in your Helm charts
- ✅ A GitHub Actions workflow to securely deploy Helm charts using encrypted secrets
📌 Why Use SOPS with Helm?
SOPS is an open-source tool from Mozilla that lets you encrypt and decrypt secrets with ease. When combined with the Helm Secrets plugin, you can safely store your sensitive data in Git repositories and automatically decrypt them during Helm deployments. Here’s why it’s awesome:
🔐 Secure Secret Management with SOPS in Terraform & Terragrunt
When managing infrastructure as code (IaC), keeping secrets safe while still making them accessible to Terraform/Terragrunt is a challenge. Storing secrets in plaintext is a security risk 🚨—and that’s where SOPS (Secrets OPerationS) comes in!
In this guide, we’ll cover:
- ✅ How to use SOPS with age and GPG
- ✅ How to configure SOPS with
sops.yamlfor better management - ✅ How to use Terragrunt’s built-in SOPS decryption (without
run_cmd) - ✅ A GitHub Actions workflow to securely use secrets in CI/CD
📌 Why Use SOPS?
SOPS is an open-source tool from Mozilla that lets you encrypt and decrypt secrets easily. It supports multiple encryption methods, including GPG, AWS KMS, Azure Key Vault, Google Cloud KMS, and age.
Helm Chart Essentials & Writing Effective Charts 🚀
Helm charts are a powerful way to define, install, and upgrade Kubernetes applications. By packaging all the Kubernetes manifests and parameters in a neat, reproducible format, Helm simplifies the deployment process for engineers and DevOps teams. In this article, we’ll explore some best practices for writing effective Helm charts, introduce the Helm Schema plugin for validation, show how to include tests to ensure reliability, discuss helm-docs for automated documentation generation, and share an additional resource for testing and linting. Let’s get started! 🎉