OpenSkillIndex← back to search
claude-code

Claude-skill-registry-data managing-infra

Infrastructure patterns for Kubernetes, Terraform, Helm, Kustomize, and GitHub Actions. Use when making K8s architectural decisions, choosing between Helm vs Kustomize, structuring Terraform modules, writing CI/CD workflows, or applying security best practices.

install
source · Clone the upstream repo
git clone https://github.com/majiayu000/claude-skill-registry-data
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry-data "$T" && mkdir -p ~/.claude/skills && cp -r "$T/data/managing-infra" ~/.claude/skills/majiayu000-claude-skill-registry-data-managing-infra && rm -rf "$T"
manifest: data/managing-infra/SKILL.md
source content

Infrastructure Patterns

When to Use What

ToolUse For
Raw K8s YAMLSimple deployments, one-off resources
KustomizeEnvironment variations, overlays without templating
HelmComplex apps, third-party charts, heavy templating
TerraformCloud resources, infrastructure lifecycle
GitHub ActionsCI/CD, automated testing, releases
MakefileBuild automation, self-documenting targets
DockerfileContainer builds, multi-stage, multi-arch

Quick Decisions

Kustomize when: Simple env differences, readable manifests, patching YAML Helm when: Complex templating, third-party charts, release management

K8s Security Defaults

Every workload: non-root user, read-only filesystem, no privilege escalation, dropped capabilities, network policies.

GitHub Actions Patterns

  • CI workflow: Lint, test, compile on PRs (run on both x86 + ARM)
  • Release workflow: Multi-arch Docker build on tags (native ARM runners)
  • Pin actions by SHA, least-privilege permissions

References

Commands

kubectl apply -k ./              # Apply kustomize
helm upgrade --install NAME .    # Install/upgrade chart
terraform plan && terraform apply