Claude-skill-registry kubernetes-review
Reviews Kubernetes manifests for best practices, security, and homelab standards compliance. Use when reviewing YAML files, K8s manifests, Helm values, or ArgoCD applications.
install
source · Clone the upstream repo
git clone https://github.com/majiayu000/claude-skill-registry
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/data/kubernetes-review" ~/.claude/skills/majiayu000-claude-skill-registry-kubernetes-review && rm -rf "$T"
manifest:
skills/data/kubernetes-review/SKILL.mdsource content
Kubernetes Manifest Review
Review Kubernetes manifests against homelab standards.
Checklist
Resource Management
- CPU/Memory requests set
- CPU/Memory limits set
- Requests < Limits
resources: requests: cpu: 100m memory: 128Mi limits: cpu: 1000m memory: 1Gi
Health Checks
- Liveness probe configured
- Readiness probe configured
- Appropriate initialDelaySeconds
livenessProbe: httpGet: path: /health port: 8080 initialDelaySeconds: 10 periodSeconds: 10 readinessProbe: httpGet: path: /ready port: 8080 initialDelaySeconds: 5 periodSeconds: 5
Security Context
- runAsNonRoot: true
- readOnlyRootFilesystem: true
- allowPrivilegeEscalation: false
securityContext: runAsNonRoot: true readOnlyRootFilesystem: true allowPrivilegeEscalation: false
Labels
- app.kubernetes.io/name
- app.kubernetes.io/instance
- app.kubernetes.io/version
- app.kubernetes.io/managed-by: argocd
Secrets
- No hardcoded secrets in values
- Uses Infisical or external secrets
- No .env files committed
GPU Workloads
For GPU workloads, also check:
- nvidia.com/gpu resource set
- GPU tolerations present
- nodeSelector for GPU nodes
Reference
See @.claude/rules/kubernetes.md for complete guidelines.