Skill

managing-infra

Infrastructure patterns for Kubernetes, Terraform, Helm, Kustomize, and GitHub Actions. Use when making K8s architectural decisions, choosing between Helm vs Kustomize, structuring Terraform modules, writing CI/CD workflows, or applying security best practices.

From infra-ops

Install

Run in your terminal

npx claudepluginhub alexei-led/cc-thingz --plugin infra-ops

Tool Access

This skill is limited to using the following tools:

ReadBashGrepGlobBash(kubectl *)

Supporting Assets

View in Repository

DOCKERFILE.md

GITHUB-ACTIONS.md

KUBERNETES.md

MAKEFILE.md

TERRAFORM.md

templates/ci.yml

templates/deployment.yaml

templates/release.yml

Skill Content

Similar Skills

cache-components

Guides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.

cache-components

138.6k

claude-opus-4-5-migration

2 files

Migrates code, prompts, and API calls from Claude Sonnet 4.0/4.5 or Opus 4.1 to Opus 4.5, updating model strings on Anthropic, AWS, GCP, Azure platforms.

claude-opus-4-5-migration

83.2k

evaluation-methodology

1 file

Details PluginEval's skill quality evaluation: 3 layers (static, LLM judge), 10 dimensions, rubrics, formulas, anti-patterns, badges. Use to interpret scores, improve triggering, calibrate thresholds.

plugin-eval

32.9k

Stats

Parent Repo Stars14

Parent Repo Forks1

Last CommitApr 1, 2026

Actions

View Source View Plugin View on GitHub View README

Safety: Dry-Run Before Apply

NEVER run state-changing commands (kubectl apply, terraform apply, helm upgrade --install) without first presenting the plan/diff to the user.

Always run the read-only equivalent first:

terraform plan before terraform apply

kubectl diff before kubectl apply

helm upgrade --dry-run before helm upgrade

If the user explicitly asks to apply, confirm before executing.

When to Use What

Tool

Use For

Raw K8s YAML

Simple deployments, one-off resources

Kustomize

Environment variations, overlays without templating

Helm

Complex apps, third-party charts, heavy templating

Terraform

Cloud resources, infrastructure lifecycle

GitHub Actions

CI/CD, automated testing, releases

Makefile

Build automation, self-documenting targets

Dockerfile

Container builds, multi-stage, multi-arch

Infrastructure Patterns

Safety: Dry-Run Before Apply

NEVER run state-changing commands (kubectl apply, terraform apply, helm upgrade --install) without first presenting the plan/diff to the user.

Always run the read-only equivalent first:

terraform plan before terraform apply
kubectl diff before kubectl apply
helm upgrade --dry-run before helm upgrade

If the user explicitly asks to apply, confirm before executing.

When to Use What

Tool	Use For
Raw K8s YAML	Simple deployments, one-off resources
Kustomize	Environment variations, overlays without templating
Helm	Complex apps, third-party charts, heavy templating
Terraform	Cloud resources, infrastructure lifecycle
GitHub Actions	CI/CD, automated testing, releases
Makefile	Build automation, self-documenting targets
Dockerfile	Container builds, multi-stage, multi-arch

Quick Decisions

Kustomize when: Simple env differences, readable manifests, patching YAML Helm when: Complex templating, third-party charts, release management

K8s Security Defaults

Every workload: non-root user, read-only filesystem, no privilege escalation, dropped capabilities, network policies.

GitHub Actions Patterns

CI workflow: Lint, test, compile on PRs (run on both x86 + ARM)
Release workflow: Multi-arch Docker build on tags (native ARM runners)
Pin actions by SHA, least-privilege permissions

References

KUBERNETES.md - K8s resource patterns
TERRAFORM.md - Terraform module patterns
GITHUB-ACTIONS.md - CI/CD workflow patterns
MAKEFILE.md - Build automation patterns
DOCKERFILE.md - Container build patterns
templates/ - Ready-to-use templates

Commands

kubectl apply -k ./              # Apply kustomize
helm upgrade --install NAME .    # Install/upgrade chart
terraform plan && terraform apply