From magic-powers
Use when designing Azure Kubernetes Service (AKS) clusters, configuring node pools, integrating Azure AD/Entra ID RBAC, implementing Workload Identity, planning scaling strategies, or studying for AZ-400 or AZ-305.
npx claudepluginhub kienbui1995/magic-powers --plugin magic-powersThis skill uses the workspace's default tool permissions.
- Designing AKS cluster architecture (node pools, networking, identity)
Generates design tokens/docs from CSS/Tailwind/styled-components codebases, audits visual consistency across 10 dimensions, detects AI slop in UI.
Records polished WebM UI demo videos of web apps using Playwright with cursor overlay, natural pacing, and three-phase scripting. Activates for demo, walkthrough, screen recording, or tutorial requests.
Delivers idiomatic Kotlin patterns for null safety, immutability, sealed classes, coroutines, Flows, extensions, DSL builders, and Gradle DSL. Use when writing, reviewing, refactoring, or designing Kotlin code.
| Pool Type | Required | Purpose |
|---|---|---|
| System node pool | Yes | Runs kube-system pods (CoreDNS, metrics-server); cannot be deleted |
| User node pool | No | Runs application workloads; multiple allowed; can be deleted |
kubelogin)kubectl commands require Entra ID authentication; kubeconfig uses AAD tokensAzure Kubernetes Service RBAC Admin, etc.)ClusterRoleBinding/RoleBindingDefaultAzureCredential in pod code; automatically picks up Workload Identity token| Scaler | Scope | Trigger |
|---|---|---|
| Cluster Autoscaler | Node (VM) level | Pending pods that can't be scheduled |
| HPA (Horizontal Pod Autoscaler) | Pod level | CPU/memory metrics (or custom metrics) |
| VPA (Vertical Pod Autoscaler) | Pod resource limits | Right-sizes CPU/memory requests |
| KEDA | Pod level (event-driven) | External metrics: queue depth, Event Hub lag |
| Virtual Nodes | Pod burst to ACI | Overflow scheduling to Azure Container Instances |
| Aspect | kubenet | Azure CNI |
|---|---|---|
| Pod IPs | Private range (not VNet IPs) | VNet IPs assigned to pods |
| VNet address planning | Small VNet sufficient | VNet must have IP for every possible pod |
| Network policies | Limited (Calico only) | Full (Azure Network Policy + Calico) |
| Best for | Dev/test, simple scenarios | Enterprise, network policies, peering |
| Private Link access | Requires extra routing | Direct (pods have VNet IPs) |
kubectl; converts AAD tokens for Kubernetes API authentication