Cluster

Opinionated Kubernetes cluster deployment toolkit. Provides Terraform configurations with sensible defaults and YAML-based customization for EKS (AWS) and GKE (Google Cloud).

Platforms

Platform	Directory	Features
AWS (EKS)	`provider/eks/`	Multi-AZ, optional VPC CNI custom networking, self-managed nodes, CloudWatch
Google Cloud (GKE)	`provider/gke/`	Regional cluster, Workload Identity, Shielded Nodes, multi-NIC GPU networking for GPUDirect-TCPXO (a3-megagpu-8g)

Usage

Generate config (optional) -- run init to create a starter YAML, or copy from config/
Discover versions (optional) -- find latest K8s versions and AMIs for your region
Setup tenancy (one-time) -- bootstrap cloud account with state bucket and IAM credentials
Apply -- deploy the cluster using the container image with your config and key
Destroy -- set deployment.destroy: true in config and re-run apply

See provider-specific guides for detailed steps: EKS | GKE

Container Images

Self-contained actuator images with pre-mirrored Terraform providers. Multi-arch (amd64 + arm64) built on native runners.

Platform	Image
EKS	`ghcr.io/mchmarny/cluster/eks:<version>`
GKE	`ghcr.io/mchmarny/cluster/gke:<version>`

Check image version:

docker run --rm ghcr.io/mchmarny/cluster/gke:<version> --version
docker run --rm ghcr.io/mchmarny/cluster/eks:<version> --version

CLI Commands

Command	Description
`init <path>`	Generate a starter configuration file (provider-aware: `gke-*` prefix generates GKE template)
`plan -c <config>`	Show Terraform plan output without applying
`apply -c <config>`	Deploy or destroy infrastructure via Terraform
`output -c <config>`	Retrieve Terraform outputs and save to state directory

Destroy is triggered by setting deployment.destroy: true in the config and running apply.

Configuration Input

Method	Flag / Env Var	Description
File path	`-c` / `CONFIG_PATH`	Path to YAML config file
Base64 content	`CONFIG_CONTENT`	Base64-encoded YAML config
Base64 key	`KEY_CONTENT`	Base64-encoded credentials (AWS key JSON or GCP ADC JSON)

Architecture

See docs/architecture.md for project layout, configuration design, security model, and image build details.

Development

make qualify      # All quality checks (Go + Terraform)
make go-qualify   # Go: vet, fmt, lint, test, build
make tf-qualify   # Terraform: validate, lint, fmt, trivy scan
make e2e          # Full end-to-end (qualify + Docker build + smoke tests)
make tools-check  # Verify tool versions match .settings.yaml

License

MIT -- see LICENSE

Name		Name	Last commit message	Last commit date
Latest commit History 166 Commits
.claude		.claude
.github		.github
cmd/cluster		cmd/cluster
config		config
docs		docs
image		image
pkg		pkg
provider		provider
schema		schema
tools		tools
.dockerignore		.dockerignore
.gitignore		.gitignore
.golangci.yaml		.golangci.yaml
.grype.yaml		.grype.yaml
.settings.yaml		.settings.yaml
.tflint.hcl		.tflint.hcl
.trivyignore		.trivyignore
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
go.mod		go.mod
go.sum		go.sum

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Cluster

Platforms

Usage

Container Images

CLI Commands

Configuration Input

Architecture

Development

License

About

Uh oh!

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Cluster

Platforms

Usage

Container Images

CLI Commands

Configuration Input

Architecture

Development

License

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Packages