►
From YouTube: TGI Kubernetes 149: GitOps with Flux v2
Description
Come hang out with Evan Anderson (@e_k_anderson) and learn about the v2 API of the newest CNCF incubating project, Flux. We'll compare v1 and v2 of Flux, and see how it can help tame cluster chaos.
A
A
We'll
be
starting
in
a
couple
minutes:
gonna
let
people
trickle
in
and
once
it
looks
like.
We've
got
a
good
number:
hey,
wellead,
hello!
Everybody
thanks
for
adding
git
ops
con
to
the
notes
for
those
of
you
who
don't
know
notes
are
at
tgik
dot.
A
Io,
slash
notes
and
for
those
of
you
who
don't
know
as
well
youtube
strips
out
urls,
so
you
need
to
put
spaces
and
stuff
in
there.
If
you.
A
A
A
Let's
see
it
is
oh
istanbul
wow,
we
are
all
over
the
world
davis.
What
was
the
getups?
Oh
because
of
getupscon.
A
A
The
notes
are
at
tgik
dot,
io,
slash
notes,
feel
free
to
collaboratively,
add
stuff.
As
you
know
about
it,
I
took
a
quick
collection
of
things.
I
know,
but
one
of
the
awesome
things
about
the
cncf
community
is
that
it's
so
big
that
you
know
it's
hard
for
everyone
to
know
it
all,
and
that's
where
you
know
shows
like
this
can
help
help
share
all
of
that
information.
C
See
where
are
we
here.
A
We
are
four
minutes
after
north
northern
california.
A
I
wonder
what
the
warmest
place
we've
got
here
and
the
coldest
place
we've
got
here.
Yes,
it's
a
nice
day
out
here
in
seattle,
so
there's
a
little
bit
of
sun
out
the
window.
B
C
C
B
A
A
Oh,
let's
see
well
we're
at
five
after
so
I
think
I'm
probably
gonna
get
started
with
the
week
with
the
news
of
the
week
for
those
of
you
who
are
running
and
updating
your
kubernetes,
which
probably
should
be
all
of
you,
there's
new
kubernetes
out
with
built
with
different
golang
versions.
Just
take
a
look
at
what's
in
the
latest
here.
So
if
any
of
you
have
a
particular.
A
And
point
slice
it
looks
like
there
are
a
bunch
of
bug
fixes,
but
it's
not
a
security
thing.
So
that's
good!
A
A
So
yeah
so
kubernetes
built
patch
releases
if
you're
interested
in
windows
and
conformance,
which
I
know
is
probably
two
topics
that
are
near
and
dear
to
all
of
your
hearts.
But
it's
important.
You
know
that
you
know
hey
when
you're
running
on
windows
that
it's
actually
you
know,
gonna
work.
So
if
you're
interested
in
that
topic,
it
looks
like
there's
a
kept
being
put
together.
A
And
let's
see
what
is
get
ops
application
manager
looks
like
red
hat
has
built
a
tool
to
bootstrap
get
ops.
A
A
A
So
it
looks
like
that's
a
client-side
tool
which
is
good
because
you'll
see
me
go
in
and
cube
control
edit
stuff
a
lot
but
having
a
cli
that
actually
helps
helps
people
figure
out
where
to
go
and
has
useful
help
is
a
big
win
for
lots
of
for
lots
of
users,
and
I
know
that
when
I'm
using
k-native,
which
is
kind
of
my
day
project,
I
really
like
using
the
cli
tool
to
get
things
done
faster,
so
have
to
check
that
out
after
this
sonoboy
has
a
new
release.
A
A
So
this
is
this
is
a
base
image
where
you
really
have
to
bring
everything
in
with
you,
and
you
can't
use
like
a
package
manager
like
app
or
something
like
that
unless
you
brought
it
along
with
you
for
some
reason,
but
the
advantage
is
these
are
really
small
and
light
to
download
and
they
tend
to
have
fewer
security
issues,
because
you
just
didn't
package
that
stuff
in
by
accident.
A
So
I
think
that
was
the
big
thing
and
it
looks
like
they're
also
moving
towards
a
1.0
version
release,
which
is
a
big
deal
for
lots
of
projects.
So
I
see
that
flux
is
also
moving
but
they're
moving
towards
a
v2.
A
So
yeah,
oh
lee,
points
out
that
cli
tools
can
also
give
you
a
nice
like
structure
and
ideas
to
how
things
are
supposed
to
work,
whereas
if
it's
just
a
whole
pile
of
yaml
you're
like
oh,
it's
all
the
same.
Let
me
go
in
anywhere
and
it's
just
as
easy
to
break
yourself.
So
cli
puts
a
nice
sort
of
guardrail
and
guided
path
in
for
you.
A
Looks
like
get
ups
con
eu
is
coming
and
it
looks
like
the
cfp
closes
in
a
couple
weeks
and
just
opened.
So
if
you've
got
get
up
stuff,
you
want
to
talk
about
in
europe
or
on
europe
time,
whether
you're
in
europe
or
not.
That's
the
advantage
of
these
virtual
conferences.
A
Don't
have
to
do
as
many
visa
things,
and
then
I
saw
this
earlier.
It
looked
intriguing
for
those
of
you
who
aren't
familiar
with
it.
Bsd
jails
are
an
alternate
mechanism
for
for
doing
encapsulation,
more
related
to
sort
of
solaris
zones,
as
I
understand
it
than
the
linux
stuff
that
largely
got
tacked
on
through
c
groups
and
other
mechanisms
there.
But
it
looks
like
it
provides
an
oci
implementation.
A
It's
not
clear
if
this
works
with
freebie
freebsd
binaries
or
if
it
works
with
linux,
binaries
too,
it
would
be
great
if
that
set
up
front,
whether
it
worked
with
linux
containers
or
if
you
needed
your
own
containers.
A
It
looks
like
cfp
for
get
ops
days
closes
about
the
same
times
as
same
time
as
github's
con
eu,
but
the
dates
are
different.
So
you
can
do
the
preview
of
your
talk
at
github's
con
eu
and
then
the
supplement
to
your
talk
at
getupstays.
If
you
get
into
both.
A
A
Here
get
ups.
Con
is
a
day
zero
for
kubecon,
okay,
that
explains
the
particular
date
in
there
there's
a
lot
of
those
cool
day,
zero
events
so
yeah.
If
you're
going
to
kubecon.
I
definitely
say
that
day:
zero
is
a
chance
to
kind
of
get
in
and
actually
get
some
experience
with
the
projects
up,
close
and
personal
in
a
way
that
the
main
conference
has
gotten
pretty
big.
So
you'll
still
see
some
cool
presentations,
but
there's
like
a
line
of
20
people
to
have
a
conversation.
A
Pristine
fantastic
clusters
to
be
able
to
focus
on
get
ops,
so
full
disclosure
here
my
personal
style
so
far-
has
been
get
ops
after
the
fact
where
I
discover
something's
broken
in
my
cluster,
I
cube
control
edit
it
and
then
I
say,
oh
and
I
need
to
commit
that
back
to
my
get
ops,
repo,
I'm
hoping
that
maybe
flux
can
help
me
break
that
habit,
the
habit
of
fixing
things
live
and
then
documenting
afterwards.
I
don't
know
if
I
can
fix
my
habit
of
not
having
a
broken
cluster.
A
Can
hope
so
I'm
just
gonna
give
you
a
little
preview
of
what
I've
got
set
up
here.
So
in
preparation
for
this,
I've
got
a
kind
cluster
running
locally,
all
right
and.
C
A
A
Oh,
that
was
just
visual
studio
code
for
the
json.
I
can
crank
that
up
too,
but
I
don't
expect
to
use
it
too
often.
C
B
C
C
A
Okay,
so
I
don't
have
much
running
right
now.
I
went
and
installed
get
t
on
someone's
reference,
so
I'm
actually
running
my
get
repo
on
the
get
cl
on
the
on
my
cluster
and
then
we're
gonna.
We're
gonna
use
that
to
store
all
the
stuff
that
I'm
doing
with
flux
and
with
that
let's
get.
A
So
yeah
so
flux
is,
it
says,
a
tool
here,
I'd
probably
say
given
how
you've
reconstructed
things,
maybe
it's
a
tool
kit,
but
but
yeah.
The
idea
is
that
you
declare
what
you
want
your
configuration
to
be
and
then
flux
helps
you.
Actually,
you
know,
keep
your
world
in
sync
with
what
your
configuration
is
so.
A
A
A
Since
this
is
all
local
I
can,
I
don't
have
to
worry
about
my
credentials.
Obviously,
if
you're
doing
this
for
real,
you
probably
want
to
use
a
secret
and
not
broadcast
it
on.
A
B
A
Yeah,
so
for
those
of
you
for
those
of
you
who
aren't
familiar
with
what
git
ops
is
get
ops
is
basically
a
philosophy
where,
instead
of
just
going
and
making
changes
to
your
production
environment
and
like
writing,
documentation
about
how
you
got
there,
you
actually
store
the
state
of
all
your
configuration
in
github
or
in
a
git
repository
somewhere,
and
then
you
continually
make
the
environment
match
what
you've
declared
things
to
be,
which
sounds
a
lot
like
kubernetes
and
kubernetes
was
designed
to
be
a
good
fit
for
get
ops
workflows
because
you
can
declare.
A
This
is
the
state
that
I
want
my
resources
to
be
in
and
then
you
know
continuously,
you
just
have
a
computer.
You
know
this
is
one
of
those
things.
Computers
are
good
at
just
repeatedly
say:
are
there
differences?
Oh,
let
me
go
fix
it.
Let
me
go
fix
it.
Let
me
go
fix
it,
and
so,
if
you
go
in
and
edit
things
by
hand
get
ops
will
just
reset
things
back.
So
it's
a
it's
fairly
resilient
to
accidental
changes.
A
A
And
let's
see,
let's
go
back
so
it
looks
like
so
in
the
sample
diagram
here.
They've
got
some
information
like
sources
and
customizations
and
then
much
of
customizations.
I
view
as
feeding
into
the
kubernetes
api
directly,
but
but
they've
got
a
bunch
of
sources.
You
know
different
git,
repos
and
stuff
and
then
a
controller
that
customize
and
helm
can
read
from
and
create
various
resources.
A
Oh,
this
is
nice.
You
can
also
use
an
s3
bucket,
so
if,
for
some
reason
getting
get
is
get
set
up
is
tricky
for
you,
you
can
push
stuff
into
an
s3
bucket
and
then
pull
it
pull
things
down
from
there
and
that
just
lets
you,
you
know,
use
an
object
store
which
might
be
easier
to
set
up
than
get
synchronization.
In
some
cases.
A
A
You
know
at
vmware,
some
of
our
projects
are
using
the
carvel
toolkit
and
I've
seen
a
few
people
who
are
still
happy
with
like
jsonnet.
It
looked
like
that
was
having
a
comeback,
so
there's
lots
of
different
opinions
on.
How
do
you
do
this?
A
I
have
some
yaml,
plus
some
extra
stuff
and
customizing
helm
are
two
of
them.
I'm
hoping
we'll
discover
that
this
is.
A
You
know
that
this
is
pluggable
here
and
I
see
kingdom
pointing
out
that
the
s3
bucket's
also
really
helpful
for
disaster
situations
where
maybe
you've
broken
your
get
repo
or
your
git
commit
process,
and
you
you,
you
just
need
to
get
something
in
there,
so
you
can
point
it
to
an
s3
bucket
and
you
can
kind
of
yolo
all
your
testing
and
sometimes
when
things
are
broken,
that's
what
you
need
to
do
sounds
like
carvel
and
flux
are
already
looking
at
how
to
play
nicely
together.
A
A
If
you
believe
github
is
never
down,
then
you
have
not
been
working
with
github
much
seriously.
They
do
a
great
job
and
it's
much
better
than
I
would
do
on
my
own.
They
also
have
a
tough
audience.
A
Integration
with
kubernetes
are
back
it'll,
be
interesting
to
see
what
that
is,
and
health
assessment.
This
sounds
like
it's
gonna,
be
very
interesting:
let's
try
our
get
started
guide.
Okay!
A
Well,
we're
not
going
to
do
github,
because
I'm
just
going
to
use
some
local
tokens,
but
brew,
install
so
yeah,
I'm
running
on
windows.
So
all
this
brew,
install
stuff
and
pipe
to
bash
doesn't
work
for
me,
but
I
don't
mind
pulling
down
a
zip,
it's
not
commonly
discarded.
That's
fine.
C
C
C
D
C
C
A
A
A
Oh,
this
is
good
it's.
It
looks
like
that
you're
keeping
it
cash
locally
of
the
get
status
so
when
when
something
like
github
is
down
you're
not
permanently
down.
So
that
is
a
nice
pattern,
something
that
I
learned
when
I
was
doing.
Sre
was
don't
assume
your
source
control
system
is
up,
you
might
have
broken
it
or.
A
Your
network
and
now
you're
trying
to
figure
out
how
do
I
get
my
network
back?
Let
me
get
t
over
there
and.
A
A
Thank
you,
powershell
you're,
protecting
me
from
myself.
I
will
move
that
to
my
path
in
just
a
moment.
Bootstrap
toolkit
component
in
github
or
get
lab.
A
Why
don't?
Why
don't
I
use
wsl
too?
This
is
that's
actually
a
great
question.
There
are
a
lot
of
actual
developers
out
there
in
the
world
who
are
trying
to
get
through
all
this
stuff
who
are
most
familiar
or
comfortable
on
windows
or
maybe
windows
is
their
only
development
environment.
A
I
like
to
do
about
half
my
time
on
windows,
because
it
gives
me
a
lot
more
empathy
for
people
who
have
that
tool
set
and
who,
for
example,
discover
that
nothing
works,
because
it
all
assumes
that
you
have
bash
installed
and
you
understand
bash,
so
I
I
tend
to
try
to
see
what
can
I
do
on
windows
and
what
ends
up
getting
really
hard,
and
I
do
have
wsl
installed
and
like
when
I
need
to
base
64
something
or
unpack
a
tar.
A
A
Some
other
benefits
are
that
some
of
the
some
of
the
windows
stuff
is
actually
really
cool.
I'm
not
going
to
show
off
all
the
cool
things
there,
but
it's
kind
of
nice.
If
you
want
to
use,
get
t
you'll
need
to
follow
generic
get
server
guide.
Okay,
thank
you.
C
A
Here
we
go
get
clone
cg
to
my
repository.
I
can
do
that.
C
C
A
A
C
C
A
A
A
A
A
I've
I've
used
emacs
for
15
years
or
so
so
I'm
very
comfortable
forget
with
getting
around
an
emacs
but
I'll.
I
can
switch
to
vs
code.
A
So,
let's
see
it
looks
like
namespace
we're
going
to
get
our
crds.
We've
got
a
couple
of.
A
A
Oh
here
we
go.
I
always
like
to
look
at
what
cluster
roles
we've
got.
A
So
the
flux
system
is
going
to
be
managing
all
of
these
flux.
Cd
api
groups
and
all
my
secrets
probably
makes
sense
needs
to
be
able
to
write
events.
Events
are
good.
A
It
took
me
a
while
to
figure
out
how
those
worked,
but
those
are
good,
looks
like
the
config
maps
and
config
map
status.
I
didn't
realize
I
didn't
realize.
Config
maps
had
a
status,
sub-resource
and
then
leases.
Oh
nice
so
looks
like
these
will
do
leader
election
or
something
like
that.
A
It
is
nowhere
near
as
long
as
the
sdo
crd
list
cluster
roll
bindings
for
the
others.
Look
like
they
are.
A
Looks
like
everything
is
getting
the
same:
it
looks
like
customizing
helm,
get
clustered
men
and,
in
addition
to
clustered
men,
they
get
this
flux
system
role
and
then
we've
got
a
bunch
of
services,
a
bunch
of
deployments.
A
And,
oh,
you
got
network
policies,
nice,
okay,.
A
Thing
we
do
okay,.
C
A
C
Good,
okay.
D
A
C
C
C
C
C
C
B
A
Let's
see,
okay,
as
your
devops
looks
like
azure
devops
has
a
special
way
to
get
your
keys,
but
I
don't
care
about
that.
So
go
back
over
here,
get
at
host
org
repository.
C
A
But
yes,
ideally
you
would
plan
all
of
this.
Oh
wait:
does
this
url
need
to
be
the
same
inside
and
outside
the
cluster?
Do
I
need
to
expose
this
on
a
dns
name
or
something.
A
C
C
A
Flux,
yes,
I
think
I
have
looks
like
that
worked.
B
A
All
okay
get
all
everywhere
and
replica
sets
deployments
damage
that
service.
So
one
thing
you
folks
might
want
to
do
is:
is
there
are
categories
in
crds.
A
Yeah
kind
is
git
repository.
I
thought
so.
A
All
name
spaces:
it's
in
flux,
system,
okay,.
D
A
One
thing
I'm
wondering:
while
I'm
doing
this,
obviously
I'm
kind
of
playing
the
role
right
now
of
a
cluster
administrator
setting
this
up
for
the
first
time,
it'd
be
really
nice.
If
there
was
a
template
mechanism
that
could
stamp
these.
A
A
C
C
A
A
C
C
B
D
A
A
At
at
this
point,
it
is
being
able
to
connect
by
ssh,
but
it's
complaining
that
the
key
isn't
known
and
leah
was
saying
known
hosts
in
the
deploy
key.
Oh,
the
secret
is
wrong.
Okay,.
A
Oh
you're
right,
I
thought
I
added
another
one,
but
here
we.
A
D
C
C
A
Right,
I
don't
have
cube
control
inside
wsl,
because
I'm
mostly
trying
to
keep
myself
from
doing
that.
Why
you
need
to
create
the
key
with
the
correct
hostname.
A
It
would
be
nice
to
have
a
self-contained
here's
how
to
get
started,
but
I'm
just
gonna
switch
back
to
doing
this
with
a
github
repo,
because
no
one
wants
to
see
me
fight
with
dns.
Most
of
all,
not
me.
D
C
C
A
The
I
don't
know
about
the
audio
and
and
video
out
of
sync
it'll
create
a
repo.
If
it
doesn't
exist,
great,
the
chat
lags.
D
A
I
use
the
windows
secrets
manager,
so
I
don't
have
an
environment
variable
set,
but
I
can
create
a
personal
access
token.
C
A
One
of
the
things
that
I
was
hoping
to
avoid
was
having
to
mess
around
with
credentials
here.
But
let's
see
was
that
command.
A
Here
we
go
now:
let's
try
this
and
see
if
it
works,
remote
remote
repository
is
empty,
is
apparently
a
bad
thing.
It'll
be
okay
to
not
have
one.
C
A
A
Yeah,
so
this
is,
this
totally
looks
like
every
time
I
am
learning
a
new
system.
Ssh
handshake,
failed,
known,
host
key
is
unknown.
I
still
get
that.
C
C
A
I
could
have
deleted
that
secret,
but
yeah
seems
like
maybe
the
way
to
go
is
just
to
start
over.
A
A
A
Things
in
production,
usually
you
can't
get
a
new
cluster
so
quickly,
and
so
it's
really
easy
for
us
as
developers
to
be
like.
Oh,
I
just
you
know
clear
out
the
cluster
and
I
do
it
again
and
everything's
fine,
and
so
I
think
it's
great
for
development
to
be
able
to
get
a
new
kind
cluster
to
learn
this
stuff
and
I
think
it's
great
for
developers
to
be
able
to
get
that
stuff
started.
A
But
I
was
also
going
to
say
that
it
can
be.
It
can
be
a
little
bit
too
alluring
to
be
like
oh
look,
I
can
get
new
free
infrastructure,
there's
an
uninstall
command
that
would
have
been
good
to
know,
but
I
think
that
this
will
work
just
fine,
because
we
already
got
done
with
the
bootstrap
from
github.
A
Yeah,
oh,
what
I
screw.
A
A
Okay,
let's
check
take
a
look.
First
at
github,
see
what
we've
got
in
here:
hey
we've
got
a
readme
and
we've
got
all
these
files,
including
more
stuff
than
we
had.
A
A
Okay,
so
let's
see
we've
got
flux
going
on
we've
cloned,
it
add
pot
info.
A
I
just
also
want
to
look
we've
got.
This
is
oh.
This
is
interesting.
I
did
one
cli
command,
but
I
actually
ended
up
with
five
different
commits,
so
we
started
with
those
components
that
we
were
looking
through
before
and
then
here's
the
get
repository
with
an
ssh
and
the
customization
that
has
these
two
files
in
it.
A
Well,
the
other
nice
thing
about
having
clusters
like
this
is
that
usually
they
don't
have
anything
too
important
in
them.
But
I
say
this
and
then
I
realized
that
I
just
loaded
my
github
credentials
in
which.
B
C
D
C
A
C
A
A
C
C
C
B
A
Pod
info
source
is
next
to
flux
system,
so
this
is
going
to
create.
Should
this
be
influx
system.
A
Okay,
so
now
we've
added
a
customization
as
well,
and
we
should
see.
C
A
C
C
A
A
C
C
D
C
A
A
Default,
the
default
namespace
is
flux
system.
Oh
the
default
namespace
that
this
stuff
is
producing
is
flux
system.
I
meant
when
you
run,
oh
flux,
get
never
mind.
I
thought
that
was
a
cube.
Control
get.
C
A
C
C
A
Internet,
it
looks
like
I
might
have
checked
this
in
as
binary.
A
C
C
A
C
C
C
C
C
D
A
A
So
this
is
a
file
that
I
created
from
the
from
that
command
up
here,
where
I
redirected
the
output
into
a
file
flux
create
source.
So
I'm
guessing
that
the
powershell
redirect
made
this.
A
Utf-16,
thank
you.
I
had
no
idea
how
to
figure
out
what
encoding
that
was.
A
C
A
So
now
I
have
pod
info
running
and
I
could
port
forward
to
it
and
get
all
that
stuff
going.
So
if
you
don't
manage
to
check
things
in
utf-16-
and
you
know
what
you're
doing
it
looks
like
this
will
go
pretty
well
and
it
looks
like
they're
actually
already
using
flux
to
manage
the
flux
deployment,
which
is
pretty
cool.
It's
it's
not
quite
circular,
because
if
something
goes
wrong,
you
can
always
just
take
down
the
controllers
and
they'll
stop
reconciling
things.
A
Controller
and
a
handy
tool
for
doing
that,
if
you
get
into
problems
so
I'm
going
to
delete
the
helm
controller
and
we'll
see
what
happens
since
I
know
they're
using
customize.
A
And
because
I'm
lazy,
I'm
going
to
call
the
reconciliation
again
and
here's
helm
controller
coming
up.
So
if
I
didn't
know
about
how
to
pause
this
stuff,
what
I
would
actually
do
would
be
a
cube
control,
edit
influx
system,
the
customize
controller,
and
what
you
can
do
is
you
can
set
replicas
to
zero
and
then
the
pods
stop
running.
But
you
still
have
the
resource
around
and
you
can
go
back
and
scale
it
up
later.
A
And
as
someone
points
out,
you
may
not
want
to
let
me
near
your
production
clusters.
B
A
How
do
how
do
how
do
I
suspend
a
controller
or
how
are
you
supposed
to
suspend
the
controller,
I'm
guessing
that
the
way
you're
actually
supposed
to
do
this
is
that
they
have
somewhere
they
have
their
api
documentation
and
there's
a
field
on
the
crd.
A
Crd
and
looks
like
they
just
included
the
go
code,
which
is
a
perfectly
reasonable
thing
to
do.
If
you
aren't
doing
any
particular
tricks
to
rename
things
or
include
stuff
and
here's
the
bool,
so
you
can
just
say:
don't
do
any
more
customizations
here
and
leave
it
be
one
thing
that
would
be
really
neat
and
I
don't
know
if
there's
a
way
to
do
this
already
would
be
to
output
a
diff.
A
So
if
you're
trying
to
move
in
to
a
get
ops
world-
and
you
have
a
bunch
of
stuff-
that's
already
there-
you
may
be
a
little
nervous
about
moving
it
under
get
option
control
and
it
would
be
nice
to
have
a
diff
command
for
something
like
customize,
where
it
would
tell
you
hey.
These
are
the
changes
I
would
make,
and
you
can
look
and
say:
is
this
a
reasonable
diff?
Am
I
comfortable
with
it.
A
A
A
So
don't
do
the
thing
that
I
just
did.
A
And
there's
the
pod
coming
up
but
yeah,
I
oh
nobody
saw
what
I
did
so.
What
I
did
was.
I
went
and
set
the
replicas
higher.
A
A
A
And
it
looked
like
you
support
leases,
so
I'm
guessing
that
they're,
it's
possible
to
run
multiple
of
these.
If
you
need
to
oh
and
here's,
oh
here's,
the
nice
api
reference
version.
A
Timeout
for
validation,
recreate
resources,
so
it
looks
like
you
can
control
whether
we'll
do
a
delete
and
recreate
at
least
for
customize,
and
it
looks
like
you've
got
some
set
of
additional
stuff
that
you
can
put
in.
That's
not
like
your
customized
ap
customize
api
looks
like
you
can
pass
patches
in
directly,
as
well
as
creating
files
that
will
get
passed
into
customize.
A
Yeah,
so
I
can
go
in
and
do
you
know
lots
of
breaking
things
here
as
long
as
I
as
long
as
the
customized
controller
and
the
where
is
it
the
customization.
A
Is
referencing
this
flux
system,
git
repository?
So
let's
actually
take
a
look
at
that
yeah
custom
resources.
It
is
hard
sometimes
to
link
those
together
in
a
ui,
but
we've
got
a
spec
that
says:
okay,
we
use
git
through
ssh.
A
We
use
the
flux
system
secret
in
order
to
get
all
the
credentials
we
pull
main
and
then
we
report
a
bunch
of
information
like
here's,
the
checksum
and
here's
a
url
that
you
could
actually
use
if
you're
inside
the
cluster
to
download
the
source.
So
you
don't
need
to
have.
A
A
I
noticed
these
are
targey
zips.
It
might
be
interesting
to
look
at
the
e-star,
the
estg
project
that
basically
has
a
mechanism
for
putting
a
table
of
contents
at
the
end
of
the
targy
zip,
so
that
things
are
seekable.
They
designed
this
for
docker
registry,
but
it
could
potentially
let
you
just
download
pieces
if
you
want
only
pieces
of
the
file
system.
A
Why
do
we
have
both
of
these
they're
not
quite
the
same,
because
one
of
them
has
actual
get
commit,
and
the
other
just
says
latest.
A
A
But
the
other
nice
thing
is,
you
can
see,
they've
got
both
a
customized
and
a
helm.
Controller
and
they've
got
several
different
sources,
so
buckets
and
helm,
charts
and
helm
repositories
and
git
repositories.
A
I
was,
I
was
talking
about
git
repositories
and
and
linking
things
together,
but
I'm
not
sure
talks.
A
So
it
looks
like
you
can
do
I
understand
why
you've
got
these
personally,
I
would
almost
rather
have
the
source
itself
as
a
yaml
file,
rather
than
these
commands
to
create
a
yaml
file,
particularly
since
the
last
time
that
happened.
It
screwed
things
up,
but
I
just
feel
like
there's
a
little
bit
of
magic
here
about
creating
custom
resources
that
doesn't
need
to
be
magic.
A
D
A
I'm
guessing
that
is
how
often
it
checks
for
changes.
It's
too
bad,
there's
no
sort
of
watch
in
get
so
you
have
to
go
back
and
pull,
but
I
don't
expect
you
to
solve
everything.
A
A
It
would
be
nice
somewhere-
and
this
is
like
a
this-
is
a
challenge
with
documentation
in
general
to
indicate
what
the
magic
is.
That's
going
on
behind
the
scenes
for
some
of
these.
A
C
A
C
C
C
A
Yeah,
I'm
actually
wondering
does
flux,
export,
look
at
managed
fields
to
figure
out
which
stuff
was
put
in
by
defaulting
hooks
and
which
stuff
was.
A
Actually
applied
by
the
user,
because
if
we
go
and
look
at
this
like
pod
info
over
in
octant.
A
It's
not
quite
as
nice,
because
we
do
get
this
cube,
control
annotation
that
it
would
be
really
nice
to
not
have.
But
you
know
it's
only
so
much
you
can
reverse
once
you've
put
stuff
in
and
you're
like.
Oh,
let
me
pick
the
bits
out
of
the
sausage,
but
that's
really
nice
that
you
can
do
that.
It
would
be
nice
to
have
a
general
tool
to
take
stuff
that
was
in
kubernetes
and
put
it
back
into
github.
A
You
know
I
fix
things
by
hand.
Please
put
it
back
into
my
repo
now.
B
But
yeah.
A
Sometimes
you
end
up
with
a
lot
of
extra
commits
if
you're
debugging
a
problem
you're
like
oh,
I
just
discovered
that
you
know
my
cluster
is
you
know
over
memory
reservations
and
that
critical
pod
can't
run
you
know.
How
do
I
get
it
running
again?
Get
ops
can
feel
like
a
little
bit
of
an
obstacle
there,
but
certainly
as
soon
as
the
incident
is
over,
you
want
to
get
get
ops
running
again,
even
if
you
had
to
pause
it
for
a
moment.
So.
A
D
A
Lee
is
completely
right
that
those
commits
are
modifying
the
infrastructure,
and
you
probably
do
want
to
store
that
history.
It
as
long
as
it's
not
too
much
extra
friction
to
get
things
into
the
get
repo.
It's
probably
a
better
way
to
do
things,
so
I
may
I
may
see
if
I
can
try
living
that
religion
real
hard
on
my
own
personal
cluster,
which
was
running
out
of
memory
this
past
week.
A
What
I've
previously
done
is
made
my
get
state
a
series
of
unknown,
known,
good
states
and
then
a
bunch
of
exploratory
stuff.
That
might
not
be
good,
but
let's
see,
I
think
someone
was
saying
we
should
check
out
the
grafana
dashboard.
So
let's
see,
looks
like
grafana
is
up
and
running.
A
A
So
yeah
that
might
be
a
plug-in
that's
worth
looking
into
if
you're
looking
at
using
flux.
If
you're
looking
at
trying
to
adopt
flux,
I
forgot
that
I
wasn't
showing
you
grafana,
so
thank
you
so
yeah.
A
Grafana,
you
can
see,
has
come
up
and
is
running,
as
is
prometheus
and
here's
the
grafana
app.
I
already
started
the
port
forward
and
here
is
the
information
on
reconciliation,
and
I
wonder
why
all
of
a
sudden
these
got
faster,
because
we
have
two
data.
A
C
A
Yeah,
I
think
one
of
the
challenges
for
helm
in
particular.
Is
you
probably
want
to
be
able
to
set
patterns?
See
you
samir?
You
probably
want
to
actually
have
parameters
to
the
helm
chart.
Otherwise
you
might
as
well
just
have
some
yaml,
and
so
you
probably
have
to
go
in
and
do
those
substitutions
after
you've
done
the
flux.
Bootstrap
export
tools
like
customize
make
that
a
little
bit
easier
because
they
work
in
terms
of
logical
patches
rather
than
needing
to
insert
templates.
A
Yeah,
I
think
helm
packages
were
a
great
place
for
the
community
to
start,
but
I
feel
like
they
are
a
little
bit
of
an
incomplete
story
at
this
point,
as
they
point
out.
A
So
I
think
that's
about
it.
I
actually
got
everything
running
on
my
cluster.
I
did
not
manage
to
take
over
my
get
repository,
but.
A
I'm
just
I'm
just
trying
to
figure
out
the
the
path
that
gives
you
a
flux,
install
export
to
helm,
release
to
customize
post
render.
A
Yeah,
you
could
definitely
get
all
those
tools
working
together
if
you
wanted
to,
but
thanks
for
joining
me
and
watching
all
of
my
disasters
and
my
utf-816
files.
A
So
yeah
it
looks
like
this
is.
This
is
the
other
repo
where
I
was
setting
things
up
by
hand
and
looks
like
I
was
gonna
get
hit
with
the
same
thing,
so
I
learned
something
about
powershell.