A production-style platform showcasing modern DevOps practices. Built with GitOps principles, automated CI/CD pipelines, and security-first design.
Every component is designed for production reliability and security.
Nginx Alpine serving static content with production-hardened security context.
Push code to Git. CI builds the image. ArgoCD syncs to the cluster. Zero manual steps.
RBAC via AppProject, TLS via Let's Encrypt, pod security context, automated cert renewal.
How code reaches production in under 3 minutes.
Developer pushes changes to GitHub main branch
GitHub Actions builds Docker image, pushes to GHCR with SHA + latest tags
ArgoCD Image Updater detects new tag in container registry
Image Updater commits new tag to kustomization.yaml in Git
ArgoCD detects Git change, syncs new manifests to K3s cluster
| Orchestration | K3s |
| GitOps Engine | ArgoCD |
| CI/CD | GitHub Actions |
| Container Registry | GHCR |
| Ingress Controller | NGINX |
| TLS Certificates | cert-manager |
| Manifest Tool | Kustomize |
| Image Updates | Image Updater |
Built with best practices from day one.
How code reaches production in this GitOps platform.
The project is organized into clear directories:
Run these 3 commands once to start the GitOps loop:
applications/ directory
guestbook.yaml
apps/guestbook/ directory
kustomize build
When you want to update your app:
apps/guestbook/
Dockerfile
kustomization.yaml
Automatic HTTPS and security features:
ArgoCD continuously monitors the cluster:
git revert undoes bad changes