= CiCd =

== Articles ==

 * https://earthly.dev/blog/engineering-chaos/

== Runtime config ==
 * Goals
   * Single build (container)
   * Customizable during CD e.g. url

 * VUE javascript
   * https://medium.com/js-dojo/vue-js-runtime-environment-variables-807fa8f68665
   * https://github.com/jsilva-pt/medium-vuejs-runtime-env-vars

== CiCD architecture 2026 ==

 1. IDP - Overview [[https://gist.github.com/vfarcic/78c1d2a87baf31512b87a2254194b11c]]
 1. k8s
 2. [[https://crossplane.io]]
 3. argocd - git to k8s [[https://argoproj.github.io/cd/]]
 4. [[https://schemahero.io/]]
 5. [[https://external-secrets.io/latest/]] - 
    b. SOPS - secret encryption
    c. Secrets Store CSI Driver - loads secrets into tmpfs mounts
 6. gui - [[https://www.port.io]]
 7. pipelines - github actions

=== Extras in k8s ===

 * Security
   * FALCO - process alerts, kernel level
   * CubeArmour - block before executed