Auto-update README with current k8s applications

Generated by CI/CD workflow on 2026-04-11 14:33:25 This PR updates the README.md file with the current list of applications found in the k8s/ directory structure.
Update k8s/core/cert-manager/issuer.yaml
2026-04-11 14:33:25 +00:00 · 2026-04-11 14:32:52 +00:00 · 2026-04-11 10:13:39 +03:00 · 2026-04-11 10:10:15 +03:00 · 2026-04-11 09:42:26 +03:00 · 2026-04-08 22:20:34 +00:00
14 changed files with 104 additions and 36 deletions
--- a/README.md
+++ b/README.md
@@ -16,6 +16,7 @@ ArgoCD homelab project
 | **authentik** | [![authentik](https://ag.hexor.cy/api/badge?name=authentik&revision=true)](https://ag.hexor.cy/applications/argocd/authentik) |
 | **cert-manager** | [![cert-manager](https://ag.hexor.cy/api/badge?name=cert-manager&revision=true)](https://ag.hexor.cy/applications/argocd/cert-manager) |
 | **external-secrets** | [![external-secrets](https://ag.hexor.cy/api/badge?name=external-secrets&revision=true)](https://ag.hexor.cy/applications/argocd/external-secrets) |
+| **gpu** | [![gpu](https://ag.hexor.cy/api/badge?name=gpu&revision=true)](https://ag.hexor.cy/applications/argocd/gpu) |
 | **kube-system-custom** | [![kube-system-custom](https://ag.hexor.cy/api/badge?name=kube-system-custom&revision=true)](https://ag.hexor.cy/applications/argocd/kube-system-custom) |
 | **kubernetes-dashboard** | [![kubernetes-dashboard](https://ag.hexor.cy/api/badge?name=kubernetes-dashboard&revision=true)](https://ag.hexor.cy/applications/argocd/kubernetes-dashboard) |
 | **longhorn** | [![longhorn](https://ag.hexor.cy/api/badge?name=longhorn&revision=true)](https://ag.hexor.cy/applications/argocd/longhorn) |
@@ -37,6 +38,9 @@ ArgoCD homelab project

 | Application | Status |
 | :--- | :---: |
+| **comfyui** | [![comfyui](https://ag.hexor.cy/api/badge?name=comfyui&revision=true)](https://ag.hexor.cy/applications/argocd/comfyui) |
+| **furumi-dev** | [![furumi-dev](https://ag.hexor.cy/api/badge?name=furumi-dev&revision=true)](https://ag.hexor.cy/applications/argocd/furumi-dev) |
+| **furumi-server** | [![furumi-server](https://ag.hexor.cy/api/badge?name=furumi-server&revision=true)](https://ag.hexor.cy/applications/argocd/furumi-server) |
 | **gitea** | [![gitea](https://ag.hexor.cy/api/badge?name=gitea&revision=true)](https://ag.hexor.cy/applications/argocd/gitea) |
 | **greece-notifier** | [![greece-notifier](https://ag.hexor.cy/api/badge?name=greece-notifier&revision=true)](https://ag.hexor.cy/applications/argocd/greece-notifier) |
 | **hexound** | [![hexound](https://ag.hexor.cy/api/badge?name=hexound&revision=true)](https://ag.hexor.cy/applications/argocd/hexound) |
@@ -45,6 +49,9 @@ ArgoCD homelab project
 | **jellyfin** | [![jellyfin](https://ag.hexor.cy/api/badge?name=jellyfin&revision=true)](https://ag.hexor.cy/applications/argocd/jellyfin) |
 | **k8s-secrets** | [![k8s-secrets](https://ag.hexor.cy/api/badge?name=k8s-secrets&revision=true)](https://ag.hexor.cy/applications/argocd/k8s-secrets) |
 | **khm** | [![khm](https://ag.hexor.cy/api/badge?name=khm&revision=true)](https://ag.hexor.cy/applications/argocd/khm) |
+| **lidarr** | [![lidarr](https://ag.hexor.cy/api/badge?name=lidarr&revision=true)](https://ag.hexor.cy/applications/argocd/lidarr) |
+| **matrix** | [![matrix](https://ag.hexor.cy/api/badge?name=matrix&revision=true)](https://ag.hexor.cy/applications/argocd/matrix) |
+| **mtproxy** | [![mtproxy](https://ag.hexor.cy/api/badge?name=mtproxy&revision=true)](https://ag.hexor.cy/applications/argocd/mtproxy) |
 | **n8n** | [![n8n](https://ag.hexor.cy/api/badge?name=n8n&revision=true)](https://ag.hexor.cy/applications/argocd/n8n) |
 | **ollama** | [![ollama](https://ag.hexor.cy/api/badge?name=ollama&revision=true)](https://ag.hexor.cy/applications/argocd/ollama) |
 | **paperless** | [![paperless](https://ag.hexor.cy/api/badge?name=paperless&revision=true)](https://ag.hexor.cy/applications/argocd/paperless) |
--- a/k8s/apps/furumi-dev/external-secrets.yaml
+++ b/k8s/apps/furumi-dev/external-secrets.yaml
@@ -20,8 +20,6 @@ spec:
          {{ .session_secret }}
        PG_STRING: |-
          postgres://furumi_dev:{{ .pg_pass }}@psql.psql.svc:5432/furumi_dev
-        PLAYER_API_KEY: |-
-          {{ .player_api_key }}
  data:
    - secretKey: client_id
      sourceRef:
@@ -47,14 +45,6 @@ spec:
      remoteRef:
        key: 960735e6-2cc9-4b68-9bd3-e6786e5a0cd6
        property: fields[2].value
-    - secretKey: player_api_key
-      sourceRef:
-        storeRef:
-          name: vaultwarden-login
-          kind: ClusterSecretStore
-      remoteRef:
-        key: 960735e6-2cc9-4b68-9bd3-e6786e5a0cd6
-        property: fields[3].value
    - secretKey: pg_pass
      sourceRef:
        storeRef:
--- a/k8s/apps/furumi-dev/ingress.yaml
+++ b/k8s/apps/furumi-dev/ingress.yaml
@@ -22,13 +22,20 @@ spec:
    - host: music-dev.hexor.cy
      http:
        paths:
-          - path: /
+          - path: /api
            pathType: Prefix
            backend:
              service:
                name: furumi-dev-web-player
                port:
                  number: 8080
+          - path: /
+            pathType: Prefix
+            backend:
+              service:
+                name: furumi-dev-node-player
+                port:
+                  number: 3001
  tls:
    - secretName: furumi-tls
      hosts:
--- a/k8s/apps/furumi-dev/kustomization.yaml
+++ b/k8s/apps/furumi-dev/kustomization.yaml
@@ -7,4 +7,5 @@ resources:
  - external-secrets.yaml
  - ingress.yaml
  - web-player.yaml
+  - node-player.yaml
  - metadata-agent.yaml
--- a/k8s/apps/furumi-dev/node-player.yaml
+++ b/k8s/apps/furumi-dev/node-player.yaml
@@ -0,0 +1,53 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: furumi-dev-node-player
+  labels:
+    app: furumi-dev-node-player
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: furumi-dev-node-player
+  template:
+    metadata:
+      labels:
+        app: furumi-dev-node-player
+    spec:
+      nodeSelector:
+        kubernetes.io/hostname: master.tail2fe2d.ts.net
+      containers:
+        - name: furumi-dev-node-player
+          image: ultradesu/furumi-node-player:dev
+          imagePullPolicy: Always
+          env:
+            - name: PORT
+              value: "3001"
+            - name: BASE_URL
+              value: "https://music-dev.hexor.cy"
+            - name: FRONTEND_ORIGIN
+              value: "https://music-dev.hexor.cy"
+            - name: SESSION_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: furumi-ng-creds
+                  key: OIDC_SESSION_SECRET
+            - name: OIDC_ISSUER_BASE_URL
+              valueFrom:
+                secretKeyRef:
+                  name: furumi-ng-creds
+                  key: OIDC_ISSUER_URL
+            - name: OIDC_CLIENT_ID
+              valueFrom:
+                secretKeyRef:
+                  name: furumi-ng-creds
+                  key: OIDC_CLIENT_ID
+            - name: OIDC_CLIENT_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: furumi-ng-creds
+                  key: OIDC_CLIENT_SECRET
+          ports:
+            - name: http
+              containerPort: 3001
+              protocol: TCP
--- a/k8s/apps/furumi-dev/service.yaml
+++ b/k8s/apps/furumi-dev/service.yaml
@@ -26,7 +26,23 @@ spec:
  selector:
    app: furumi-dev-web-player
  ports:
-    - name: web-ui
+    - name: http
      protocol: TCP
      port: 8080
      targetPort: 8080
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: furumi-dev-node-player
+  labels:
+    app: furumi-dev-node-player
+spec:
+  type: ClusterIP
+  selector:
+    app: furumi-dev-node-player
+  ports:
+    - name: http
+      protocol: TCP
+      port: 3001
+      targetPort: 3001
--- a/k8s/apps/furumi-dev/web-player.yaml
+++ b/k8s/apps/furumi-dev/web-player.yaml
@@ -51,17 +51,12 @@ spec:
                secretKeyRef:
                  name: furumi-ng-creds
                  key: PG_STRING
-            - name: FURUMI_PLAYER_API_KEY
-              valueFrom:
-                secretKeyRef:
-                  name: furumi-ng-creds
-                  key: PLAYER_API_KEY
            - name: FURUMI_PLAYER_STORAGE_DIR
              value: "/media"
            - name: RUST_LOG
              value: "info"
          ports:
-            - name: web-ui
+            - name: http
              containerPort: 8080
              protocol: TCP
          volumeMounts:
@@ -72,4 +67,3 @@ spec:
          hostPath:
            path: /k8s/furumi-dev/library
            type: DirectoryOrCreate
-
--- a/k8s/apps/gitea/deployment.yaml
+++ b/k8s/apps/gitea/deployment.yaml
@@ -127,14 +127,14 @@ spec:
        - name: gitea-runner
          image: gitea/act_runner:nightly
          resources:
-            requests:
-              cpu: "100m"
-              memory: "256Mi"
-              ephemeral-storage: "1Gi"
-            limits:
-              cpu: "3000m"
-              memory: "4Gi"
-              ephemeral-storage: "28Gi"
+            #requests:
+            #  cpu: "100m"
+            #  memory: "256Mi"
+            #  ephemeral-storage: "1Gi"
+            #limits:
+            #  cpu: "3000m"
+            #  memory: "4Gi"
+            #  ephemeral-storage: "28Gi"
          volumeMounts:
            - name: docker-sock
              mountPath: /var/run/docker.sock
--- a/k8s/apps/pasarguard/daemonset.yaml
+++ b/k8s/apps/pasarguard/daemonset.yaml
@@ -113,7 +113,7 @@ spec:
              mountPath: /scripts
      containers:
        - name: pasarguard-node
-          image: 'pasarguard/node:v0.2.1'
+          image: 'pasarguard/node:v0.3.0'
          imagePullPolicy: Always
          command:
            - /bin/sh
--- a/k8s/core/authentik/kustomization.yaml
+++ b/k8s/core/authentik/kustomization.yaml
@@ -11,7 +11,7 @@ resources:
 helmCharts:
  - name: authentik
    repo: https://charts.goauthentik.io
-    version: 2026.2.1
+    version: 2026.2.2
    releaseName: authentik
    namespace: authentik
    valuesFile: values.yaml
--- a/k8s/core/authentik/values.yaml
+++ b/k8s/core/authentik/values.yaml
@@ -1,6 +1,6 @@
 global:
  image:
-    tag: "2026.2.1"
+    tag: "2026.2.2"

 authentik:
    error_reporting:
--- a/k8s/core/cert-manager/issuer.yaml
+++ b/k8s/core/cert-manager/issuer.yaml
@@ -18,11 +18,9 @@ spec:
              key: apiKey
        selector:
          dnsZones:
-            - "*.hexor.cy"
            - "*.hexor.ru"
            - "*.btwiusearch.net"
            - "hexor.ru"
-            - "hexor.cy"
            - "btwiusearch.net"
      - dns01:
          route53:
@@ -35,7 +33,6 @@ spec:
              key: secretKey
        selector:
          dnsZones:
-            - "ps.hexor.cy"
-            - "of.hexor.cy"
-            - "matrix.hexor.cy"
+            - "*.hexor.cy"
+            - "hexor.cy"

--- a/k8s/core/prom-stack/loki-values.yaml
+++ b/k8s/core/prom-stack/loki-values.yaml
@@ -20,8 +20,11 @@ loki:
    filesystem:
      chunks_directory: /var/loki/chunks
      rules_directory: /var/loki/rules
+  compactor:
+    retention_enabled: true
  limits_config:
    reject_old_samples: false
+    retention_period: 1440h
    ingestion_rate_mb: 16
    ingestion_burst_size_mb: 32
    max_query_parallelism: 32
--- a/k8s/core/prom-stack/prom-values.yaml
+++ b/k8s/core/prom-stack/prom-values.yaml
@@ -78,7 +78,7 @@ prometheus:
          - targets: ['prom-a2s-exporter.counter-strike.svc:9841']
            labels: {instance: master}

-    retention: "99999d"
+    retention: "380d"
    retentionSize: "0"
    nodeSelector:
      kubernetes.io/hostname: master.tail2fe2d.ts.net
Author	SHA1	Message	Date
Gitea Actions Bot	3a8111b875	Auto-update README with current k8s applications All checks were successful Terraform / Terraform (pull_request) Successful in 28s Details Generated by CI/CD workflow on 2026-04-11 14:33:25 This PR updates the README.md file with the current list of applications found in the k8s/ directory structure.	2026-04-11 14:33:25 +00:00
ab	1dfbb27bd2	Update k8s/core/cert-manager/issuer.yaml All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 13s Details Check with kubeconform / lint (push) Successful in 7s Details Auto-update README / Generate README and Create MR (push) Successful in 7s Details	2026-04-11 14:32:52 +00:00
AB	a57d114a67	Bump pasarguard node All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 11s Details Check with kubeconform / lint (push) Successful in 8s Details Auto-update README / Generate README and Create MR (push) Successful in 8s Details	2026-04-11 10:13:39 +03:00
AB	39938e0e19	Fix issuer after route53 migration All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 10s Details Check with kubeconform / lint (push) Successful in 9s Details Auto-update README / Generate README and Create MR (push) Successful in 10s Details	2026-04-11 10:10:15 +03:00
AB	12e2a322fa	Changed retention policy for loki and prom All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 25s Details Check with kubeconform / lint (push) Successful in 14s Details Auto-update README / Generate README and Create MR (push) Successful in 9s Details	2026-04-11 09:42:26 +03:00
ab	ef082982c6	Update k8s/core/authentik/kustomization.yaml All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 6s Details Check with kubeconform / lint (push) Successful in 15s Details Auto-update README / Generate README and Create MR (push) Successful in 13s Details	2026-04-08 22:20:34 +00:00
ab	0f590a5659	Update k8s/core/authentik/kustomization.yaml Some checks failed Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Has been cancelled Details Check with kubeconform / lint (push) Has been cancelled Details Auto-update README / Generate README and Create MR (push) Has been cancelled Details	2026-04-08 22:05:29 +00:00
ab	852234ff8a	Update k8s/core/authentik/values.yaml Some checks failed Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Has been cancelled Details Check with kubeconform / lint (push) Has been cancelled Details Auto-update README / Generate README and Create MR (push) Has been cancelled Details	2026-04-08 21:56:37 +00:00
ab	521ba6c53f	Update k8s/core/authentik/kustomization.yaml Some checks failed Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Has been cancelled Details Check with kubeconform / lint (push) Has been cancelled Details Auto-update README / Generate README and Create MR (push) Has been cancelled Details	2026-04-08 21:56:23 +00:00
Ultradesu	c7176155c5	Added gurumi node player. All checks were successful Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Successful in 13s Details Check with kubeconform / lint (push) Successful in 25s Details Auto-update README / Generate README and Create MR (push) Successful in 10s Details	2026-04-08 15:18:29 +01:00
ab	af66893c23	Update k8s/apps/gitea/deployment.yaml Some checks failed Update Kubernetes Services Wiki / Generate and Update K8s Wiki (push) Has been cancelled Details Check with kubeconform / lint (push) Has been cancelled Details Auto-update README / Generate README and Create MR (push) Has been cancelled Details	2026-04-08 14:13:27 +00:00