Creationshop/cannaiq
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
feat/minio-payload-storage
cannaiq/k8s/woodpecker-agent.yaml
Kelly e918234928 feat(ci): Add npm cache volume for faster typechecks 
- Create PVC for shared npm cache across CI jobs
- Configure Woodpecker agent to allow npm-cache volume mount
- Update typecheck steps to use shared cache directory
- First run populates cache, subsequent runs are ~3-4x faster

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-11 19:27:32 -07:00

109 lines
2.6 KiB
YAML
Raw Permalink Blame History

# Woodpecker CI Agent Deployment
# Runs in the K8s cluster to pick up CI jobs from ci.cannabrands.app
---
apiVersion: v1
kind: Namespace
metadata:
name: woodpecker
---
# PVC for npm cache - shared across CI jobs
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: npm-cache
namespace: woodpecker
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 5Gi
---
apiVersion: v1
kind: Secret
metadata:
name: woodpecker-agent-secret
namespace: woodpecker
type: Opaque
stringData:
WOODPECKER_AGENT_SECRET: "" # Get from CI server admin panel
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: woodpecker-agent
namespace: woodpecker
labels:
app: woodpecker-agent
spec:
replicas: 2
selector:
matchLabels:
app: woodpecker-agent
template:
metadata:
labels:
app: woodpecker-agent
spec:
serviceAccountName: woodpecker-agent
containers:
- name: agent
image: woodpeckerci/woodpecker-agent:latest
env:
- name: WOODPECKER_SERVER
value: "ci.cannabrands.app:443"
- name: WOODPECKER_AGENT_SECRET
valueFrom:
secretKeyRef:
name: woodpecker-agent-secret
key: WOODPECKER_AGENT_SECRET
- name: WOODPECKER_GRPC_SECURE
value: "true"
- name: WOODPECKER_BACKEND
value: "kubernetes"
- name: WOODPECKER_BACKEND_K8S_NAMESPACE
value: "woodpecker"
- name: WOODPECKER_BACKEND_K8S_VOLUME_SIZE
value: "10G"
# Allow CI steps to mount the npm-cache PVC
- name: WOODPECKER_BACKEND_K8S_VOLUMES
value: "npm-cache:/npm-cache"
resources:
limits:
memory: "512Mi"
cpu: "500m"
requests:
memory: "256Mi"
cpu: "100m"
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: woodpecker-agent
namespace: woodpecker
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: woodpecker-agent
rules:
- apiGroups: [""]
resources: ["pods", "pods/log", "secrets", "configmaps", "persistentvolumeclaims"]
verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
- apiGroups: [""]
resources: ["events"]
verbs: ["create"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: woodpecker-agent
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: woodpecker-agent
subjects:
- kind: ServiceAccount
name: woodpecker-agent
namespace: woodpecker
Reference in New Issue View Git Blame Copy Permalink