t1k:web:devops:core

Field	Value
Module	`devops`
Version	`1.10.0`
Effort	`medium`
Tools	—

Keywords: CI/CD, Cloudflare Workers, devops, docker, GCP, kubernetes, serverless

How to invoke

/t1k:web:devops:core
[platform] [task]

DevOps Skill

Deploy and manage cloud infrastructure across Cloudflare, Docker, Google Cloud, and Kubernetes.

When to Use

Deploy serverless apps to Cloudflare Workers/Pages
Containerize apps with Docker, Docker Compose
Manage GCP with gcloud CLI (Cloud Run, GKE, Cloud SQL)
Kubernetes cluster management (kubectl, Helm)
GitOps workflows (Argo CD, Flux)
CI/CD pipelines, multi-region deployments
Security audits, RBAC, network policies

Platform Selection

Need	Choose
Sub-50ms latency globally	Cloudflare Workers
Large file storage (zero egress)	Cloudflare R2
SQL database (global reads)	Cloudflare D1
Containerized workloads	Docker + Cloud Run/GKE
Enterprise Kubernetes	GKE
Managed relational DB	Cloud SQL
Static site + API	Cloudflare Pages
Container orchestration	Kubernetes
Package management for K8s	Helm

Quick Start

# Cloudflare Worker
wrangler init my-worker && cd my-worker && wrangler deploy

# Docker
docker build -t myapp . && docker run -p 3000:3000 myapp

# GCP Cloud Run
gcloud run deploy my-service --image gcr.io/project/image --region us-central1

# Kubernetes
kubectl apply -f manifests/ && kubectl get pods

Cloudflare Platform

cloudflare-platform.md - Edge computing overview
cloudflare-workers-basics.md - Handler types, patterns
cloudflare-workers-advanced.md - Performance, optimization
cloudflare-workers-apis.md - Runtime APIs, bindings
cloudflare-r2-storage.md - Object storage, S3 compatibility
cloudflare-d1-kv.md - D1 SQLite, KV store
browser-rendering.md - Puppeteer automation

Docker

docker-basics.md - Dockerfile, images, containers
docker-compose.md - Multi-container apps

Google Cloud

gcloud-platform.md - gcloud CLI, authentication
gcloud-services.md - Compute Engine, GKE, Cloud Run, App Engine, Cloud SQL, Storage, plus deployment guides: docker-compose→GCE VM, Cloud Run service migration, stateful-store mapping, cost sizing & committed-use discounts

CI/CD & Self-Hosted Deploy

github-actions-self-hosted.md - Self-hosted runners (plain systemd + ARC), deploy.yml template, runner security

Kubernetes

kubernetes-basics.md - Core concepts, architecture, workloads
kubernetes-kubectl.md - Essential commands, debugging workflow
kubernetes-helm.md / kubernetes-helm-advanced.md - Helm charts, templates
kubernetes-security.md / kubernetes-security-advanced.md - RBAC, secrets
kubernetes-workflows.md / kubernetes-workflows-advanced.md - GitOps, CI/CD
kubernetes-troubleshooting.md / kubernetes-troubleshooting-advanced.md - Debug

Scripts

scripts/cloudflare-deploy.py - Automate Worker deployments
scripts/docker-optimize.py - Analyze Dockerfiles

Best Practices

Security: Non-root containers, RBAC, secrets in env vars, image scanning Performance: Multi-stage builds, edge caching, resource limits Cost: R2 for large egress, caching, right-size resources Development: Docker Compose local dev, wrangler dev, version control IaC

Resources

Cloudflare: https://developers.cloudflare.com
Docker: https://docs.docker.com
GCP: https://cloud.google.com/docs
Kubernetes: https://kubernetes.io/docs
Helm: https://helm.sh/docs

Gotchas

docker build --no-cache per CI run kills cache hit rate — use --cache-from against a registry layer.
K8s liveness vs readiness vs startup probes are not interchangeable — readiness blocks traffic; liveness restarts. Mixing them causes restart loops.
Helm chart values precedence: file → set → set-file → set-string — saw a session waste 4 hours debugging a set-string overriding a values.yaml.