Skip to content

feat(migration): GKE deployment artifacts for atlas-prod [run-20260620-032937]#751

Open
sanjoy1234 wants to merge 1 commit into
terotuomala:mainfrom
sanjoy1234:feature/migration-atlas-prod-run-20260620
Open

feat(migration): GKE deployment artifacts for atlas-prod [run-20260620-032937]#751
sanjoy1234 wants to merge 1 commit into
terotuomala:mainfrom
sanjoy1234:feature/migration-atlas-prod-run-20260620

Conversation

@sanjoy1234

@sanjoy1234 sanjoy1234 commented Jun 20, 2026

Copy link
Copy Markdown

Migration PR — terotuomala/k8s-express-api-example → GKE atlas-prod

run_id: run-20260620-032937
Generated by: migration-harness (implement_migration phase)
Status: Pending manual approval before deploy

Summary

  • Dockerfile.api: multi-stage Node.js 20 alpine production build with non-root user (UID 1001)
  • Helm chart: k8s-express-api — deployment, service, ingress, HPA (minReplicas=1, maxReplicas=3), PDB (minAvailable=1), network policies (ingress + egress)
  • Migration plan: 6 phases, 4-day total effort
  • Risk register: 7 risks (R-H1 Redis 70%, R-H2 missing env 85%, 3M, 2L)

Build Evidence

Artifact Status
Dockerfile.api ✓ PASS — multi-stage node:20-alpine
Helm lint ✓ PASS — 0 failures, 0 chart failures
Docker build ✓ PASS — sha256:0100cfd82800c4723d3e85c5fda40a361c088353fe774985f2108d74b4ef79aa
Image push ✓ PASS — us-central1-docker.pkg.dev/scotiapoc-migration-demo/migration-demo/k8s-express-api:run-20260620
npm audit ⚠️ 3 vulnerabilities (1 moderate, 2 high) — remediation required before prod

Blocking Prerequisites (must resolve before deploy)

  • GITHUB_API_URL injected via k8s-express-api-secret (no default)
  • REDIS_DEFAULT_EXPIRATION injected via k8s-express-api-secret (no default)
  • Redis StatefulSet provisioned in atlas-prod namespace
  • npm audit vulnerabilities resolved or risk-accepted

Review Checklist

  • Dockerfile security review (non-root user, minimal image)
  • Helm values reviewed for atlas-prod resource limits
  • Network policy egress permits GitHub API (port 443)
  • Secret manifest verified for all required keys
  • Manual approval given for deploy to atlas-prod environment

🤖 Generated by migration-harness · run_id: run-20260620-032937

feat(migration): add GKE migration artifacts for atlas-prod [ST-001–S…
35b6f12 
…T-008]

- Dockerfile.api: multi-stage Node.js 20 alpine build with non-root user
- Helm chart: k8s-express-api with deployment, service, ingress, HPA, PDB, network policies
- migration-plan.md: 6-phase migration (0.5+0.5+0.5+1+0.5+1 day)
- risk-register.md: 7 risks identified (R-H1 Redis unavailability 70%, R-H2 missing env defaults 85%)

Image: us-central1-docker.pkg.dev/scotiapoc-migration-demo/migration-demo/k8s-express-api:run-20260620
Helm lint: PASS (0 failures)
Docker build: PASS (sha256:0100cfd82800c4723d3e85c5fda40a361c088353fe774985f2108d74b4ef79aa)

run_id: run-20260620-032937
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sanjoy1234