This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Components

The components used by Portefaix

Infrastructure management

Terraform: Bootstraps and manages the cloud provider infrastructure.
Crossplane: Kubernetes-native infrastructure management.

Cluster management

Argo CD: Reconciles kubernetes clusters with this repository.
Kyverno: Policy engine supporting validate, mutate, generate, and cleanup rules.
Renovate: Automatic updates for applications via pull requests.

Secrets

External Secrets: Synchronizes secrets from Doppler into Kubernetes.
AKeyless: A secrets management platform.

Networking

Cilium: eBPF-based CNI & service mesh.
Cert Manager: Automatic Let’s Encrypt certificates.

Security

Falco: The Cloud Native Runtime Security
Authentik: Identity Provider.
Trivy: Kubernetes and container vulnerability scanner.
Tetragon: eBPF-based security observability and runtime enforcement.

Observability

Grafana: Visualization platform.
Prometheus: Monitoring system.
Loki: Log aggregation system.
Tempo: High-scale distributed tracing backend
Mimir: Horizontally scalable TSDB for long-term storage for Prometheus
Alloy: The OpenTelemetry Distribution from Grafana

Storage