Personal configuration repository — infrastructure docs, cloud configs, certification & study notes, reusable blueprints, dev environment setup, and a hand-built VS Code extension (Harp). The whole repo is published as a static site.
Structure
.
├── .claude/skills/ # Claude Code skills (format-vault, add-site-content)
├── .github/workflows/ # CI — build & deploy the site to GitHub Pages
├── blueprints/ # Reusable infrastructure blueprints
│ └── 01-terragrunt/ # Multi-account Terragrunt setup, AWS provider
├── books/ # Technical books
│ └── golang/
├── dotfiles/ # Personal dotfiles
│ ├── .ssh/ # SSH config (github.com, gitlab.com)
│ ├── git/ # Git config (user, GPG signing, aliases)
│ └── starship/ # Starship prompt (harp palette, k8s/AWS/TF/Helm context)
├── garden/ # Quartz static site (generated content/ & public/ gitignored)
├── obsidian/ # Knowledge base (Obsidian vault)
│ ├── configs/ # Infrastructure & cloud configurations
│ │ ├── aws/ # S3 rollback, Transit Gateway, RDS IAM Auth
│ │ ├── commands/ # Shell snippets & macOS recipes
│ │ ├── conventions/ # Resource naming convention
│ │ ├── k8s/ # Karpenter upgrade how-to (EKS)
│ │ ├── starrocks/ # OAuth2, roles, disaster recovery
│ │ └── terraform/ # State restore from S3 versions (rollback)
│ ├── certifications/ # Certification study notes
│ │ ├── aws/ # Cloud Practitioner (Domains 1–2), AI Practitioner (planned)
│ │ └── terraform-004/ # Terraform Associate (004)
│ └── studying/ # Active study notes
│ ├── cisco/ # Networking basics (18 notes, Ukrainian)
│ ├── observability/ # Metrics, logs, traces, profiles
│ └── vocabulary/ # en→uk deck (Vocab Collector plugin output)
└── vscode/ # VS Code settings, extensions, fonts
├── fonts/ # MonoLisa, FiraMono Nerd Font
├── plugins/
│ └── harp/ # Own extension: HCL formatter + 12 themes + file icons
└── settings/ # settings.json, extension list
Obsidian Vault
Obsidian-powered knowledge base with infrastructure configurations, runbooks, and study notes. See MOC.md for the full index.
Configurations
| Category | Topic | Description |
|---|---|---|
| Conventions | Resource Naming Convention | One name string as Terraform id, repo path, and runtime name; shared/tenant/scoped patterns, region tokens, tag set |
| AWS | S3 Rollback Strategy | S3 bucket layout with commit SHA versioning, Vite dynamic base path, CloudFront |
| AWS | Transit Gateway | Hub-and-spoke VPC networking, Terraform module, RAM sharing, CIDR planning |
| AWS | RDS IAM Auth | Token-based RDS access, IAM policy, Kubernetes Pod Identity / IRSA |
| Kubernetes | Upgrading Karpenter on EKS | Safe Karpenter upgrade how-to — CRDs first (separate karpenter-crd release), one-time CRD adoption, cumulative per-version IAM notes, verify & rollback |
| StarRocks | OAuth2 Entra ID | SSO via Microsoft Entra ID, app registration, claims transformation |
| StarRocks | Roles | Built-in roles with privilege matrices, custom role examples |
| StarRocks | Disaster Recovery | Six-phase DR runbook with AWS Backup and Terragrunt |
| Terraform | State Restore from S3 Versions | State restore from S3 object versions after an accidental state rm |
| Commands | Useful scripts | Short reusable shell snippets (e.g. clean .terragrunt-cache) |
| Commands | Bootable Win11 USB on macOS | diskutil, rsync, and wimlib flow to split install.wim past FAT32 4 GB |
Certifications
HashiCorp Certified: Terraform Associate (004)
| Section | Topics |
|---|---|
| Core | Infrastructure as Code, Terraform overview, plugins, state, CLI commands, dependency graph |
| Configuration Language | Providers, resources, data sources, outputs, meta-arguments, variables, type constraints, sensitive data, modules |
| Internals | Debugging Terraform — TF_LOG, TF_LOG_CORE, TF_LOG_PROVIDER, TF_LOG_PATH |
AWS Certified Cloud Practitioner
| Domain | Topics |
|---|---|
| Domain 1 — Cloud Concepts | Cloud computing & its six advantages, deployment models (cloud/private/hybrid), AWS global infrastructure (Regions & AZs), Well-Architected & CAF, 7 Rs migration strategies |
| Domain 2 — Security and Compliance | AWS shared responsibility model — security of the cloud (AWS) vs in the cloud (customer) |
AWS Certified AI Practitioner — folder reserved for upcoming notes.
Studying
| Topic | Notes |
|---|---|
| Cisco Networking Basics | Основи роботи в мережі — 18 notes (Ukrainian) + course PDF: network types, data transmission, TCP/IP & OSI, IPv4/IPv6 addressing, DHCP, ARP, routing, transport & application layers |
| Observability | What is observability? — metrics, logs, traces, profiles |
Blueprints
Reusable infrastructure blueprints meant to be copied into real projects.
| Blueprint | Description |
|---|---|
01-terragrunt | Multi-account Terragrunt root with hierarchical provider_config.hcl / backend_config.hcl / variables.hcl lookup, S3 backend with use_lockfile, KMS, and an example AWS VPC component (tfr:///terraform-aws-modules/vpc/aws) |
Dotfiles
| File | Description |
|---|---|
git/.gitconfig | User identity, GPG commit signing, pull.rebase = true, aliases (pretty, p, cm, st) |
.ssh/config.txt | Per-host SSH config for github.com and gitlab.com with separate identity files |
starship/starship.toml | Starship prompt — harp_midnight palette, truncated …/parent/leaf CWD, k8s/AWS/Terraform/Helm/Go context modules |
VS Code
| Component | Details |
|---|---|
| Theme | 12 «harp — …» dark minimal themes from vscode/plugins/harp |
| File icons | «harp — minimal icons» (same extension) |
| Fonts | MonoLisa (editor), FiraMono Nerd Font (terminal) |
| Formatters | Harp (HCL), Prettier (default), Black (Python), HashiCorp (Terraform), Red Hat (YAML), Go |
| Extensions | 23 extensions (list) |
Harp — own VS Code extension
vscode/plugins/harp — an independent, zero-dependency
extension built in this repo (full docs in its README):
| Feature | Details |
|---|---|
| HCL formatter | Canonical terraform fmt style — a faithful port of hclwrite, byte-identical on a 2100+-file public corpus; golden tests + npm run sweep differential checker |
| Syntax highlighting | Self-contained TextMate grammar for .hcl |
| 12 color themes | Dark, low-contrast, one accent per theme; designed in-house |
| File icon theme | Minimal squares — outlined folders/quiet files, language-colored code files |
| Style switching | Harp: Select Theme Style — status bar neutral/accent × surfaces unified/separated |
Build & install locally: cd vscode/plugins/harp && task install-ext.
Books
| Title | Topic |
|---|---|
| Learning Go: An Idiomatic Approach to Real-World Go Programming | Go |
Static site
The whole repo is published as a Quartz v5 static site at configs.themaybe.uk (public, even though the repo is private).
| Piece | Detail |
|---|---|
| Framework | Quartz v5, vendored in garden/ |
| Content | generated from the repo’s own markdown + configs by garden/scripts/build-site-content.mjs (tags→frontmatter, secret redaction, code pages) |
| Deploy | .github/workflows/deploy.yml rebuilds and publishes on every push to main |
| Preview | node garden/scripts/build-site-content.mjs && npm --prefix garden run quartz -- build --serve → localhost:8080 |
Generated garden/content/ and garden/public/ are git-ignored. Full workflow in the add-site-content skill.
Skills
Claude Code skills under .claude/skills/:
| Skill | Purpose |
|---|---|
format-vault | Apply the vault house style (tags, callouts, <mark> highlights); keep MOC.md / README.md in sync |
add-site-content | Add, preview, and publish content on the static site |