Recipes

Helm Charts

Package, version, and ship your Kubernetes workloads with a single command. This recipe covers chart structure, templating, and production-grade defaults.

Chart scaffolding

Run helm create my-service. The generated tree includes Chart.yaml,values.yaml, and a templates/ directory. Delete the boilerplate Ingress and HPA if you do not need them.

Values-driven templating

Every resource reads from .Values. Use required for mandatory fields and default for sensible fallbacks. Keep image tag, replica count, and resource limits in values.yaml.

Production defaults

  • Set readinessProbe andlivenessProbe on every Deployment.
  • Pin container images by SHA256 digest, never by latest.
  • Define PodDisruptionBudgetfor workloads that must survive voluntary evictions.
  • Use helm lint andhelm template in CI before every merge.

Sealed Secrets

Never commit plaintext secrets. Encrypt them withkubeseal and store the resulting SealedSecret CR in the chart's templates. The cluster-side controller decrypts at apply time.

← Back to docs