askari is provisioned as IaC: Terraform owns its existence too, generalizing ADR-006 from "Proxmox VM existence" to Proxmox + Hetzner (new hetznercloud/hcloud provider, hetzner_vm module, offsite stack with local state). CAX11 (ARM) in Helsinki on Debian 13, behind a TF-managed Hetzner Cloud Firewall (SSH-from-ubongo now; NetBird ports in M4). Token via TF_VAR_hcloud_token from vault.hetzner.token. Handoff stays ADR-009-shaped (tf_to_inventory.py extended to emit askari into offsite_hosts). State in the ADR-022 backup scope; DR via terraform import. Amends ADR-006/009/020/007/016. Point ROADMAP.md M2 at the spec. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| access | ||
| backup | ||
| decisions | ||
| hardware | ||
| reviews | ||
| runbooks | ||
| security | ||
| superpowers | ||
| testing | ||
| CAPABILITIES.md | ||
| FRICTION.md | ||
| README.md | ||
| ROADMAP.md | ||
| TODO.md | ||
docs/
Project documentation.
decisions/— Architecture Decision Records (ADRs): the "why" behind the design. Numbered from 001; each records context, the decision, and what was ruled out.runbooks/— step-by-step operational procedures (add a host, add a role, rotate secrets).
For what is actually built vs only designed, see STATUS.md at the repo root —
the ADRs describe intent, not necessarily current reality.