A curated collection of production-ready Helm charts for open-source cloud-native applications. This repository provides secure, well-documented, and configurable Helm charts following cloud-native best practices (project name "nonami").
| Chart | Description |
|---|---|
| ClusterPirate | Client agent for the CloudPirates Managed Observability Platform to connect your Kubernetes cluster to our infrastructure |
| Common | A library chart for common templates and helper functions |
| MariaDB | High-performance, open-source relational database server that is a drop-in replacement for MySQL |
| MinIO | High Performance Object Storage compatible with Amazon S3 APIs |
| MongoDB | MongoDB a flexible NoSQL database for scalable, real-time data management |
| PostgreSQL | The World's Most Advanced Open Source Relational Database |
| RabbitMQ | A messaging broker that implements the Advanced Message Queuing Protocol (AMQP) |
| Redis | In-memory data structure store, used as a database, cache, and message broker |
| TimescaleDB | TimescaleDB is a PostgreSQL extension for high-performance real-time analytics on time-series and event data |
| Valkey | High performance in-memory data structure store, fork of Redis |
- Kubernetes 1.24+
- Helm 3.2.0+
- PV provisioner support in the underlying infrastructure (if persistence is enabled)
# From repository
helm install my-release oci://registry-1.docker.io/cloudpirates/<chartname>
# From local clone
helm install my-release ./charts/<chart-name>All charts in this repository provide:
- Cryptographically Signed: All charts are signed with Cosign for supply chain security
- Non-root containers by default
- Read-only root filesystems where possible
- Dropped Linux capabilities
- Security contexts configured
- No hardcoded credentials
- Comprehensive health checks (liveness, readiness, startup probes)
- Resource requests and limits support
- Persistent storage configurations
- Rolling update strategies
- Health check endpoints
- Extensive values.yaml with detailed documentation
- Support for existing secrets and ConfigMaps
- Flexible ingress configurations
- Service account customization
- Common labels and annotations support
Each chart provides extensive configuration options through values.yaml. Key configuration areas include:
- Authentication & Security: User credentials, existing secrets, security contexts
- Storage: Persistent volumes, storage classes, backup configurations
- Networking: Services, ingress, network policies
- Scaling: Replica counts, autoscaling, resource limits
- Monitoring: Metrics, service monitors, health checks
Refer to individual chart READMEs for detailed configuration options.
- Follow Patterns: Use existing charts as templates
- Test Thoroughly: Ensure charts pass linting and installation tests
- Document Completely: Include comprehensive README and parameter documentation
# Lint chart
helm lint ./charts/<chart-name>
# Render templates locally
helm template test-release ./charts/<chart-name> -n test
# Install for testing
helm install test-release ./charts/<chart-name> -n test
# Package chart
helm package ./charts/<chart-name>For issues specific to these Helm charts:
- Check individual chart README files for troubleshooting
- Review chart documentation and examples
- Verify configuration values
- Open an issue on GitHub