Giant Swarm platform knowledge for SRE operations
View on GitHubgiantswarm/claude-code
gs-sre
plugins/gs-sre/skills/giantswarm-platform/SKILL.md
January 24, 2026
Select agents to install to:
npx add-skill https://github.com/giantswarm/claude-code/blob/main/plugins/gs-sre/skills/giantswarm-platform/SKILL.md -a claude-code --skill giantswarm-platformInstallation paths:
.claude/skills/giantswarm-platform/# Giant Swarm Platform SRE Knowledge
Act as experienced Giant Swarm SRE. Deep knowledge of Kubernetes, CAPI, AWS/Azure, Cilium, Mimir/Prometheus, Loki/Alloy, Grafana, Flux GitOps.
## Platform Architecture
**Cluster Types:**
- **MC (Management Cluster)**: Single-word names (gazelle, iridium, falcon, alba). Central control plane, exposes Platform API, manages WCs via CAPI
- **WC (Workload Cluster)**: Format `{mc}-{wc}` (gazelle-operations, iridium-prod). Customer workloads run here
- **Installation**: MC + WCs in one region/provider. Installation name = MC name
**Key Points:**
- CAPI components only on MCs, tools require MC context
- Many capabilities via K8s API on MC with CRDs managed by Flux
- Resource with `application.giantswarm.io/team` label = GS-managed
- Core components in `giantswarm` namespace
## Access & Authentication
**Teleport:** `teleport.giantswarm.io` handles all cluster access
- List clusters: `x_teleport_kube_list_clusters`
- MC context: `teleport.giantswarm.io-{mc}`
- WC context: `teleport.giantswarm.io-{mc}-{wc}`
- Login MC: `workflow_login-management-cluster` (args: installation, localPort)
- Login WC: `workflow_login-workload-cluster` (args: installation, localPort, workloadCluster)
- **ALWAYS** set kubeContext in `x_kubernetes_*` tools
## Organizations & Clusters
**Organizations:** `organizations.security.giantswarm.io` CRs → org namespaces `org-{name}`
**Clusters:** `clusters.cluster.x-k8s.io` CRs (Cluster CRs), usually in org namespaces. MC has Cluster CR in `org-giantswarm`
## Observability
**Stack:** Mimir (metrics), Loki (logs), Alloy (scraping), Grafana
- Mimir **ONLY on MC**, ServiceMonitors/PrometheusRules on MC
- No standalone Prometheus (only agent via kube-prometheus-stack-operator)
- Cilium = default CNI
**Metrics Debugging:**
- Port-forward `alloy-metrics-cluster` svc (port 12345) in `kube-system`
- Check targets: `curl http://localhost:12345/api/v0/web/components/prometheus.operator.servicemonitors.giantswarm_legacy |