Skip to content

Instantly share code, notes, and snippets.

View tam7t's full-sized avatar
🐶
woof

Tommy Murphy tam7t

🐶
woof
108 followers · 39 following
View GitHub Profile
@tam7t
tam7t / com.obsproject.Studio.Plugin.backgroundremoval.metainfo.xml
Last active October 24, 2022 17:38
obs-backgroundremover v0.4.0 flatpak
<?xml version="1.0" encoding="UTF-8"?>
<component type="addon">
<id>com.obsproject.Studio.Plugin.backgroundremoval</id>
<extends>com.obsproject.Studio</extends>
<name>obs-backgroundremoval Plugin</name>
<summary> An OBS plugin for removing background in portrait images (video), making it easy to replace the background when screen recording.</summary>
<url type="homepage">https://github.com/royshil/obs-backgroundremoval</url>
<metadata_license>CC0-1.0</metadata_license>
<project_license>MIT</project_license>
</component>
@tam7t
tam7t / go.mod
Last active May 20, 2022 17:46
grpd-status-demo
module github.com/tam7t/grpc-demo
go 1.17
require (
google.golang.org/grpc v1.40.0
google.golang.org/grpc/examples v0.0.0-20220215234149-ec717cad7395
)
require (
@tam7t
tam7t / cloudbuild.yaml
Last active March 17, 2022 18:45
Access Google Secret Manager from Cloud Build step
# Usage: gcloud builds submit --no-source
#
# Remember to first grant the cloud build service account permissions to access
# secret 'foo'
#
# gcloud beta secrets add-iam-policy-binding foo \
# --member=serviceAccount:<project-number>@cloudbuild.gserviceaccount.com \
# --role=roles/secretmanager.secretAccessor
steps:
# fetch the secret and write to a volume
@tam7t
tam7t / test gist
Created April 20, 2017 00:05
foobar
@tam7t
tam7t / build.sh
Created February 27, 2017 14:46
apt-get update && apt-get install -y --no-install-recommends \
wget
wget -O - http://apt.llvm.org/llvm-snapshot.gpg.key|apt-key add -
echo "deb http://apt.llvm.org/jessie/ llvm-toolchain-jessie-4.0 main
deb-src http://apt.llvm.org/jessie/ llvm-toolchain-jessie-4.0 main" >> /etc/apt/sources.list
apt-get update && apt-get install -y --no-install-recommends \
clang-4.0 \
@tam7t
tam7t / vault-statsd-mapping.conf
Last active November 5, 2020 13:45
Example vault statsd prometheus exporter mapping
vault.barrier.*
name="vault_barrier"
method="$1"
vault.consul.*
name="vault_consul"
method="$1"
vault.route.*.*
name="vault_route"
@tam7t
tam7t / certdump.go
Created September 1, 2016 19:02
certdump consul-template plugin for writing vault-generated certificates to separate files
package main
import (
"io/ioutil"
"log"
"os"
"os/user"
"strconv"
)
@tam7t
tam7t / securing-kubernetes.md
Last active August 30, 2024 02:29
Resources for Securing Kubernetes

Resources for Securing Kubernetes

A work in progress collection of resources for securing a kubernetes cluster.

Architecture

A good understanding of the k8s architecture and automating operations of your cluster is probably the best place to start:

It should also be noted that the kubelet api has no authentications and allows for remote code execution (this is how kubectl exec works).

@tam7t
tam7t / docker-compose.yml
Last active May 18, 2017 14:53
drone-gogs compose
gogs:
image: gogs/gogs:latest
ports:
- "3000:3000"
- "10022:22"
volumes:
- ./data:/data
drone:
image: drone/drone:0.4
# build: .
@tam7t
tam7t / cert.pem
Created December 14, 2015 17:49
-----BEGIN CERTIFICATE-----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