Run any Skill in Manus with one click

galaxy-rebooter

Orchestrate and execute safe, sequential reboot protocols across the Marshian Galaxy systems including Kubernetes nodes (workers and control planes), srv2, wireguard, and pihole.

Run Skill in Manus

Overview

Orchestrate and execute safe, sequential reboot protocols across the Marshian Galaxy systems including Kubernetes nodes (workers and control planes), srv2, wireguard, and pihole.

Install command

npx skills add https://github.com/icub3d/dotfiles --skill galaxy-rebooter

Copy and paste this command into Claude Code to install the skill

Source

icub3d/dotfiles

Stars0

Forks0

UpdatedJune 3, 2026 at 22:01

SKILL.md

readonly

name	galaxy-rebooter
description	Orchestrate and execute safe, sequential reboot protocols across the Marshian Galaxy systems including Kubernetes nodes (workers and control planes), srv2, wireguard, and pihole.

Galaxy Rebooter Skill

Overview

The galaxy-rebooter skill manages the safe, sequential rebooting of the "Marshian Galaxy" home infrastructure. The process is designed to maintain control plane high availability and data plane stability during reboots (such as after Linux kernel updates).

It leverages the custom helpers/reboot-galaxy.nu Nushell script to automate draining, cordoning, rebooting, and verifying each node and VM.

Infrastructure Nodes

The reboot sequence spans four groups of hosts:

Node Group	Hostnames	OS / Role	Reboot Command	Cordon/Drain?
K8s Workers	`k8s4`, `k8s3`	Alpine Linux / Kubernetes Worker	`doas reboot`	Yes
K8s Control Planes	`k8s2`, `k8s1`, `k8s0`	Alpine Linux / K8s Control Plane & Worker	`doas reboot`	Yes
Alpine Services	`srv2`, `wireguard`	Alpine Linux VMs (Minecraft/NFS, VPN)	`doas reboot`	No
Debian Services	`pihole`	Debian VM (DNS/Ad-blocker)	`sudo reboot`	No

Safe Reboot Workflow

When tasked with rebooting the systems, follow this workflow sequentially:

graph TD
    Start([Start Reboot Protocol]) --> CheckCluster[1. Run kubectl get nodes]
    CheckCluster --> RebootWorkers[2. Safe Reboot Workers sequentially]
    RebootWorkers --> RebootCP[3. Safe Reboot Control Planes sequentially]
    RebootCP --> RebootAlpine[4. Reboot srv2 and wireguard]
    RebootAlpine --> RebootDebian[5. Reboot pihole]
    RebootDebian --> FinalVerify[6. Final Verification & VIP Check]
    FinalVerify --> End([Done])

1. Pre-Flight Check

Run kubectl get nodes to verify that all Kubernetes nodes are healthy and scheduling before initiating any reboots.

2. Executing the Reboot Script

Run the custom reboot script:

nu helpers/reboot-galaxy.nu

The script automates:

Draining and Cordoning the target K8s node (kubectl drain <node> --ignore-daemonsets --delete-emptydir-data --force).
Rebooting the node via SSH.
Waiting for SSH connectivity to return.
Waiting for the node to report Ready in Kubernetes.
Uncordoning the node (kubectl uncordon <node>).
Verifying Service VIP accessibility (using curl to check https://git.marsh.gg via Cilium).

3. Handling Transient API Server Errors (Control Plane Reboots)

When control plane nodes (k8s2, k8s1, k8s0) reboot, the Kubernetes API server may become temporarily unavailable or return auth/forbidden/refused errors while services restart.

Robustness: Ensure the wait-for-k8s-node function wraps kubectl get node inside a try / catch block to handle transient failures gracefully and retry instead of crashing.
Manual Intervention: If the script aborts mid-reboot, check node status with kubectl get nodes. If a node returned online but remains cordoned, run kubectl uncordon <node>.

4. Resuming / Running Subsections

If the reboot protocol is interrupted (e.g., during the control plane restarts) and you only need to reboot the service VMs, you can run a targeted Nushell script or command block to reboot the remaining nodes safely without repeating the Kubernetes reboots:

# Run only for services
ssh srv2 "doas reboot"
ssh wireguard "doas reboot"
ssh pihole "sudo reboot"

Critical Nushell Syntax Rules

When editing or writing Nushell helper scripts for the Marshian Galaxy, follow these rules:

Avoid (exit inside Interpolated Strings:
- In double-quoted interpolated strings ($"..."), any expression inside parentheses (...) is parsed as a subexpression.
- If a literal string contains (exit code: ...) or similar, the Nushell parser will treat it as an invocation of the built-in exit command. Because exit expects an integer parameter, this will throw an expected int compilation error.
- Fix: Use alternative syntax like - exit code: ... or single quotes, or concatenate strings to avoid putting (exit inside a double-quoted interpolated block.
Piping to complete requires External Commands:
- Nushell's complete command is designed exclusively for external programs (e.g., curl, ssh).
- Using complete on internal/built-in commands (e.g., http head) will throw a runtime error.
- Fix: Use external tools like curl -I -s --max-time 5 when you need to pipe execution results to complete to inspect exit codes.

Galaxy Rebooter Skill

Overview

It leverages the custom helpers/reboot-galaxy.nu Nushell script to automate draining, cordoning, rebooting, and verifying each node and VM.

Infrastructure Nodes

The reboot sequence spans four groups of hosts:

Node Group	Hostnames	OS / Role	Reboot Command	Cordon/Drain?
K8s Workers	`k8s4`, `k8s3`	Alpine Linux / Kubernetes Worker	`doas reboot`	Yes
K8s Control Planes	`k8s2`, `k8s1`, `k8s0`	Alpine Linux / K8s Control Plane & Worker	`doas reboot`	Yes
Alpine Services	`srv2`, `wireguard`	Alpine Linux VMs (Minecraft/NFS, VPN)	`doas reboot`	No
Debian Services	`pihole`	Debian VM (DNS/Ad-blocker)	`sudo reboot`	No

Safe Reboot Workflow

When tasked with rebooting the systems, follow this workflow sequentially:

graph TD
    Start([Start Reboot Protocol]) --> CheckCluster[1. Run kubectl get nodes]
    CheckCluster --> RebootWorkers[2. Safe Reboot Workers sequentially]
    RebootWorkers --> RebootCP[3. Safe Reboot Control Planes sequentially]
    RebootCP --> RebootAlpine[4. Reboot srv2 and wireguard]
    RebootAlpine --> RebootDebian[5. Reboot pihole]
    RebootDebian --> FinalVerify[6. Final Verification & VIP Check]
    FinalVerify --> End([Done])

1. Pre-Flight Check

Run kubectl get nodes to verify that all Kubernetes nodes are healthy and scheduling before initiating any reboots.

2. Executing the Reboot Script

Run the custom reboot script:

nu helpers/reboot-galaxy.nu

The script automates:

Draining and Cordoning the target K8s node (kubectl drain <node> --ignore-daemonsets --delete-emptydir-data --force).
Rebooting the node via SSH.
Waiting for SSH connectivity to return.
Waiting for the node to report Ready in Kubernetes.
Uncordoning the node (kubectl uncordon <node>).
Verifying Service VIP accessibility (using curl to check https://git.marsh.gg via Cilium).

3. Handling Transient API Server Errors (Control Plane Reboots)

When control plane nodes (k8s2, k8s1, k8s0) reboot, the Kubernetes API server may become temporarily unavailable or return auth/forbidden/refused errors while services restart.

Robustness: Ensure the wait-for-k8s-node function wraps kubectl get node inside a try / catch block to handle transient failures gracefully and retry instead of crashing.
Manual Intervention: If the script aborts mid-reboot, check node status with kubectl get nodes. If a node returned online but remains cordoned, run kubectl uncordon <node>.

4. Resuming / Running Subsections

# Run only for services
ssh srv2 "doas reboot"
ssh wireguard "doas reboot"
ssh pihole "sudo reboot"

Critical Nushell Syntax Rules

When editing or writing Nushell helper scripts for the Marshian Galaxy, follow these rules:

Avoid (exit inside Interpolated Strings:
- In double-quoted interpolated strings ($"..."), any expression inside parentheses (...) is parsed as a subexpression.
- If a literal string contains (exit code: ...) or similar, the Nushell parser will treat it as an invocation of the built-in exit command. Because exit expects an integer parameter, this will throw an expected int compilation error.
- Fix: Use alternative syntax like - exit code: ... or single quotes, or concatenate strings to avoid putting (exit inside a double-quoted interpolated block.
Piping to complete requires External Commands:
- Nushell's complete command is designed exclusively for external programs (e.g., curl, ssh).
- Using complete on internal/built-in commands (e.g., http head) will throw a runtime error.
- Fix: Use external tools like curl -I -s --max-time 5 when you need to pipe execution results to complete to inspect exit codes.

galaxy-rebooter

Galaxy Rebooter Skill

Overview

Infrastructure Nodes

Safe Reboot Workflow

1. Pre-Flight Check

2. Executing the Reboot Script

3. Handling Transient API Server Errors (Control Plane Reboots)

4. Resuming / Running Subsections

Critical Nushell Syntax Rules

More from this repository

Galaxy Rebooter Skill

Overview

Infrastructure Nodes

Safe Reboot Workflow

1. Pre-Flight Check

2. Executing the Reboot Script

3. Handling Transient API Server Errors (Control Plane Reboots)

4. Resuming / Running Subsections

Critical Nushell Syntax Rules

More from this repository