[ { "path": ".appveyor.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-24 16:19:35 +0000 (Mon, 24 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A p p V e y o r C I\n# ============================================================================ #\n\n# https://www.appveyor.com/docs/appveyor-yml/\n\nimage: Ubuntu\n\n# workaround for default JDK9 have old CA certs:\n#\n# https://github.com/appveyor/ci/issues/3833\n#\n# https://www.appveyor.com/docs/getting-started-with-appveyor-for-linux/#configuring-language-stack\n#\nstack: jdk 15\n\nskip_commits:\n files:\n - docs/*\n - '**/*.md'\n\n# https://www.appveyor.com/docs/how-to/ssh-to-build-worker/\nenvironment:\n APPVEYOR_SSH_KEY: ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAvihSRU+YjBKvKiacDfUoZ7ghoVMcwNh4cWIYUNFGZosXOzNtyOcBpIb71TCgLFhOd+aMWKXCEC67BpNSIjt+a/FLD27AwmgVHv6cPlE3G0JJ9zmIrNmx9511dshTsxUW2O0SbYG+3InuO7FUkSrld+kA1OucyjgmZU7/+Cs9shpAEOaIVYmGlpDGRucAHpwtckvdgRTtnA3WNZ/Qg1vU6Ik4Xm03vjrW6lSiuTffYO1kbdcMQ4IZBlzfmovOtXQ0PomvN5NMCpgOyQuoNlvyS11tOXoqNiWOkiLE15XEzAQth9hHbNiH8jHJbAtkHqWWh0KK4IUyNGvoL6QfNxsTlw== hari@anotherdimension\n\n# enable SSH session accessible via my public key\n#init:\n# - sh: curl -sflL 'https://raw.githubusercontent.com/appveyor/ci/master/scripts/enable-ssh.sh' | bash -e -\n\n# more useful at end to leverage .appveyor.yml tweaks like disabling broken mssql repo/dependencies, checking out project and building the core stuff happen first so we don't have to do all that manually in SSH session\non_finish:\n # set this in Settings -> Environment dynamically instead of here\n #- sh: export APPVEYOR_SSH_BLOCK=true\n #\n # workaround for https://github.com/appveyor/ci/issues/3373\n # and https://github.com/appveyor/ci/issues/3384\n #\n # has since been added to AppVeyor's own scripts:\n #\n # https://github.com/appveyor/ci/pull/3385\n #\n #- sh: curl -sflL 'https://raw.githubusercontent.com/HariSekhon/DevOps-Bash-tools/master/install/install_openssh.sh' | bash -e -\n #\n # https://www.appveyor.com/docs/how-to/ssh-to-build-worker/\n - sh: if [ \"$APPVEYOR_SSH_BLOCK\" = true ]; then curl -sflL 'https://raw.githubusercontent.com/appveyor/ci/master/scripts/enable-ssh.sh' | bash -e -; fi\n\ninstall:\n # workaround for:\n # Some packages could not be installed. This may mean that you have\n # requested an impossible situation or if you are using the unstable\n # distribution that some required packages have not yet been created\n # or been moved out of Incoming.\n # The following information may help to resolve the situation:\n #\n # The following packages have unmet dependencies:\n # mssql-server : Depends: libsasl2-modules-gssapi-mit but it is not going to be installed\n # E: Error, pkgProblemResolver::Resolve generated breaks, this may be caused by held packages.\n # bash-tools/Makefile.in:272: recipe for target 'apt-packages' failed\n # make[2]: *** [apt-packages] Error 123\n # make[2]: Leaving directory '/home/appveyor/projects/pylib'\n # bash-tools/Makefile.in:212: recipe for target 'system-packages' failed\n #\n # adding \"|| :\" to the end of these commands causes them to be silently ignored!\n - sudo sed -i '/https:\\/\\/packages.microsoft.com\\/ubuntu\\/.*\\/mssql-server/d' /etc/apt/sources.list\n - sudo apt purge -yq --allow-change-held-packages mssql-server\n # this prevents conflicts installing default-jdk - see https://github.com/appveyor/ci/issues/3411\n #- dpkg -l | awk '/openjdk/{print $2}' | DEBIAN_FRONTEND=noninteractive xargs sudo apt-get remove -y --allow-change-held-packages\n - setup/ci_bootstrap.sh\n - make\n\ntest_script:\n - make test\n\nbuild: off\n" }, { "path": ".bash.d/Makefile", "content": "#\n# Author: Hari Sekhon\n# Date: 2016-01-17 12:56:53 +0000 (Sun, 17 Jan 2016)\n#\n# vim:ts=4:sts=4:sw=4:noet\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\ninclude ../Makefile.in\n\nREPO := HariSekhon/DevOps-Bash-tools\n\nBASH_TOOLS := ..\n\n.PHONY: readme\nreadme:\n\t@source $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://github.com/$(REPO)/blob/master/.bash.d/README.md\"\n" }, { "path": ".bash.d/README.md", "content": "Advanced Bashrc Code - Interactive Functions, Aliases and Shell Customizations\n==============================================================\n\nAdvanced bashrc code I've been using for ~15 years, I've ported nearly 5000 lines to this public repo so far.\n\nAll `*.sh` files in this directory are automatically sourced by `.bashrc` at the top level which is itself designed to be sourced in your `$HOME/.bashrc`.\n\nTo disable any these source files, simply rename them to not match the `*.sh` glob, eg. => `*.sh.disabled`.\n\n- `aliases.sh` - general aliases\n- `functions.sh` - general functions eg. `pass` which prompts for a password which is saved to an environment variable and auto-populated in various top-level API querying scripts built on `curl_auth.sh`\n- `env.sh` - general environment variables and var/unvar functions for setting environment variables for the current and all new shell sessions\n- `paths.sh` - deduplicated adding to `$PATH` for lots of common places (eg. /usr/sbin, /usr/local/bin, ~/bin) and commands to clearly print one path per line for Bash `$PATH`, Perl `@INC` and Python `sys.path`. Also contains technology specific paths when there is no `.sh` file. All other includes use `add_PATH()` function defined here.\n- `.sh` - aliases, functions and environment variables to make interactive day-to-day use of a specific technologies easier\n - Cloud / Containerization / Virtualization:\n - `aws.sh` - [AWS](https://aws.amazon.com) functions:\n - `aws_env` - populates credentials from `~/.aws/credentials` / `~/.boto` section given as an argument to `$AWS_ACCESS_KEY` and `$AWS_SECRET_KEY` environment variables and sets `$AWS_PROFILE` to the profile name (defaults to the 'default' profile and creds if no argument is specified)\n - `aws_envs` - prints the available envs configured in the aws credentials file and stars the one currently in use\n - `awk_token` - generates a 24-hour MFA session token, exports it as `$AWS_SESSION_TOKEN` for use with [AWS CLI](https://aws.amazon.com/cli/), and saves it to `~/.aws/token` for loading to other shells that call `aws_env`\n - `docker.sh` - [Docker](https://www.docker.com/) convenient aliases and functions like clearing old containers and dangling image layers to clean up space\n - `kubernetes.sh` - [Kubernetes](https://kubernetes.io/) aliases and functions, managing contexts and namespaces even for periodically regenerated `.kube/config` with refreshed embedded certificates, switching between open source [Kubernetes](https://kubernetes.io/) and Redhat [OpenShift](https://www.openshift.com/) `kubectl` and `oc` commands, automating getting authentication token and Kubernetes API endpoints\n - `vagrant.sh` - [Vagrant](https://www.vagrantup.com/) aliases and functions\n - Automation / Distributed Systems:\n - `ansible.sh` - [Ansible](https://www.ansible.com) aliases and environment variables\n - `kafka.sh` - [Kafka](http://kafka.apache.org/) environment variables for Kerberos security and CLI appropriate heap size (avoids heap allocation failures on VMs that otherwise default to using larger server configured heap size), avoiding need for common broker and zookeeper arguments when using `kafka_wrappers/` scripts by setting your Kafka broker and zookeeper addresses once instead of in every command\n - Coding:\n - `git.sh` - [Git](https://git-scm.com/) aliases and functions\n - `mercurial.sh` - [Mercurial](https://www.mercurial-scm.org/) aliases and functions\n - `svn.sh` - [Svn](https://subversion.apache.org) aliases and functions\n - `java.sh` - [Java](https://www.java.com/en/) detection and setting of `$JAVA_HOME` for Linux and Mac environments\n - OS:\n - `apple.sh` - [Apple Mac OS X / macOS](https://en.wikipedia.org/wiki/MacOS) specific tricks\n - `linux.sh` - [Linux](https://en.wikipedia.org/wiki/Linux) specific miscellaneous bits like X.org\n - `network.sh` - network aliases and functions\n - `ssh.sh` - SSH convenience functions and key management\n - `ssh-agent.sh` / `gpg-agent.sh` - auto-starts SSH and GPG agents if not already running, stores and auto-sources their details for new shells to automatically use them\n - `title.sh` - auto-title tricks for Screen and Terminals\n\nMore script related functions can be found in the [lib/](https://github.com/HariSekhon/DevOps-Bash-tools/tree/master/lib) directory at the top level.\n" }, { "path": ".bash.d/aliases.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230,SC2139\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G e n e r a l A l i a s e s\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/paths.sh\"\n\n# manual local aliases\n# shellcheck disable=SC1090,SC1091\n[ -f ~/.aliases ] && . ~/.aliases\n\n# bash_tools defined in .bashrc\n# shellcheck disable=SC2154\nexport bashrc=~/.bashrc\nexport bashrc2=\"$bash_tools/.bashrc\"\nalias reload='. $bashrc'\nalias r='reload'\nalias rq='set +x; . $bashrc; set -x'\nalias bashrc='$EDITOR $bashrc && reload'\nalias bashrc2='$EDITOR $bashrc2 && reload'\nalias bashrclocal='$EDITOR $bashrc.local; reload'\nalias bashrc3=bashrclocal\nalias v='vim'\nalias vimrc='$EDITOR ~/.vimrc'\nalias screenrc='$EDITOR ~/.screenrc'\nalias aliases='$EDITOR $bashd/aliases.sh'\nalias ae=aliases\nalias be=bashrc\nalias be2=bashrc2\nalias be3=bashrc3\nalias se=screenrc\nalias ve=vimrc\nalias creds='$EDITOR ~/.env/creds'\nalias pbc=pbcopy\nalias pbp=pbpaste\n# keep emacs with no window, use terminal, not X, otherwise I'd run xemacs...\n#alias emacs=\"emacs -nw\"\n#em(){ emacs \"$@\" ; }\n#alias em=emacs\n#alias e=em\n#xe(){ xemacs $@ & }\n#alias x=xe\n\n# from DevOps-Perl-tools repo which must be in $PATH\n# done via functions.sh now\n#alias new=new.pl\n\n# not present on Mac\n#type tailf &>/dev/null || alias tailf=\"tail -f\"\nalias tailf=\"tail -f\" # tail -f is better than tailf anyway\nalias mv='mv -i'\nalias cp='cp -i'\n#alias rm='rm -i'\n# allows to re-use custommized less behaviour throughout profile without duplicating options\n#less='less -RFXig'\n#alias less='$less'\nexport LESS=\"-RFXig --tabs=4\"\n# will require LESS=\"-R\"\nif type -P pygmentize &>/dev/null; then\n # shellcheck disable=SC2016\n export LESSOPEN='| \"$bash_tools/python/pygmentize.sh\" \"%s\"'\nfi\nalias l='less'\nalias m='more'\nalias vi='vim'\n# used by vagrant now\n#alias v='vim'\nalias grep='grep --color=auto'\n# in functions.sh for multiple args now\n#alias envg=\"env | grep -i\"\nalias dec=\"decomment.sh\"\n\nalias dns='cat /etc/resolv.conf'\nalias hosts='sudo $EDITOR /etc/hosts'\nalias repos='$EDITOR $bash_tools/setup/repos.txt'\n\nalias path=\"echo \\$PATH | tr ':' '\\\\n' | less\"\nalias paths=path\n\nalias tmp=\"cd /tmp\"\n\nalias mksupportdir=\"mkdir -v support-bundle-$(date '+%F_%H%M')\"\n\n# not as compatible, better to call pypy explicitly or in #! line\n#if type -P pypy &>/dev/null; then\n# alias python=pypy\n#fi\n\n# shellcheck disable=SC2139\nbt=\"$(dirname \"${BASH_SOURCE[0]}\")/..\"\nexport bt\nalias bt='sti bt; cd $bt'\n\n# shellcheck disable=SC2154\nexport bashd=\"$bash_tools/.bash.d\"\nalias bashd='sti bashd; cd $bashd'\n\n#alias cleanshell='env - bash --rcfile /dev/null'\nalias cleanshell='env - bash --norc --noprofile'\nalias newshell='exec bash'\nalias rr='newshell'\n\nalias record=script\n\nalias dl=\"BACKGROUND_VIDEO=1 youtube_download_video.sh\"\n#alias vidopen=\"vidopen.sh\"\n#alias vidopenplay=\"PLAY_VIDEO=1 vidopen.sh\"\n\nalias l33tmode='welcome; retmode=on; echo l33tm0de on'\nalias leetmode=l33tmode\n\nalias hist=history\nalias clhist='HISTSIZE=0; HISTSIZE=5000'\nalias nohist='unset HISTFILE'\nalias histgrep='history | grep'\n\nexport LS_OPTIONS='-F'\nif is_mac; then\n export CLICOLOR=1 # equiv to using -G switch when calling\nelse\n export LS_OPTIONS=\"$LS_OPTIONS --color=auto\"\n export PS_OPTIONS=\"$LS_OPTIONS -L\"\nfi\n\nalias ls='ls $LS_OPTIONS'\n# omit . and .. in listall with -A instead of -a\nalias lA='ls -lA $LS_OPTIONS'\nalias la='ls -la $LS_OPTIONS'\nalias ll='ls -l $LS_OPTIONS'\nalias lh='ls -lh $LS_OPTIONS'\nalias lr='ls -ltrh $LS_OPTIONS'\nalias ltr='lr'\nalias lR='ls -lRh $LS_OPTIONS'\n\n# shellcheck disable=SC2086\nlw(){ ls -lh $LS_OPTIONS \"$(type -P \"$@\")\"; }\n\n# shellcheck disable=SC2086,SC2012\nlll(){ ls -l \"$(readlink -f \"${@:-.}\")\" | less -R; }\n\nalias cd..='cd ..'\nalias ..='cd ..'\nalias ...='cd ../..'\nalias ....='cd ../../..'\n#up(){\n# local times=\"${1:-1}\"\n# if ! [[ \"$times\" =~ ^[[:digit:]]$ ]]; then\n# echo \"How many directories to go up\"\n# echo\n# echo \"usage: up \"\n# return 1\n# fi\n# while [ \"$times\" -gt 0 ]; do\n# cd ..\n# times=$((times - 1))\n# done\n#}\n# use bare 'cd' instead, it's more standard\n#alias ~='cd ~'\n\nalias screen='screen -T $TERM'\n#alias mt=multitail\n#alias halt='shutdown -h now -P'\n# my pytools github repo\nalias ht='headtail.py'\n\nalias run='run.sh'\n\n# ============================================================================ #\n# GitHub / GitLab / BitBucket / Azure DevOps repo checkouts\n# ============================================================================ #\n\nexport github=~/github\nexport gitlab=~/gitlab\nexport azure_devops=~/azure-devops\nalias github=\"sti github; cd '$github'\";\nexport work=\"$github/work\"\nalias work=\"sti work; cd '$work'\"\n\nalias btup=\"bt; u; cd -\"\n\nexport bitbucket=~/bitbucket\nalias bitb='cd $bitbucket'\n# clashes with bitbucket-cli\n#alias bitbucket='cd $bitbucket'\n# used to gitbrowse to bitbucket now in git.sh\n#alias bb=bitbucket\n\nalias diag=diagrams\n\naliasdir(){\n local directory=\"$1\"\n local suffix=\"${2:-}\"\n [ -d \"$directory\" ] || return 0\n name=\"${directory##*/}\"\n name=\"${name//-/_}\"\n name=\"${name//./_}\"\n name=\"${name// /}\"\n # alias terraform /tf -> terra\n if [[ \"$name\" =~ ^(terraform|tf)$ ]]; then\n name=\"terra\"\n fi\n if [ -z \"${!name:-}\" ]; then\n export \"$name\"=\"$directory\"\n fi\n # don't clash with any binaries\n #if ! type -P \"${name}${suffix}\" &>/dev/null; then\n # don't clash with binaries or any previous defined aliases or functions\n if ! type \"${name}${suffix}\" &>/dev/null; then\n # shellcheck disable=SC2139,SC2140\n alias \"${name}${suffix}\"=\"sti $name; cd $directory\"\n elif ! type \"g${name}${suffix}\" &>/dev/null; then\n # shellcheck disable=SC2139,SC2140\n alias \"g${name}${suffix}\"=\"sti $name; cd $directory\"\n fi\n}\n\nfor basedir in \"$github\" \"$gitlab\" \"$bitbucket\" \"$azure_devops\"; do\n if [ -d \"$basedir\" ]; then\n for directory in \"$basedir/\"*; do\n aliasdir \"$directory\"\n if [[ \"$directory\" =~ /work$ ]]; then\n for workdir in \"$directory/\"*; do\n aliasdir \"$workdir\" \"w\" # work dirs should have a w suffix\n done\n fi\n done\n fi\ndone\n\n\ndoc_alias(){\n local docpath=\"$1\"\n local prefix=\"${2:-d}\"\n [ -f \"$docpath\" ] || return 1\n docfile=\"${docpath##*/}\"\n if ! [[ \"$docfile\" =~ \\.(txt|md)$ ]]; then\n if [[ \"$docfile\" =~ \\. ]]; then\n return 1\n fi\n fi\n # slows down shell creation, will drain battery\n# if [ -L \"$docpath\" ]; then\n# # brew install coreutils to get greadlink since Mac doesn't have readlink -f\n# if type -P greadlink &>/dev/null; then\n# docfile=\"$(greadlink -f \"$docpath\")\"\n# else\n# docfile=\"$(readlink -f \"$docpath\")\"\n# fi\n# fi\n #local count=0\n #[ -f ~/docs/$docfile ] && ((count+=1))\n #[ -f \"$github/docs/$docfile\" ] && ((count+=1))\n #[ -f \"$bitbucket/docs/$docfile\" ] && ((count+=1))\n #if [ $count -gt 1 ]; then\n # echo \"WARNING: $docfile conflicts with existing alias, duplicate doc '$docfile' among ~/docs, ~/github/docs, ~/bitbucket/docs?\"\n # return\n #fi\n local shortname=\"${docfile%.md}\"\n local shortname=\"${shortname%.txt}\"\n # shellcheck disable=SC2139,SC2140\n alias \"${prefix}${shortname}\"=\"ti ${docpath##*/}; \\$EDITOR $docpath\"\n}\n\nfor x in ~/docs/* \"$github\"/docs/* \"$bitbucket\"/docs/*; do\n doc_alias \"$x\" || :\ndone\n\nalias know=\"knowledge\"\nfor x in ~/knowledge/* \"$github\"/knowledge/* \"$bitbucket\"/knowledge/*; do\n doc_alias \"$x\" k || :\ndone\n\n# ============================================================================ #\n\n# set in ansible.sh\n#alias a='ansible -Db'\nalias anonymize='anonymize.py'\nalias an='anonymize -a'\nalias bc='bc -l'\nalias chromekill='pkill -f \"Google Chrome Helper\"'\nalias eclipse='~/eclipse/Eclipse.app/Contents/MacOS/eclipse';\nalias visualvm='~/visualvm/bin/visualvm'\n\nalias tmpl=templates\n\n# using brew version on Mac\npmd_opts=\"-R rulesets/java/quickstart.xml -f text\"\nif is_mac; then\n # yes evaluate $pmd_opts here\n # shellcheck disable=SC2139\n pmd=\"pmd $pmd_opts\"\nelse\n for x in ~/pmd-bin-*; do\n if [ -f \"$x/bin/run.sh\" ]; then\n # yes evaluate $x here, and don't export it's lazy evaluated in alias below\n # shellcheck disable=SC2139,SC2034\n pmd=\"$x/bin/run.sh pmd $pmd_opts\"\n fi\n done\nfi\nalias pmd='$pmd'\n\n# from DevOps Perl tools repo - like uniq but doesn't require pre-sorting keeps the original ordering\n# Devops Golang tools uniq2 should be on path instead now\n#alias uniq2=uniq_order_preserved.pl\n\n# for piping from grep\nalias uniqfiles=\"sed 's/:.*//;/^[[:space:]]*$/d' | sort -u\"\n\nexport etc=~/etc\nalias etc='cd $etc'\n\n\nalias distro='cat /etc/*release /etc/*version 2>/dev/null'\nalias trace=traceroute\nalias t='$EDITOR ~/temp-notes.txt'\n# causes more problems than it solves on a slow machine missing the prompt\n#alias y=yes\nalias t2='$EDITOR ~/tmp2'\nalias t3='$EDITOR ~/tmp3'\n#alias tg='traceroute www.google.com'\n#alias sec='ps -ef| grep -e arpwatc[h] -e swatc[h] -e scanlog[d]'\n\n\nexport lab=~/lab\nalias lab='cd $lab'\n\n# Auto-alias uppercase directories in ~ like Desktop and Downloads\n#for dir in $(find ~ -maxdepth 1 -name '[A-Z]*' -type d); do [ -d \"$dir\" ] && alias ${dir##*/}=\"cd '$dir'\"; done\n\nexport Downloads=~/Downloads\nexport Documents=~/Documents\nalias Downloads='cd \"$Downloads\"'\nalias Documents='cd \"$Documents\"'\nexport down=\"$Downloads\"\nexport docu=\"$Documents\"\nalias down='cd \"$Downloads\"'\nalias docu='cd \"$Documents\"'\nalias doc='cd ~/docs'\n\nexport desktop=~/Desktop\nexport desk=\"$desktop\"\nalias desktop='cd \"$desktop\"'\nalias desk=desktop\n\nexport screenshots=~/Desktops/Screenshots\nalias screenshots='cd \"$screenshots\"'\n\nexport bin=~/bin\nalias bin=\"cd $bin\"\n\nalias todo='ti T; $EDITOR ~/TODO'\nalias TODO=\"todo\"\nalias don='ti D; $EDITOR ~/DONE'\nalias DON=don\n\n# drive => Google Drive\nexport google_drive=~/drive\nexport drive=\"$google_drive\"\nalias drive='cd \"$drive\"'\n\nfor v in ~/github/pytools/validate_*.py; do\n z=\"${v##*/}\"\n z=\"${z#validate_}\"\n z=\"${z%.py}\"\n # needs to expand now for dynamic alias creation\n # shellcheck disable=SC2139,SC2140\n alias \"v$z\"=\"$v\"\ndone\n\n# in some environments I do ldap with Kerberos auth - see ldapsearch.sh script at top level which is more flexible with pre-tuned environment variables\n#alias ldapsearch=\"ldapsearch -xW\"\n#alias ldapadd=\"ldapadd -xW\"\n#alias ldapmodify=\"ldapmodify -xW\"\n#alias ldapdelete=\"ldapdelete -xW\"\n#alias ldappasswd=\"ldappasswd -xW\"\n#alias ldapwhoami=\"ldapwhoami -xW\"\n#alias ldapvi=\"ldapvi -b dc=domain,dc=local -D cn=admin,dc=domain,dc=local\"\n\nalias fluxkeys='$EDITOR ~/.fluxbox/keys'\nalias fke=fluxkeys\nalias fluxmenu='$EDITOR ~/.fluxbox/mymenu'\nalias fme=fluxmenu\nalias mymenu=fluxmenu\nalias menu=mymenu\n\n# trigger script in ~/.config/mpv/scripts/delete-on-eof.lua to delete a video once it has been completely watched\nalias mpvd=\"MPV_DELETE_ON_EOF=1 mpv --speed=2\"\n" }, { "path": ".bash.d/android.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-02-27 02:08:34 +0700 (Thu, 27 Feb 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nexport ANDROID_HOME=\"$HOME/Android/Sdk\"\n\n# Doesn't work\n#export ANDROID_SDK_ROOT=\"$ANDROID_HOME\"\n\nadd_PATH \"$ANDROID_HOME/platform-tools\"\n\nadd_PATH \"$ANDROID_HOME/cmdline-tools/latest/bin\"\nadd_PATH \"$ANDROID_HOME/cmdline-tools/bin\"\n\nfor x in \"$ANDROID_HOME/build-tools/\"*; do\n if [ -d \"$x\" ]; then\n add_PATH \"$x\"\n fi\ndone\n" }, { "path": ".bash.d/ansible.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# shellcheck disable=SC2139\n#\n# Author: Hari Sekhon\n# Date: 2014-07-13 16:56:14 +0100\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A n s i b l e\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# order of precedence:\n#\n# $ANSIBLE_CONFIG\n# $PWD/ansible.cfg\n# $HOME/.ansible.cfg\n# /etc/ansible/ansible.cfg\n#\n# so don't set ANSIBLE_CONFIG because it'll cause issues in work repos\n# which would otherwise correctly default to $PWD/ansible.cfg\n#\n#export ANSIBLE_CONFIG=~/.ansible.cfg # symlinked to $bash_tools/configs/.ansible.cfg\n\nif [ -n \"${ANSIBLE_HOME:-}\" ]; then\n add_PATH PYTHONPATH \"$ANSIBLE_HOME/lib\"\n add_PATH ANSIBLE_LIBRARY \"$ANSIBLE_HOME/library\"\n # resets man search path, breaking man lookups\n #add_PATH MANPATH \"$ANSIBLE_HOME/docs/man\"\nfi\n\n# don't set this in case it causes issues in work repos\n#if [ -f ~/etc/ansible/hosts ]; then\n# export ANSIBLE_HOSTS=~/etc/ansible/hosts\n#fi\n\n# set in ~/.ansible.cfg now\n#export ANSIBLE_HOST_KEY_CHECKING=False\n\n# -D diff switch requires newish ansible, doesn't work on 1.7\n# -b - matter of preference between using lots of sudo in manifests or not, better to remove it for tighter authz & logging purposes in governed environments\nansible_opts=\"-D -b\"\n\nalias a=ansible\n# expand now, no dynamic surprises\nalias ansible=\"ansible $ansible_opts\"\nalias ansible_playbook=\"ansible-playbook $ansible_opts\"\n#alias ansible_playbook_vault=\"ansible-playbook $ansible_opts --ask-vault-pass\"\nalias ansible_playbook_vault=\"ansible-playbook $ansible_opts --vault-id '$bash_tools/bin/vault_pass.sh'\"\n" }, { "path": ".bash.d/argocd.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-01-07 16:03:39 +0000 (Fri, 07 Jan 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A r g o C D\n# ============================================================================ #\n\n# gets default admin pw and copies it to clipboard for quick pasting to UI\nalias argopass=\"argocd_password.sh | copy_to_clipboard.sh\"\n\n# XXX: set the following in your local environment:\n#\n# ARGOCD_SERVER=localhost:8080 # without the http:// or https:// prefix\n# ARGOCD_AUTH_TOKEN=''\n\nif ! [[ \"${ARGOCD_OPTS:-}\" =~ --grpc-web ]]; then\n export ARGOCD_OPTS=\"$ARGOCD_OPTS --grpc-web\"\nfi\n#export ARGOCD_OPTS=\"--grpc-web --insecure\" # only in local dev\n\nargosync(){\n local seconds=\"${1:-60}\"\n shift || :\n if [ -z \"${ARGOCD_APP:-}\" ]; then\n namespace=\"${K8S_NAMESPACE:-$(kubectl_namespace)}\"\n if argocd app list -o name | grep -Fxq \"$namespace\"; then\n ARGOCD_APP=\"$namespace\"\n fi\n fi\n if [ -n \"${ARGOCD_APP:-}\" ]; then\n timestamp \"ArgoCD Syncing App '$ARGOCD_APP'\"\n echo\n argocd app sync \"$ARGOCD_APP\" --force \"$@\"\n argocd app wait \"$ARGOCD_APP\" --timeout \"$seconds\" \"$@\"\n echo\n if [ \"$ARGOCD_APP\" = argocd ]; then\n for x in projects apps; do\n if argocd app list -o name | grep -Fxq \"$x\"; then\n ARGOCD_APP=\"$x\" argosync \"$@\"\n fi\n done\n fi\n else\n echo \"\\$ARGOCD_APP is not set\" >&2\n return 1\n fi\n}\n" }, { "path": ".bash.d/aws-cloudshell.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-12-17 18:54:23 +0000 (Thu, 17 Dec 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# This is designed to mimick the standard GCP CloudShell behaviour\n# of re-customizing a new CloudShell\n\nif ! [ \"${AWS_EXECUTION_ENV:-}\" = \"CloudShell\" ]; then\n return\nfi\n\ncustomize_script=~/.aws_customize_environment\n\nlockdir=/tmp/aws_customize_environment.lock\n\ncompletion_semaphore=\"/.aws_customize_environment_completed\"\n\nif ! [ -f \"$customize_script\" ]; then\n return\nfi\n\nif [ -f \"$completion_semaphore\" ]; then\n return\nfi\n\n# XXX: if the lockdir is more than 2 hours old and the completion semaphore wasn't found, remove the lockdir to try again\nif [ -d \"$lockdir\" ] && ! [ -f \"$completion_semaphore\" ]; then\n lockdir_epoch=\"$(stat -c %Y \"$lockdir\")\"\n current_epoch=\"$(date +%s)\"\n if [ $((current_epoch - lockdir_epoch)) -gt 7200 ]; then\n rmdir \"$lockdir\"\n fi\nfi\n\n# used as a mutex lock\nmkdir \"$lockdir\" 2>/dev/null || return\n\nsudo bash < /var/log/customize_environment 2>&1\nEOF\n" }, { "path": ".bash.d/aws.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2012-09-01 13:01:11 +0100\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A W S - A m a z o n W e b S e r v i c e s\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\ntype add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n# shellcheck disable=SC1090,SC1091\n#type autocomplete &>/dev/null || . \"$bash_tools/.bash.d/functions.sh\"\n\n# ==================\n# AWS CLI completion\n\naws_completer=\"$(type -P aws_completer 2>/dev/null)\"\n\nif [ -n \"$aws_completer\" ]; then\n complete -C \"$aws_completer\" aws\nfi\n\n#autocomplete eksctl\n\n# =====================\n# Elastic Beanstalk CLI (easier to use than AWS CLI)\n\nif [ -d ~/.ebcli-virtual-env/executables/ ]; then\n add_PATH ~/.ebcli-virtual-env/executables/\nfi\n\n# ============================================================================ #\n# A l i a s e s a n d F u n c t i o n s\n# ============================================================================ #\n\nalias awsl='aws sso login'\n\n#alias s3='s3cmd'\nalias s3='aws s3'\nalias dockerecr='aws ecr get-login-password | docker login -u AWS --password-stdin $AWS_ACCOUNT_ID.dkr.ecr.$AWS_DEFAULT_REGION.amazonaws.com'\n\nalias awscon='aws_consoler -o'\nalias awsc='awscon'\n\nalias aws_whoami=\"aws sts get-caller-identity\"\nalias awhoami=aws_whoami\n\n# loads creds from a CLI cache file (eg. for AWS SSO) into environment variables\n# better done via direnv\nawscreds(){\n # should be something like ~/.aws/cli/cached/[hash].json\n local cred_cache_file=\"$1\"\n AWS_ACCESS_KEY_ID=\"$(jq -r .Credentials.AccessKeyId < \"$cred_cache_file\")\"\n AWS_SECRET_ACCESS_KEY=\"$(jq -r .Credentials.SecretAccessKey < \"$cred_cache_file\")\"\n AWS_SESSION_TOKEN=\"$(jq -r .Credentials.SessionToken < \"$cred_cache_file\")\"\n export AWS_ACCESS_KEY_ID\n export AWS_SECRET_ACCESS_KEY\n export AWS_SESSION_TOKEN\n}\n\n# ==================\n# AWLess completion\n\nalias awl=awless\nalias assh=\"awless ssh\"\n\n#autocomplete awless\n# make completion work with awl alias above\n#if ! [ -f ~/.bash.autocomplete.d/awl.sh ]; then\n# sed 's/awless/awl/g' ~/.bash.autocomplete.d/awless.sh > ~/.bash.autocomplete.d/awl.sh\n#fi\n#autocomplete awl\n\n# ==================\n\n# JAVA_HOME needs to be set to use EC2 api tools\n#[ -x /usr/bin/java ] && export JAVA_HOME=/usr # errors but still works\n\n# Shouldn't be needed any more, all these sorts of tools were unified on awscli\n#\n# link_latest '/usr/local/ec2-api-tools-*'\n#if [ -d /usr/local/ec2-api-tools/bin ]; then\n# export EC2_HOME=/usr/local/ec2-api-tools # this should be a link to the unzipped ec2-api-tools-1.6.1.4/\n# add_PATH \"$EC2_HOME/bin\"\n#fi\n\n# ============================================================================ #\n\n# Old: new direnv now\n#\n# ec2dre - ec2-describe-regions - list regions you have access to and put them here\n# TODO: pull a more recent list and have aliases/functions auto-generated from that to export\n#aws_eu(){\n# export EC2_URL=ec2.eu-west-1.amazonaws.com\n#}\n#aws_useast(){\n# export EC2_URL=ec2.us-east-1.amazonaws.com\n#}\n#aws_eu\n\n# ============================================================================ #\n\n# https://github.com/remind101/assume-role\nassume-role(){\n #eval \"$(command assume-role \"$@\")\"\n local output\n output=\"$(command assume-role \"$@\")\"\n # shellcheck disable=SC2181\n if [ $? -eq 0 ]; then\n eval \"$output\"\n fi\n}\n\n# ============================================================================ #\n\naws_get_cred_path(){\n # unreliable that HOME is set, ensure shell evaluates to the right thing before we use it\n [ -n \"${HOME:-}\" ] || HOME=~\n local aws_credentials=\"${AWS_SHARED_CREDENTIALS_FILE:-$HOME/.aws/credentials}\"\n local aws_config=\"${AWS_CONFIG_FILE:-$HOME/.aws/config}\"\n local boto=\"${BOTO_CONFIG:-$HOME/.boto}\"\n local credentials_file\n if [ -f \"$aws_credentials\" ]; then\n credentials_file=\"$aws_credentials\"\n # older boto creds\n elif [ -f \"$boto\" ]; then\n credentials_file=\"$boto\"\n elif [ -f \"$aws_config\" ]; then\n credentials_file=\"$aws_config\"\n else\n echo \"no credentials found - didn't find $aws_credentials or $boto or $aws_config\" 2>/dev/null\n return 1\n fi\n echo \"$credentials_file\"\n}\n\n# this rarely changes so just set it once as initialization instead of passing lots of params\n# or re-executing aws_get_cred_path() multiple times in different functions\naws_credentials_file=\"$(aws_get_cred_path)\"\n\naws_clean_env(){\n echo \"clearing AWS_* environment variables\"\n while read -r envvar; do\n unset \"$envvar\"\n done < <(env | sed -n '/^AWS_/ s/=.*// p')\n}\n\n# easily set a profile env var\n#aws_profile(){\n# # false positive\n# # shellcheck disable=SC2317\n# export AWS_PROFILE=\"$*\"\n#}\n\nalias awsprofile=aws_profile.sh\nalias awsp=aws_profile.sh\n\naws_get_profile_data(){\n local profile=\"$1\"\n local filename=\"${2:-$aws_credentials_file}\"\n sed -n \"/[[:space:]]*\\\\[\\\\(profile[[:space:]]*\\\\)*$profile\\\\]/,/^[[:space:]]*\\\\[/p\" \"$filename\"\n}\n\n# Storing creds in one place in Boto creds file, pull them straight from there\n# if only using new creds, might want to just export AWS_PROFILE instead using aws_profile which provides validation\naws_env(){\n local profile=\"${1:-default}\"\n # export AWS_ACCESS_KEY\n # export AWS_SECRET_KEY\n # export AWS_SESSION_TOKEN - for multi-factor authentication\n local aws_token=~/.aws/token\n aws_profile \"$profile\" || return 1\n # section is checked for existence as part of aws_profile(), will return before here if not valid\n local profile_data\n profile_data=\"$(aws_get_profile_data \"$profile\")\"\n echo \"loading [$profile] creds from $aws_credentials_file\"\n eval \"$(\n for key in aws_access_key_id aws_secret_access_key aws_session_token; do\n awk -F= \"/^[[:space:]]*$key/\"'{gsub(/[[:space:]]+/, \"\", $0); gsub(/_id/, \"\", $1); gsub(/_secret_access/, \"_secret\", $1); print \"export \"toupper($1)\"=\"$2}' <<< \"$profile_data\"\n done\n )\"\n if [ -f \"$aws_token\" ]; then\n echo \"sourcing $aws_token\"\n # shellcheck disable=SC1090,SC1091\n source \"$aws_token\"\n fi\n}\nalias awsenv=aws_env\n\naws_envs(){\n awk '/^[[:space:]]*\\[.+\\]/{print $1}' < \"$aws_credentials_file\" |\n sed 's/\\[//;s/\\]//' |\n while read -r profile; do\n default=0\n if [ \"$profile\" = \"$AWS_PROFILE\" ]; then\n local default=1\n elif [ -z \"$AWS_PROFILE\" ] &&\n [ \"$profile\" = \"default\" ]; then\n local default=1\n fi\n if [ \"$default\" = 1 ]; then\n echo -n \"* \"\n else\n echo -n \" \"\n fi\n echo -n \"$profile\"\n if [ \"$default\" = 1 ] &&\n ! env | grep -q '^AWS_SECRET_KEY='; then\n echo -n \" (keys not loaded to env)\"\n fi\n echo\n done\n}\nalias awsenvs=aws_envs\n\naws_unenv(){\n unset AWS_ACCESS_KEY\n unset AWS_SECRET_KEY\n unset AWS_SESSION_TOKEN\n}\nalias awsunenv=aws_unenv\n\naws_token(){\n local output\n local token\n if [ $# -eq 0 ]; then\n echo \"usage: aws_token []\"\n return 1\n fi\n if [ -z \"${AWS_MFA_ARN:-}\" ]; then\n echo \"environment variable \\$AWS_MFA_ARN not set - you need to\"\n echo\n echo \"export AWS_MFA_ARN=arn:aws:iam::<123456789012>:mfa/\"\n echo\n echo \"(you might want to put that in your ~/.bashrc.local or similar)\"\n return 1\n fi\n #aws sts get-session-token --serial-number arn-of-the-mfa-device --token-code code-from-token\n set -x\n output=\"$(aws sts get-session-token --serial-number \"$AWS_MFA_ARN\" --duration-seconds \"${AWS_STS_DURATION_SECS:-129600}\" --token-code \"$@\")\"\n result=$?\n set +x\n echo \"$output\"\n if [ $result -ne 0 ]; then\n return $result\n fi\n if type -P jq &>/dev/null; then\n token=\"$(jq -r '.Credentials.SessionToken' <<< \"$output\")\"\n else\n token-\"$(awk -F: '/SessionToken/{print $2}' | sed 's/\"//')\"\n fi\n export AWS_SESSION_TOKEN=\"$token\"\n echo \"exported AWS_SESSION_TOKEN\"\n echo\n echo \"export AWS_SESSION_TOKEN=$token\" > ~/.aws/token\n echo \"saved to ~/.aws/token for other shells to source via aws_env()\"\n echo\n echo \"you can now use AWS CLI normally\"\n}\nalias awstoken=aws_token\n" }, { "path": ".bash.d/azure.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# shellcheck disable=SC1090,SC1091\n#\n# Author: Hari Sekhon\n# Date: 2020-03-06 16:36:42 +0000 (Fri, 06 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A z u r e\n# ============================================================================ #\n\nsrcdir=\"${srcdir:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$srcdir/.bash.d/paths.sh\"\n\n# Azure CLI from script install, installs to $HOME/lib and $HOME/bin\nif [ -f ~/lib/azure-cli/az.completion ]; then\n source ~/lib/azure-cli/az.completion\nfi\n\n# assh is an alias to awless ssh\nazssh(){\n local ip\n ip=\"$(az vm show --name \"$1\" -d --query \"[publicIps]\" -o tsv)\"\n ssh azureuser@\"$ip\"\n}\n" }, { "path": ".bash.d/bash_it.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-02-26 15:21:46 +0000 (Wed, 26 Feb 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# B a s h I T\n# ============================================================================ #\n\nreturn\n\nif ! [ -d ~/.bash_it ]; then\n git clone --depth=1 https://github.com/Bash-it/bash-it.git ~/.bash_it\nfi\n\nexport BASH_IT=~/.bash_it\n\nexport BASH_IT_THEME='bobby'\n" }, { "path": ".bash.d/circleci.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-08-02 12:21:34 +0100 (Tue, 02 Aug 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C i r c l e C I\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\nif ! type github_owner_repo &>/dev/null; then\n # shellcheck disable=SC1090,SC1091\n . \"$bash_tools/.bash.d/git.sh\"\nfi\n\ncircleci_debug(){\n circleci_project_set_env_vars.sh github/$(github_owner_repo) DEBUG=1\n}\n\ncircleci_undebug(){\n circleci_project_delete_env_vars.sh github/$(github_owner_repo) DEBUG\n}\n" }, { "path": ".bash.d/colors.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2034\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2012-06-25 15:20:39 +0100\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Terminal ANSI Escape Color Codes\n# ============================================================================ #\n\n# Show color codes - adapted from http://codesnippets.joyent.com/posts/show/1517 example 1\n#\n# see also colors.pl from DevOps-Perl-tools repo which is slightly better\ncolors(){\n local text=\"hari\"\n\n echo -e '\\n 40m 41m 42m 43m 44m 45m 46m 47m';\n\n for FGs in ' m' ' 1m' ' 30m' '1;30m' ' 31m' '1;31m' ' 32m' \\\n '1;32m' ' 33m' '1;33m' ' 34m' '1;34m' ' 35m' '1;35m' \\\n ' 36m' '1;36m' ' 37m' '1;37m'; do\n FG=${FGs// /}\n # shellcheck disable=SC1117\n echo -en \" $FGs \\033[$FG $text \"\n for BG in 40m 41m 42m 43m 44m 45m 46m 47m; do\n # shellcheck disable=SC1117\n echo -en \"$EINS \\033[$FG\\033[$BG $text \\033[0m\";\n done\n echo\n done\n echo\n}\n\n# ============================================================================ #\n\n# For Gentoo stylish prompts\n#\n# Find or write a full colour output table like seen here:\n# Daniel Robbins prompt magic tip on ibm developerworks\n#\n# from http://wiki.archlinux.org/index.php/Color_Bash_Prompt\n#\n# would set 'readonly' but causes reloads to output readonly variable errors\n# replaced \\e with \\033 as it is more portable on Mac script includes for lib/utils.sh tick_msg()\ntxtblk='\\033[0;30m' # Black - Regular\ntxtred='\\033[0;31m' # Red\ntxtgrn='\\033[0;32m' # Green\ntxtylw='\\033[0;33m' # Yellow\ntxtblu='\\033[0;34m' # Blue\ntxtpur='\\033[0;35m' # Purple\ntxtcyn='\\033[0;36m' # Cyan\ntxtwht='\\033[0;37m' # White\nbldblk='\\033[1;30m' # Black - Bold\nbldred='\\033[1;31m' # Red\nbldgrn='\\033[1;32m' # Green\nbldylw='\\033[1;33m' # Yellow\nbldblu='\\033[1;34m' # Blue\nbldpur='\\033[1;35m' # Purple\nbldcyn='\\033[1;36m' # Cyan\nbldwht='\\033[1;37m' # White\nunkblk='\\033[4;30m' # Black - Underline\nundred='\\033[4;31m' # Red\nundgrn='\\033[4;32m' # Green\nundylw='\\033[4;33m' # Yellow\nundblu='\\033[4;34m' # Blue\nundpur='\\033[4;35m' # Purple\nundcyn='\\033[4;36m' # Cyan\nundwht='\\033[4;37m' # White\nbakblk='\\033[40m' # Black - Background\nbakred='\\033[41m' # Red\nbakgrn='\\033[42m' # Green\nbakylw='\\033[43m' # Yellow\nbakblu='\\033[44m' # Blue\nbakpur='\\033[45m' # Purple\nbakcyn='\\033[46m' # Cyan\nbakwht='\\033[47m' # White\ntxtrst='\\033[0m' # Text Reset\n" }, { "path": ".bash.d/custom.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C u s t o m\n# ============================================================================ #\n\n# Stuff that's overly custom and only sourced for my own user\n#\n# eg. $USER specific env vars and too short less generic aliases\n\nif ! [[ $USER =~ hari|sekhon ]]; then\n return 0\nfi\n\n# put secret tokens in vars() or ~/.bashrc.local instead\nexport GITHUB_USER=HariSekhon\nexport TRAVIS_USER=\"HariSekhon\"\nexport BUILDKITE_ORGANIZATION=hari-sekhon\nexport SEMAPHORE_CI_ORGANIZATION=harisekhon\n\nalias tll=\"travis_last_log.py\"\n\n# can't set this to just the shorter 'go' or 'perl' because it'll clash with the actual commands\nalias goto=go_tools\nalias pyt=pytools\nalias to=perl_tools\n\n# shellcheck disable=SC2154\nexport plugins=\"$github/nagios-plugins\"\nexport pl=\"$plugins\"\nalias plugins='sti pl; cd $pl'\nalias pl=plugins\n\n# travis_last_log.py should be in $PATH from DevOps-Python-tools repo\nalias pll=\"travis_last_log.py HariSekhon/nagios-plugins\"\nexport pl2=\"${plugins}2\"\nalias pl2='sti pl2; cd $pl2'\n\nalias pytl=\"tll /pytools\"\nalias pyt2=\"pytools2\"\nalias pyl=\"pylib\"\nalias pyll=\"tll /pylib\"\n\nalias tol=\"tll /tools\"\nalias to2=\"tool2\"\n\n# clashes with the D2 diagramming language\n#alias d2=\"Dockerfiles2\"\nalias Dockerfilesl=\"tll /Dockerfiles\"\n" }, { "path": ".bash.d/direnv.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-04-10 13:02:46 +0100 (Fri, 10 Apr 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nif type -P direnv &>/dev/null; then\n if ! type _direnv_hook &>/dev/null ||\n ! [[ \"${PROMPT_COMMAND:-}\" =~ _direnv_hook ]]; then\n eval \"$(direnv hook bash)\"\n fi\nfi\n\n# direnv seems to inserts a double semi-colon which breaks PROMPT_COMMAND\n#export PROMPT_COMMAND=\"${PROMPT_COMMAND%%;;*}\"\nexport PROMPT_COMMAND=\"${PROMPT_COMMAND//;;/;}\"\n\n#alias envrc='$EDITOR .envrc && direnv allow .'\n# same effect as above\nalias envrc='direnv edit'\n\n# allow all .envrc under your current root - use only inside trusted repos\nalias direnvallowall='find . -name .envrc -exec direnv allow {} \\;'\nalias da='direnv allow'\nalias daa='direnvallowall'\n" }, { "path": ".bash.d/docker.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2015-11-05 20:53:32 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# D o c k e r\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# shellcheck disable=SC1090,SC1091\n[ -f ~/.docker_vars ] && . ~/.docker_vars\n\n#if is_linux && type -P podman &>/dev/null; then\n# alias docker=\"podman\"\n#fi\n\nexport DOCKER_BUILDKIT=1\n\n# for new M1 Macs which otherwise fail to build with errors like this:\n#\n# AWS CLI version: qemu-x86_64: Could not open '/lib64/ld-linux-x86-64.so.2': No such file or directory\n#\nexport DOCKER_DEFAULT_PLATFORM=linux/amd64\n\nalias dh=hub-tool\nalias dc=docker-compose\nalias dps='docker ps'\nalias dpsa='docker ps -a'\nalias dst=\"dockerhub_show_tags.py\"\n# -l shows latest container, -q shows only ID\n#alias dl='docker ps -lq'\nalias dockerimg='$EDITOR \"$bash_tools/setup/docker-images.txt\"'\n\n# wipe out exited containers\nalias dockerrm='docker rm -- $(docker ps -qf status=exited)'\n\nalias dockerr=dockerrunrm\nalias dock=dockerr\nalias dockere=dockerexec\nalias de=dockere\n\nalias dockerrma=dockerrmall\n\n# wipe out dangling image layers\n#alias dockerrmi='docker rmi $(docker images -q --filter dangling=true)'\ndockerrmi(){\n # want word splitting here\n # shellcheck disable=SC2046\n docker rmi $(docker images -q --filter dangling=true)\n}\n\n# docker-compose -f ...\ndcf(){\n local docker_compose_yaml=\"$1\"\n if ! [ -f \"$docker_compose_yaml\" ] &&\n [ -f \"docker-compose.yaml\" ]; then\n docker_compose_yaml=docker-compose.yaml\n fi\n shift\n docker-compose -f \"$docker_compose_yaml\" up \"$@\"\n docker-compose -f \"$docker_compose_yaml\" logs -f\n}\n\n# starts the docker VM, shows ASCII whale, but slow\n#alias dockershell=\"/Applications/Docker/Docker\\ Quickstart\\ Terminal.app/Contents/Resources/Scripts/start.sh\"\n# better\n#alias dockervm=\"VBoxManage controlvm startvm default\"\n#alias dockervm=\"docker-machine start default\"\n\n#alias dm=\"docker-machine\"\n#alias dockerrr=\"docker-machine restart default\"\n#alias dockerreload=\"docker-machine env default > '$bash_tools/.docker_vars'; . '$bash_tools/.docker_vars'\"\n\n#dockerstart(){\n# if ! docker-machine status default | grep -q Running; then\n# docker-machine start default\n# sleep 20\n# fi\n# docker start $(cat \"$bash_tools/docker-start.txt\")\n#}\n\n# avoid external commands per shell, slows down new shells and wastes battery\n# switched to using ~/.docker_vars file which is cheaper due to less forks and picked up in each new shell\n#if type -P docker-machine &>/dev/null; then\n# if docker-machine status default | grep -q -e Started -e Running; then\n# eval $(docker-machine env default)\n# fi\n#fi\n\n#alias dockerr=\"docker run --rm -ti\"\nfunction dockerrunrm(){\n local args=()\n local passed_first_non_switch_arg=0 # when this latch gets to level 3 we stop doing prefix processing to not adulterate ls -l / type args\n for x in \"$@\"; do\n if [ $passed_first_non_switch_arg -lt 3 ]; then\n if [ \"${x:0:1}\" = \"-\" ]; then\n passed_first_non_switch_arg=1\n elif [ $passed_first_non_switch_arg -eq 1 ]; then\n passed_first_non_switch_arg=2\n elif [ $passed_first_non_switch_arg -lt 3 ]; then\n if [ \"${x:0:1}\" = \"/\" ]; then\n if [[ \"$x\" != */Users/* && \"$x\" != */home/* ]] &&\n [ \"$(strLastIndexOf \"$x\" / )\" -eq 1 ]; then\n x=\"harisekhon$x\"\n fi\n fi\n passed_first_non_switch_arg=3\n else\n ((passed_first_non_switch_arg+=1))\n fi\n fi\n args+=(\"$x\")\n done\n # Alpine 2 is dead in the water since the package list repos don't even load any more:\n #\n # # apk update\n # fetch http://dl-4.alpinelinux.org/alpine/v2.7/main/x86_64/APKINDEX.tar.gz\n # wget: server returned error: HTTP/1.1 404 Not Found\n # ERROR: http://dl-4.alpinelinux.org/alpine/v2.7/main: Bad address\n # WARNING: Ignoring APKINDEX.0f59c441.tar.gz: No such file or directory\n #\n #if [[ \"$args\" =~ alpine:2 ]] && ! [[ \"$args\" =~ [[:space:]] ]]; then\n # echo \"warning: using alpine:2.* with args but alpine:2.* doesn't have a default CMD so adding 'sh' arg\" >&2\n # args=\"$args sh\"\n #fi\n local basedir=\"${PWD##*/}\"\n docker run --rm -ti -v \"$PWD\":\"/$basedir\" -w \"/$basedir\" \"${args[@]}\"\n}\nalias drun='docker run --rm -ti -v \"${PWD}\":/app'\n\ndocker_get_container_ids(){\n local exclude_file=~/docker-perm.txt\n local args=()\n # if exclude file doesn't exist, grep fails entirely and we get no IDs returned, even pre-emptively replacing with /dev/null doesn't work, so omit the option entirely\n if [ -f \"$exclude_file\" ]; then\n args=(-f \"$exclude_file\")\n fi\n docker ps -a --format \"{{.ID}} {{.Names}}\" |\n if [ ${#args} -gt 0 ]; then\n grep -vi \"${args[@]}\" 2>/dev/null\n else\n cat\n fi |\n awk '{print $1}'\n}\n\ndockerrmall(){\n # would use xargs -r / --no-run-if-empty but that is GNU only, doesn't work on Mac\n local ids=()\n read -r -a ids <<< \"$(docker_get_container_ids)\"\n if [ ${#ids} -gt 0 ]; then\n docker rm -f -- \"${ids[@]}\"\n fi\n}\n\ndockerrmigrep(){\n for x in \"$@\"; do\n docker images |\n awk \"/$x/{print \\$1\\\":\\\"\\$2}\" |\n sed '//d' |\n xargs -r docker rmi --\n done\n}\n\ndockerrmgrep(){\n for x in \"$@\"; do\n docker ps -a |\n grep \"$x\" |\n awk '{print $NF}' |\n xargs -r docker rm -f --\n done\n}\n\ndockerip(){\n docker inspect --format '{{ .NetworkSettings.IPAddress }}' \"$@\"\n}\n\n# this goes to the last created and sometimes exited container\n#alias dockere='docker exec -ti $(docker ps -lq) /bin/bash'\ndockerexec(){\n if [ $# -gt 0 ]; then\n container=\"$(docker ps | grep -i \"$1\" | awk '{print $1}' | head -n1)\"\n else\n container=\"$(docker ps -q | head -n1)\"\n fi\n docker exec -ti \"$container\" /bin/sh\n}\n\ndocker_get_images(){\n # uniq_order_preserved.pl is in the DevOps-Perl-tools repo on github and should be in the $PATH\n # too many images on dockerhub to pull, fills up filesystem\n #echo \"$(dockerhub_search.py harisekhon -n 1000 | tail -n +2 | awk '{print $1}' | sort) $(sed 's/#.*//;/^[[:space:]]*$/d' \"$bash_tools/setup/docker-images.txt\" | uniq_order_preserved.pl)\"\n sed 's/#.*//;/^[[:space:]]*$/d' \"$bash_tools/setup/docker-images.txt\" |\n uniq_order_preserved.pl\n}\n\ndockerpull1(){\n # pull only latest tag, mine first, then official\n local images=\"${*:-}\"\n [ -z \"$images\" ] && images=\"$(docker_get_images)\"\n images=\"$(grep -v \":\" <<< \"$images\")\"\n whendone \"docker pull\" # must be first arg so quoted, [l] trick not needed as grep -v grep's\n for image in $images; do\n #whendone \"docker pull\" # must be first arg so quoted, [l] trick not needed as grep -v grep's\n timestamp \"docker pull $image\"\n #docker pull \"$image\" | cat &\n docker pull \"$image\"\n # wipe out dangling image layers\n dockerrmi\n echo\n done\n}\ndockerpullgithub(){\n dockerpull1 harisekhon/{nagios-plugins,pytools,tools,centos-github,debian-github,ubuntu-github,alpine-github}\n}\n\ndockerpull(){\n local images=\"${*:-}\"\n [ -z \"$images\" ] && images=\"$(docker_get_images)\"\n dockerpull1 \"$images\"\n images=\"$(grep -i -e harisekhon -e \":\" <<< \"$images\")\"\n #local images=\"$(grep -i -e \":\" <<< \"$images\")\"\n # now pull all tags, mine first, then official\n whendone \"docker pull\" # must be first arg so quoted, [l] trick not needed as grep -v grep's\n for image in $images; do\n #whendone \"docker pull\" # must be first arg so quoted, [l] trick not needed as grep -v grep's\n if [[ \"$image\" = harisekhon/* && ! \"$image\" =~ \":\" ]]; then\n [[ \"$image\" =~ presto.*-dev ]] && continue\n for tag in $(dockerhub_show_tags.py -q \"$image\" | grep -v '^latest$'); do\n timestamp \"docker pull $image:$tag\"\n #docker pull \"$image\":\"$tag\" | cat &\n docker pull \"$image\":\"$tag\"\n echo\n done\n else\n timestamp docker pull \"$image\"\n #docker pull \"$image\" | cat &\n docker pull \"$image\"\n echo\n fi\n # wipe out dangling image layers\n dockerrmi\n done\n}\n\ndockerpull1r(){\n while true; do\n dockerpull1 \"$@\"\n wait\n echo -e '\\n\\nsleeping for 1 hour\\n\\n'\n sleep 3600\n done\n}\n\ndockerpullr(){\n while true; do\n dockerpull \"$@\"\n wait\n echo -e '\\n\\nsleeping for 1 hour\\n\\n'\n sleep 3600\n done\n}\n\n# quick, only pull things for which we don't already have local images\ndockerpullq(){\n for x in $(docker_get_images); do\n docker images | grep -q \"^${x}[[:space:]]\" && continue\n whendone \"docker pull\" # must be first arg so quoted, [l] trick not needed as grep -v grep's\n timestamp docker pull \"$x\"\n docker pull \"$x\"\n done\n # wipe out dangling image layers\n dockerrmi\n}\n" }, { "path": ".bash.d/env.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# E n v i r o n m e n t V a r i a b l e s\n# ============================================================================ #\n\n# more environment variables defined next to the their corresponding aliases in aliases.sh\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# similar to what zsh does by default\nif [ -f ~/.bashenv ]; then\n # shellcheck disable=SC1090,SC1091\n . ~/.bashenv\nfi\n\n#export DISPLAY=:0.0\n\n#export TERM=xterm\n\nexport EDITOR=vim\n\nexport INPUTRC=~/.inputrc\n\n# allow programs to use $LINES and $COLUMNS\nexport LINES\nexport COLUMNS\n\n# sets directories to cyan on default bg so they stand out more in dark terminal - see 'man ls' for more details\n# works on Mac - you may need to see 'man 5 dir_colors' on Linux\nexport LSCOLORS=\"gx\"\n\n# ENV refers to the file that sh attempts to read as a startup file (done on my Mac OSX Snow Leopard)\n# Needs the following line added to sudoers for ENV to be passed through on sudo su\n#Defaults\tenv_keep += \"ENV\"\nexport ENV=~/.bashrc\n\n# ============================================================================ #\n\ncpenv(){\n local env_var=\"$1\"\n if [[ -z \"${!env_var}\" ]]; then\n echo \"Error: Environment variable '$env_var' is not set\"\n return 1\n fi\n copy_to_clipboard.sh <<< \"${!env_var}\"\n echo \"Value of '$env_var' has been copied to the clipboard\"\n}\n\n# Autocomplete function for environment variables\n_cpenv_autocomplete() {\n # 'compgen -v' lists all environment variables\n # COMPREPLY is set to the autocomplete options\n local cur_word=\"${COMP_WORDS[COMP_CWORD]}\"\n COMPREPLY=($(compgen -v -- \"$cur_word\"))\n}\n\n# Register autocomplete function for `cpenv`\ncomplete -F _cpenv_autocomplete cpenv\n\n\n# ============================================================================ #\n# L o c a l e I n t e r n a t i o n a l i z a t i o n\n# ============================================================================ #\n\n# Run this to see available locales:\n#\n# locale -a\n#\n# See details of a specific locale variable eg. time formats:\n#\n# LC_ALL=C locale -ck LC_TIME\n\n# aterm doesn't support UTF-8 and you get horrible chars here and there\n# so don't use utf and aterm together. xterm works ok with utf8 though\n#export LANG=en_GB\n#\n# LANG becomes default value for any LC_xxx variables not set\n#export LANG=C\n#\n# overrides all other LC_xxx variables\n#export LC_ALL=C\n#\nexport LANG=en_US.UTF-8\nexport LC_ALL=en_US.UTF-8\nexport LANGUAGE=en_US.UTF-8\n#export LC_ALL=en_GB\n# didn't seem to work\n#export LANG=\"en_GB.UTF-8\"\n#export LC_ALL=\"en_GB.UTF-8\"\n\n# ============================================================================ #\n\n# Clever dynamic environment variables, set using var() function sourced between shells\nexport varfile=~/.bash_vars\n# shellcheck disable=SC1090,SC1091\n[ -f \"$varfile\" ] && . \"$varfile\"\n\n# Secret Credentials\n#\n# separate cred files so if you accidentally expose it on a screen\n# to colleagues or on a presentation or screen share\n# you don't have to change all of your passwords\n# which you would have to if using the above ~/.bash_vars file\nif [ -d ~/.env/creds ]; then\n for credfile in ~/.env/creds/*; do\n if [ -f \"$credfile\" ]; then\n # shellcheck disable=SC1090,SC1091\n . \"$credfile\"\n fi\n done\nfi\n\n#export DISTCC_DIR=\"/var/tmp/portage/.distcc/\"\n\n# ============================================================================ #\n\nif is_mac; then\n #BROWSER=open\n unset BROWSER\nelif type -P google-chrome &>/dev/null; then\n BROWSER=google-chrome\nelif type -P firefox &>/dev/null; then\n BROWSER=firefox\nelif type -P konqueror &>/dev/null; then\n BROWSER=konqueror\nelif [ -n \"${GOOGLE_CLOUD_SHELL:-}\" ]; then\n :\nelse\n :\n #BROWSER=UNKNOWN\n #echo \"COULD NOT FIND ANY BROWSER IN PATH\"\nfi\n\n# don't export BROWSER on Mac, trigger python bug:\n# AttributeError: 'MacOSXOSAScript' object has no attribute 'basename'\n# from python's webbrowser library\nif ! is_mac; then\n export BROWSER\nfi\n\nvar(){\n local var=\"${*%%=*}\"\n local val=\"${*#*=}\"\n if grep -i \"export $var\" \"$varfile\" &>/dev/null; then\n perl -pi -e 's/^export '\"$var\"'=.*$/export '\"$var\"'='\"$val\"'/' \"$varfile\"\n else\n echo \"export $var=$val\" >> \"$varfile\"\n fi\n export \"$var\"=\"$val\"\n}\nvars(){\n \"$EDITOR\" \"$varfile\"\n chmod 0600 \"$varfile\"\n # shellcheck disable=SC1090,SC1091\n . \"$varfile\"\n}\n\nunvar(){\n local var=\"${*%%=*}\"\n [ -f \"$varfile\" ] || { echo \"$varfile not found\" ; return 1; }\n perl -pi -e 's/^export '\"$var\"'=.*\\n$//' \"$varfile\"\n unset \"$var\"\n}\n\n# ============================================================================ #\n\nunsetall(){\n local match=\"${1:-.*}\"\n while read -r env_var; do\n if [ \"$env_var\" = PATH ]; then\n continue\n fi\n unset \"$env_var\"\n done < <( env |\n grep -i \"$match\" |\n sed 's/=.*//' )\n}\n" }, { "path": ".bash.d/functions.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# B a s h G e n e r a l F u n c t i o n s\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# Enables colourized return codes in prompt_func\n# better leave it as the same as already set. This way a reload of bashrc doesn't change the mode\n# could do retmode=${retmode:-off} but this is unnecessary overhead\n#retmode=off\n# safer to set it to off because otherwise it's possible to get in to a loop with set -u\nretmode=${retmode:-off}\nretmode(){\n if [ \"$retmode\" = \"on\" ]; then\n retmode=off\n echo \"retmode off\"\n else\n retmode=on\n echo \"retmode on\"\n fi\n}\n\ncddir(){\n cd \"$(dirname \"$1\")\" || return 1\n}\n\njq(){\n command jq -CS \"$@\"\n}\n\nenvg(){\n env |\n eval grep -i \"$(for arg; do echo -n \" -e '$arg'\"; done)\"\n}\n\nnew(){\n if [ $# -eq 2 ]; then\n title \"${2#modules/}\"\n else\n title \"$1\"\n fi\n command new.pl \"$@\"\n title \"$LAST_TITLE\"\n}\n\n# generates bash autocompletion if not available\n# sources bash autocompletion from local standardized path\nautocomplete(){\n local name=\"$1\"\n shift || :\n if [ -f ~/.bash.autocomplete.d/\"$name.sh\" ]; then\n # shellcheck disable=SC1090,SC1091\n . ~/.bash.autocomplete.d/\"$name.sh\"\n elif type -P \"$name\" &>/dev/null; then\n # doesn't work\n # shellcheck disable=SC1090,SC1091\n #source <(command \"$name\" completion bash)\n mkdir -pv ~/.bash.autocomplete.d\n command \"$name\" completion \"$@\" bash > ~/.bash.autocomplete.d/\"$name.sh\"\n # shellcheck disable=SC1090,SC1091\n . ~/.bash.autocomplete.d/\"$name.sh\"\n fi\n}\n\npg(){\n # don't want pgrep, want color coding\n # shellcheck disable=SC2009\n ps -ef |\n grep -i --color=yes \"$@\" |\n grep -v grep\n}\n\npstg(){\n # want splitting of options\n # shellcheck disable=SC2086\n pstree |\n grep -5 -i --color=always \"$@\" |\n less $LESS\n}\n\n# externalized to copy_to_clipboard.sh script\n#copy_to_clipboard(){\n# if is_mac; then\n# cat | pbcopy\n# elif is_linux; then\n# cat | xclip\n# else\n# echo \"ERROR: OS is not Darwin/Linux\"\n# return 1\n# fi\n#}\n\nunalias clip &>/dev/null || :\n# args are optional\n# shellcheck disable=SC2120\nclip(){\n if [ $# -gt 0 ]; then\n copy_to_clipboard.sh < \"$1\"\n else\n copy_to_clipboard.sh\n fi\n}\n\ndle(){\n if [[ \"$PWD\" =~ $HOME(/Downloads(/Transmission)?)?$ ]]; then\n echo \"Switching to $HOME/Downloads/YouTube\"\n mkdir -p -v ~/Downloads/YouTube\n cd ~/Downloads/YouTube || return 1\n if [ -f .envrc ]; then\n eval \"$(direnv export bash)\"\n fi\n fi\n while true; do\n if BACKGROUND_VIDEO=1 youtube_download_video.sh \"$@\"; then\n # doesn't persist past a pause/unpause,\n # and this starts playing which we don't want which is why it's backgrounded\n #osascript -e 'tell application \"QuickTime Player\" to set rate of document 1 to 2' &&\n break\n fi\n local sleep_secs=\"$((RANDOM % 300))\"\n echo \"Sleeping for $sleep_secs secs before retrying...\"\n sleep \"$sleep_secs\"\n done\n exit\n}\nalias ytp=\"cd ~/Downloads/YouTube && ./play.sh\"\n\ndeccp(){\n # shellcheck disable=SC2119\n decomment.sh \"$@\" |\n clip\n}\n\ndecdiff(){\n diff <(decomment.sh \"$1\" | sed 's/[[:space:]]*$//') <(decomment.sh \"$2\" | sed 's/[[:space:]]*$//') \"${@:3}\"\n}\n\nrmdirempty(){\n find \"${1:-.}\" -type d -empty -exec rmdir \"{}\" \\;\n}\n\ncheckprog(){\n if type -P \"$1\" &>/dev/null; then\n return 0\n else\n echo \"$1 could not be found in path\"\n return 1\n fi\n}\n\nfunction count() {\n local total=\"$1\"\n for ((i = total; i > 0; i--)); do\n sleep 1\n printf \"Time remaining %d secs\\r\" \"$i\"\n done\n bell\n}\n\ndum(){\n du -max \"${@:-.}\" |\n sort -k1n |\n tail -n 10000\n}\n\ntyper(){\n local alias_target\n local type_output\n for x in \"$@\"; do\n type_output=\"$(type \"$x\")\"\n # shellcheck disable=SC2119\n alias_target=\"$(\n awk '/aliased to/{print $5}' <<< \"$type_output\" |\n unquote\n )\"\n if [ -n \"$alias_target\" ]; then\n echo \"$type_output\"\n typer \"$alias_target\"\n else\n type \"$x\"\n fi\n done\n}\n\nfindup(){\n local arg=\"$1\"\n current_dir=\"${PWD:-$(pwd)}\"\n while [ \"$current_dir\" != \"\" ]; do\n if [ -e \"$current_dir/$arg\" ]; then\n echo \"$current_dir/$arg\"\n return 0\n fi\n current_dir=\"${current_dir%/*}\"\n done\n echo \"Not found in above path: $arg\" >&2\n return 1\n}\n\ncdup(){\n local arg=\"$1\"\n cd \"$(findup \"$arg\")\"\n}\n\nlld(){\n {\n local target=\"$1\"\n ls -ld \"$target\"\n [ \"$target\" = \"/\" ] && return\n lld \"$(dirname \"$target\")\"\n } | column -t\n}\n\n# shellcheck disable=SC2120\nunquote(){\n sed '\n s/^[[:space:]]*[`'\"'\"'\"]//;\n s/[`'\"'\"'\"][[:space:]]*$//;\n ' \"$@\"\n}\n\nbell(){\n echo -e '\\a'\n}\n\nresolve_symlinks(){\n local readlink=readlink\n if is_mac; then\n if type -P greadlink &>/dev/null; then\n readlink=greadlink\n else\n readlink=\"\"\n fi\n fi\n if [ -z \"$readlink\" ]; then\n echo \"$*\"\n return\n fi\n for x in \"$@\"; do\n \"$readlink\" -m \"$x\"\n done\n}\n\n# for all files listed, return the highest directory - useful for pushd to the right git root following symlinks before doing git diff and commmits, used by gitu() in git.sh which is called in inline vimrc 'nmap ;;'\nbasedir(){\n local dir_list=\"\"\n for x in \"$@\"; do\n dir_list=\"$dir_list $(dirname \"$x\")\"\n done\n # assumes they share the same base and that the shortest one will be right - could put more comparison here and return error if not\n local output\n output=\"$(tr ' ' '\\n' <<< \"$dir_list\" | grep -v '^[[:space:]]*$' | sort | head -n 1)\"\n if [ -z \"$output\" ]; then\n echo \"ERROR: empty basedir\"\n return 1\n fi\n echo \"$output\"\n}\n\ntoLower(){\n tr '[:upper:]' '[:lower:]'\n}\n\ntoUpper(){\n tr '[:lower:]' '[:upper:]'\n}\n\ntrim(){\n sed 's/^[[:space:]]*//; s/[[:space:]]*$//' \"$@\"\n}\n\nnormalize_spaces(){\n # not variant of + \\+ works on Mac\n #sed 's/[[:space:]]\\+/ /'\n # flattens out newlines, which changes behaviour in scripts like check_git_commit_authors.sh\n #perl -pe 's/\\s+/ /g'\n # horizontal newlines, don't match \\n\n perl -pe 's/\\h+/ /g'\n}\n\nremove_last_column(){\n awk '{$NF=\"\"; print $0}'\n}\n\nstrip_basedirs(){\n local basedir=\"$1\"\n shift\n while read -r filename; do\n filename=\"${filename#\"${basedir%%/}\"/}\"\n filename=\"${filename##/}\"\n echo \"$filename\"\n done <<< \"$@\"\n}\n\nuser(){\n read -r -p 'user: ' USERNAME\n export USERNAME\n if [ -z \"${PASSWORD:-}\" ]; then\n pass PASSWORD\n fi\n}\n\npass(){\n # doesn't echo, we can do better by making it star for each char\n #read -r -s -p 'password: ' PASSWORD\n # don't local PASSWORD or default case will not export PASSWORD, changing case to work around\n local password=\"\"\n prompt=\"Enter password: \"\n while IFS= read -p \"$prompt\" -r -s -n 1 char; do\n if [[ \"$char\" == $'\\0' ]]; then\n break\n fi\n prompt='*'\n password=\"${password}${char}\"\n done\n #passvar=\"${1:-PASSWORD}\"\n for passvar in \"${@:-PASSWORD}\"; do\n export \"$passvar\"=\"$password\"\n done\n echo\n}\n\nunpass(){\n unset PASSWORD\n}\n\nhr(){\n echo \"# ============================================================================ #\"\n}\n\nrepeat(){\n local i n\n n=\"$1\"\n shift\n if [ -z \"$n\" ]; then\n echo \"usage: repeat N command args\"\n return 1\n fi\n for ((i=1; i <= n; i++)); do\n \"$@\"\n done\n}\n\nloop(){\n while true; do\n eval \"${*//\\$/\\\\$}\"\n sleep 1\n done\n}\n\nptop(){\n if [ -z \"$1\" ]; then\n echo \"usage: ptop program1 program2 ...\"\n return 1\n fi\n local pids\n #pids=\"$(pgrep -f \"$(sed 's/ /|/g' <<< \"$*\")\")\"\n pids=\"$(pgrep -f \"${*// /|}\")\"\n local pid_args=()\n if is_mac; then\n # shellcheck disable=SC2001\n read -r -a pid_args <<< \"$(sed 's/^/-pid /' <<< \"$pids\")\"\n else\n # shellcheck disable=SC2001\n read -r -a pid_args <<< \"$(sed 's/^/-p /' <<< \"$pids\")\"\n fi\n if [ -z \"${pids[*]}\" ]; then\n echo \"No matching programs found\"\n return 1\n fi\n top \"${pid_args[@]}\"\n}\n\ntopcommands(){\n # first awk print $2 but my advanced history records `date '+%F %T'` in between number and command for $2 and $3, making command $4\n history |\n awk '{print $4}' |\n awk 'BEGIN {FS=\"|\"} {print $1}' |\n sort |\n uniq -c |\n sort -n |\n tail -n \"${1:-10}\" |\n sort -nr\n}\nalias topcmds=topcommands\n\n# easy quick find recursing down current directory tree\n#\n#f(){\n# [ -n \"$*\" ] || { echo \"usage: f \"; return 1; }\n# pattern=\"\"\n# for x in $*; do\n# pattern+=\"*$x\"\n# done\n# pattern+=\"*\"\n# find -L . -iname \"$pattern\"\n#}\n#\n# shellcheck disable=SC2032\nf(){\n local grep=\"\"\n # shellcheck disable=SC2013\n for x in \"${@//[^A-Za-z0-9_-]/.}\"; do\n if [[ \"$x\" =~ [a-zA-Z0-9._-] ]]; then\n grep=\"$grep | grep -i --color=auto $x\"\n fi\n done\n # times about the same\n #eval find -L . -type f -iname \"\\*$1\\*\" $grep\n eval find -L . -type f \"$grep\"\n}\n\ndgrep(){\n local pattern=\"$*\"\n # auto-exported in aliases.sh when iterating git repos\n # shellcheck disable=SC2154\n ls \"$docs/\"*\"${pattern// /}\"* 2>/dev/null\n # shellcheck disable=SC2046,SC2033\n grep -iER \"$pattern\" $(find ~/docs \"$docs\" -type f -maxdepth 1 2>/dev/null | grep -v '/\\.')\n}\n\ndiffl(){\n diff \"$@\" | less\n}\n\nforeachfile(){\n # not passing function f()\n # shellcheck disable=SC2033\n find . -type f -maxdepth 1 |\n while read -r file; do\n [ ! -f \"$file\" ] && continue\n [ -b \"$file\" ] && continue\n [ -c \"$file\" ] && continue\n [ -d \"$file\" ] && continue\n [ -p \"$file\" ] && continue\n [ -S \"$file\" ] && continue\n [ -L \"$file\" ] && continue\n \"$@\"\n done\n}\n\n# vim which\n# vw() moved to vim.sh\n\n# file which\nfw(){\n local path\n for x in \"$@\"; do\n path=\"$(which \"$x\")\"\n if [ -z \"$path\" ]; then\n return 1\n fi\n file \"$path\"\n echo\n # shellcheck disable=SC2086\n ls -l $LS_OPTIONS \"$path\"\n done\n}\n\ncdwhich(){\n local path\n local directory\n if [ $# -ne 1 ]; then\n echo \"usage: cdwhich programname\"\n return 1\n fi\n path=\"$(which \"$1\")\"\n if [ -z \"$path\" ]; then\n echo\n echo \"$1 could not be found in \\$PATH\"\n return 1\n fi\n directory=\"$(dirname \"$path\")\"\n if [ -z \"$directory\" ]; then\n echo \"cannot find directory for $path\"\n return 2\n fi\n echo \"$directory\"\n cd \"$directory\" || return 1\n}\n\nwhichall(){\n local bin=\"$1\"\n shift || :\n which -a \"$bin\" |\n while read -r bin; do\n echo -n \"$bin: \"\n \"$bin\" \"$@\"\n done\n}\n\nadd_etc_host(){\n local host_line=\"$*\"\n # $sudo is set in .bashrc if needed\n # shellcheck disable=SC2154\n $sudo grep -q \"^$host_line\" /etc/hosts ||\n $sudo echo \"$host_line\" >> /etc/hosts\n}\n\n# vihosts() moved to vim.sh\n\nproxy(){\n export proxy_host=\"${1:-${proxy_host:-localhost}}\"\n export proxy_port=\"${2:-${proxy_port:-8080}}\"\n export proxy_port_ssl=\"${3:-${proxy_port_ssl:-8443}}\"\n export proxy_user=\"${4:-${proxy_user:-$USER}}\"\n if [ -z \"$proxy_password\" ]; then\n read -r -s -p 'proxy password: ' proxy_password\n fi\n export http_proxy=\"http://$proxy_user:$proxy_password@$proxy_host:$proxy_port\"\n export https_proxy=\"https://$proxy_user:$proxy_password@$proxy_host:$proxy_port_ssl\"\n # MiniShift respects these next three\n export HTTP_PROXY=\"$http_proxy\"\n export HTTPS_PROXY=\"$https_proxy\"\n export NO_PROXY=\".local,.localdomain,.intra,169.254.169.254\" # works only on suffixes or IP addresses - ignore the EC2 Metadata API address\n export ftp_proxy=\"$http_proxy\" # might need to replace protocol prefix here, would check, but who even uses ftp any more\n JAVA_NO_PROXY=\"$(sed 's/^/*/;s/,/|*/g' <<< \"$NO_PROXY\")\"\n # strip the additions we just added off the end so that we don't end up with dups if running proxy more than once\n JAVA_OPTS=\"${JAVA_OPTS%%-Dhttp.proxyHost*}\"\n export JAVA_OPTS=\"$JAVA_OPTS -Dhttp.proxyHost=$proxy_host -Dhttp.proxyPort=$proxy_port -Dhttp.proxyUser=$proxy_user -Dhttp.proxyPassword=$proxy_password -Dhttps.proxyHost=$proxy_host -Dhttps.proxyPort=$proxy_port_ssl -DnonProxyHosts='$JAVA_NO_PROXY'\"\n export SBT_OPTS=\"$JAVA_OPTS\"\n}\n\nreadlink(){\n if is_mac; then\n greadlink \"$@\"\n else\n command readlink \"$@\"\n fi\n}\n\nabspath(){\n readlink --canonicalize-missing \"$1\"\n}\n#abspath(){\n# if [ -z \"$1\" ]; then\n# echo \"NO PATH GIVEN!\"\n# return 1\n# fi\n# # shellcheck disable=SC2001\n# sed 's@^\\./@'\"$PWD\"'/@;\n# s@^\\([^\\./]\\)@'\"$PWD\"'/\\1@;\n# s@^\\.\\./@'\"${PWD%/*}\"'/@;\n# s@/../@/@g;\n# s@/\\./@/@g;\n# s@\\(.*\\/?\\)\\.\\./?$@\\1/@;\n# s@//@/@g;\n# s@/$@@;' <<< \"$1\"\n#}\n\nwcbash(){\n # $github defined in aliases.sh\n # shellcheck disable=SC2154\n wc ~/.bashrc \\\n ~/.bash_profile \\\n ~/.bash_logout \\\n ~/.alias* \\\n ~/.aliases* \\\n ~/.bashrc_dynamichosts \\\n \"$github/bash-tools/.bashrc\" \\\n \"$github/bash-tools/.bash_profile\" \\\n \"$github/bash-tools/.bash.d/\"*.sh 2>/dev/null\n}\n\nepoch2date(){\n if is_mac; then\n date -r \"$1\"\n else\n date -d \"@$1\"\n fi\n}\n\npdf(){\n if ! [[ \"$1\" =~ .*.pdf$ ]]; then\n echo \"'$1' does not end in .pdf!\"\n return 1\n fi\n if ! [ -f \"$1\" ]; then\n echo \"file not found: $1\"\n return 1\n fi\n if is_mac; then\n open \"$1\"\n return $?\n fi\n for x in acroread evince xpdf; do\n if type -P \"$x\" &>/dev/null; then\n echo \"opening with $x...\"\n \"$x\" \"$1\" &\n return $?\n fi\n done\n echo \"Error cannot find acroread, evince or xpdf in PATH.\"\n return 1\n}\n\ncurrentScreenResolution(){\n #xrandr | awk '/\\*/ {print $1}'\n xdpyinfo | awk '/dimensions/ {print $2}'\n}\n\nyy(){\n cal \"$(date '+%Y')\"\n}\n\n# ============================================================================ #\n\ntimestamp(){\n printf \"%s\" \"$(date '+%F %T') $*\"\n [ $# -gt 0 ] && printf '\\n'\n}\nalias tstamp=timestamp\n\ntimestampcmd(){\n local output\n output=\"$(\"$@\" 2>&1)\"\n timestamp \"$output\"\n}\nalias tstampcmd=timestampcmd\n\n# ============================================================================ #\n\nbak(){\n # TODO: switch this to a .backupstore folder for keeping this stuff instead\n for filename in \"$@\"; do\n [ -n \"$filename\" ] || { echo \"usage: bak filename\"; return 1; }\n [ -f \"$filename\" ] || { echo \"file '$filename' does not exist\"; return 1; }\n [[ $filename =~ .*\\.bak\\..* ]] && continue\n local bakfile\n bakfile=\"$filename.bak.$(date '+%F_%T' | sed 's/:/-/g')\"\n until ! [ -f \"$bakfile\" ]; do\n echo \"WARNING: bakfile '$bakfile' already exists, retrying with a new timestamp\"\n sleep 1\n bakfile=\"$filename.bak.$(date '+%F_%T' | sed 's/:/-/g')\"\n done\n cp -av -- \"$filename\" \"$bakfile\"\n done\n}\n\nunbak(){\n # restores the most recent backup of a file\n for filename in \"$@\"; do\n #[ -n \"$filename\" -o \"${filename: -4}\" != \".bak\" ] || { echo \"usage: unbak filename.bak\"; return 1; }\n [ -n \"$filename\" ] || { echo \"usage: unbak filename\"; return 1; }\n #[ -f \"$filename\" ] || { echo \"file '$filename' does not exist\"; return 1; }\n local bakfile\n local dirname\n dirname=\"$(dirname \"$filename\")\"\n filename=\"${filename##*/}\"\n # don't use -t switch, we want the newest by name, not one that got touched recently\n bakfile=\"$(find \"$dirname\" -path \"*/$filename.bak.*\" -o -path \"*/$filename.*.bak\" 2>/dev/null | sort | tail -n 1)\"\n echo \"restoring $bakfile\"\n cp -av -- \"$bakfile\" \"$dirname/$filename\"\n done\n}\n\norig(){\n if [ $# -lt 1 ]; then\n echo \"usage: orig file1 file2 file3 ...\"\n return 1\n fi\n for filename in \"$@\"; do\n [ -f \"$filename\" ] || { echo \"file '$filename' does not exist\"; return 1; }\n [ -f \"$filename.org\" ] && { echo \"$filename.orig already exists, aborting...\"; return 1; }\n done\n for filename in \"$@\"; do\n cp -av -- \"$filename\" \"$filename.orig\"\n done\n}\n\nunorig(){\n if [ $# -lt 1 ]; then\n echo \"usage: unorig file1.orig file2.orig file3.orig ...\"\n return 1\n fi\n for filename in \"$@\"; do\n if [ -z \"$filename\" ] || [ \"${filename: -5}\" != \".orig\" ]; then\n echo \"usage: unorig filename.orig\"\n return 1\n fi\n if ! [ -f \"$filename\" ]; then\n echo \"file '$filename' does not exist\"\n return 1\n fi\n done\n for filename in \"$@\"; do\n cp -av -- \"$filename\" \"${filename%.orig}\"\n done\n}\n\n# ============================================================================ #\n\nstrLastIndexOf(){\n local str=\"$1\"\n local substr=\"$2\"\n local remainder=\"${str##*\"$substr\"}\"\n local lastIndex=$((${#str} - ${#remainder}))\n echo $lastIndex\n}\n\n# ============================================================================ #\n\nprogs(){\n # not passing function f()\n # shellcheck disable=SC2033\n find \"${@:-.}\" -type f |\n grep -Evf ~/code_regex_exclude.txt |\n grep -v -e '/lib/' -e '.*-env.sh' -e '/tests/'\n}\n\nprogs2(){\n # not passing function f()\n # shellcheck disable=SC2033\n find \"${@:-.}\" -type f -o -type l |\n grep -Evf ~/code_regex_exclude.txt\n}\n\nfindpy(){\n # not passing function f()\n # shellcheck disable=SC2033\n find \"${@:-.}\" -type f -iname '*.py' -o -type f -iname '*.jy' |\n grep -vf ~/code_regex_exclude.txt\n}\n\n# ============================================================================ #\n\nldapmaxuid(){\n ldapsearch -x -W \"uidNumber=*\" uidNumber |\n sed 's/#.*//' |\n grep -v \"^[[:space:]]*$\" |\n grep uidNumber |\n sort -k2n |\n tail -n1\n}\n\nldapmaxuidgid(){\n ldapsearch -xW -x -W \"(|(objectClass=posixAccount)(objectClass=posixGroup))\" uidNumber gidNumber |\n sed 's/#.*//' |\n grep --color=auto -v \"^[[:space:]]*$\" |\n grep -R --color=auto \"(uidNumber|gidNumber)\" |\n sort -k2n |\n tail -n1\n}\n" }, { "path": ".bash.d/gcp.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# shellcheck disable=SC1090,SC1091\n#\n# Author: Hari Sekhon\n# Date: 2019-11-14 22:22:35 +0000 (Thu, 14 Nov 2019)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G C P - G o o g l e C l o u d P l a t f o r m\n# ============================================================================ #\n\nsrcdir=\"${srcdir:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$srcdir/.bash.d/paths.sh\"\n\n# adds GCloud CLI tools to $PATH\nif [ -f ~/google-cloud-sdk/path.bash.inc ]; then\n #source ~/google-cloud-sdk/path.bash.inc\n add_PATH ~/google-cloud-sdk/bin # appends rather than above which prepends to \\$PATH, messing up kubectl version requirement for fluxcd\nfi\n\n# Bash completion for GCloud CLI tools\nif [ -f ~/google-cloud-sdk/completion.bash.inc ]; then\n source ~/google-cloud-sdk/completion.bash.inc\nfi\n\nexport USE_GKE_GCLOUD_AUTH_PLUGIN=True\n\n# having to retype this way too much\nalias gal=\"gcloud auth login\"\n# often bugs me to do this\nalias gcu=\"gcloud components update\"\n\nalias gce=\"gcloud compute\"\nalias gke=\"gcloud container clusters\"\nalias gc=\"gcloud container\"\nalias gbs=\"gcloud builds submit --tag\"\nalias bqq=\"bq query\"\nalias gssh=\"gcloud compute ssh\"\n\n# open GCP Console in the current project and preferably on a relevant page if we can detect one\ngcpcon(){\n local project\n local path\n # open in the compute instances page if we don't know where else to go\n path=\"compute/instances\"\n if [[ \"$PWD\" =~ kubernetes|k8 ]]; then\n path=\"kubernetes/list/overview\"\n elif [[ \"$PWD\" =~ iam ]]; then\n path=\"iam-admin/iam\"\n fi\n project=\"${CLOUDSDK_CORE_PROJECT:-$(gcloud config get core.project 2>/dev/null)}\"\n open \"https://console.cloud.google.com/$path?project=$project\"\n}\n\n# when switching an alias to a function during re-source without un-aliasing, declare function explicitly to avoid errors\nfunction gcloudconfig(){\n # configurations are usually called the same as the project name so export GOOGLE_PROJECT_ID for convenience too\n gcloud config configurations activate \"$1\" || return 1\n export GOOGLE_PROJECT_ID=\"$1\"\n}\n\ngsopen(){\n local gspath=\"$1\"\n gspath=\"${gspath#gs:\\/\\/}\"\n browser \"https://console.cloud.google.com/storage/browser/$gspath\"\n}\n\ngcropen(){\n local image=\"$1\"\n if ! [[ \"$image\" =~ gcr\\.io/ ]]; then\n echo \"'$image' is not a GCR image name (requires gcr.io to know where to open)\"\n return 1\n fi\n image=\"${image%:*}\"\n browser \"https://$image\"\n}\n" }, { "path": ".bash.d/git.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# R e v i s i o n C o n t r o l - G i t\n# ============================================================================ #\n\n# Primary revision control system\n#\n# if svn.sh and hg.sh functions are enabled, detects and calls svn and mercurial commands if inside those repos so some of the same commands work dynamically\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\nif [ -f ~/.github_token ]; then\n GITHUB_TOKEN=\"$(cat ~/.github_token)\"\n export GITHUB_TOKEN\nfi\n\nif [ -f ~/.gitlab_token ]; then\n GITLAB_API_PRIVATE_TOKEN=\"$(cat ~/.gitlab_token)\"\n export GITLAB_API_PRIVATE_TOKEN\nfi\n#if [ -z \"${GITLAB_API_ENDPOINT:-}\" ]; then\n# export GITLAB_API_ENDPOINT=\"https://gitlab.com/api/v4\"\n#fi\n\nif ! type basedir &>/dev/null; then\n # shellcheck disable=SC1090,SC1091\n . \"$bash_tools/.bash.d/functions.sh\"\nfi\n\nif type -P gh &>/dev/null; then\n autocomplete gh -s\nfi\n\n# shellcheck disable=SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n#add_PATH ~/bin/codeql\n\n# find out who your 'gh' CLI is authenticating as - useful if you have multiple Personal Access Tokens for different environments\nalias githubwhoami='github_api.sh /user | jq -r .login'\nalias ghwhoami='github_api.sh /user | jq -r .login'\n\n# set location where you check out all the github repos\nexport github=~/github\n\nexport GIT_PAGER=\"less ${LESS:-}\"\n# shellcheck disable=SC2230\n#if [ -z \"${GIT_PAGER:-}\" ] && \\\nif type -P diff-so-fancy &>/dev/null; then\n # pre-loading a pattern to 'n' / 'N' / '?' / '/' search through will force you in to pager and disregard -F / --quit-if-one-screen\n #export GIT_PAGER=\"diff-so-fancy --color=yes | less -RFX --tabs=4 --pattern '^(Date|added|deleted|modified): '\"\n export GIT_PAGER=\"diff-so-fancy --color=yes | $GIT_PAGER\"\nfi\n\nalias gitconfig=\"\\$EDITOR ~/.gitconfig\"\nalias gitignore=\"\\$EDITOR ~/.gitignore_global\"\nalias gitrc=gitconfig\n# false positive, not calling this from xargs\n# shellcheck disable=SC2032\n#alias add=gitadd\nadd(){ gitadd \"$@\"; }\naddf(){\n git add -f \"$@\"\n git ci -m \"added $*\"\n}\nalias gadd='git add'\n# beware covers up ImageMagick 'import' screenshot command (see HariSekhon/Knowledge-Base mac.md page)\nalias import=gitimport\nalias co=checkout\nalias commit=\"git commit\"\nalias clone=\"git clone\"\nalias cherry-pick=\"git cherry-pick\"\nalias gitci=commit\nalias ci=commit\nalias gitco=checkout\nalias up=pull\nalias u=up\nalias uu=\"GIT_PULL_IN_BACKGROUND=1 u\"\nalias pu=push\nalias gitp=\"git push\"\nalias gdiff=\"git diff\"\n# bypasses diff-so-fancy, could also just pipe through | cat to disable pager and color effects\nalias gdiff2=\"git --no-pager diff\"\nalias gdiffc=\"git diff --cached\"\nalias gdiffm=\"gdiff origin/master..\"\nalias gd=gdiff\nalias gdc=gdiffc\nalias gdo=gdiffm\nalias branch=\"githg branch\"\nalias br=branch\nalias fetch='git fetch'\nalias stash=\"git stash\"\nalias tag=\"githg tag\"\nalias tags='git tag'\nalias tagr='git_tag_release.sh'\nalias gitlogwc='git log --oneline | wc -l'\nalias um=git_submodules_update.sh\n#type browse &>/dev/null || alias browse=gbrowse\nalias gbrowse=gitbrowse\nalias gb='gitbrowse'\nalias prbrowse='gh pr view --web' # uses GitHub CLI\nalias prb=prbrowse\n#alias gh='gitbrowse github' # clashes with GitHub CLI\nalias gl='gitbrowse gitlab'\nalias bb='gitbrowse bitbucket'\nalias azd='gitbrowse azure'\nalias gha='gitbrowse github actions'\nalias ghw='github_workflows'\nalias wf='cd $(git_root)/.github/workflows/'\nalias ggrep=\"git grep\"\nalias gfr='git_foreach_repo.sh'\nalias gfrur='git_foreach_repo_update_readme.sh'\nalias gfrrra='git_foreach_repo_replace_readme_actions.sh'\nalias remotes='git remote -v'\nalias remote='remotes'\n# much quicker to just 'cd $github; f '\n#githubls(){\n# # GitHub is svn compatible, use this to list files remotely\n# svn ls \"https://github.com/$1.git/branches/master/\"\n#}\n#githubgrep(){\n# for repo in $(sed 's/#.*//;s/:.*//;/^[[:space:]]*$/d' \"$srcdir/setup/repos.txt\"); do\n# githubls \"HariSekhon/$repo\"\n# done |\n# grep \"$@\"\n#}\n\n# git fetch -p or git remote prune origin\n#alias prune=\"co master; git pull --no-edit; git remote prune origin; git branch --merged | grep -v -e '^\\\\*' -e 'master' | xargs git branch -d\"\nremoved_branches(){\n git remote prune origin >&2\n git branch -vv |\n cut -c 3- |\n awk '$4 ~ /gone\\]/ {print $1}'\n}\nalias prune=\"removed_branches | xargs -r git branch -d\"\n\n# don't use this unless you are a git pro and understand unwinding history and merge conflicts\nalias GRH=\"git reset HEAD^\"\n\nalias gitnored='git status --ignored'\n\nalias master=\"switchbranch master\"\nalias main=\"switchbranch main\"\nalias prod=\"switchbranch prod\"\nalias production=\"switchbranch production\"\nalias staging=\"switchbranch staging\"\nalias stage=staging\nalias dev=\"switchbranch dev\"\nalias develop=\"switchbranch develop\"\nalias grp=\"git_review_push.sh\"\n\n# edit all GitHub READMEs\nalias readmes='$EDITOR $(git_foreach_repo.sh '\"'\"'echo $PWD/README.md'\"')\"\nalias readmesi='idea $(git_foreach_repo.sh '\"'\"'echo $PWD/README.md'\"')\"\nalias ureadmes='git_foreach_repo.sh '\"'\"'gitu README.md || :'\"'\"\n\n# equivalent of hg root\n# shellcheck disable=SC2120\ngit_root(){\n local path=\"${1:-.}\"\n local dir\n if [ -f \"$path\" ]; then\n dir=\"$(dirname \"$path\")\"\n elif [ -d \"$path\" ]; then\n dir=\"$path\"\n else\n echo \"ERROR: arg passed is not a regular file or directory: $path\" >&2\n return 1\n fi\n pushd \"$dir\" &>/dev/null || return 1\n git rev-parse --show-toplevel\n popd &>/dev/null || return 1\n}\nalias gitroot=git_root\nalias cdgitroot='cd \"$(git_root)\"'\n\ngitgc(){\n cd \"$(git_root)\" || :\n if ! [ -d .git ]; then\n echo \"not in a git repo, no .git/ directory and git root dir not found\"\n return 1\n fi\n du -sh .git\n git gc --aggressive\n du -sh .git\n}\n\ngit_default_branch(){\n git remote show origin |\n #awk '/^[[:space:]]*HEAD branch:[[:space:]]/{print $3}'\n sed -n '/HEAD branch/s/.*: //p'\n}\n\ngit_url_base(){\n local filter=\"${1:-.*}\"\n git remote -v |\n { grep \"$filter\" || : ; }|\n awk '/git@|https:\\/\\/|ssh:\\/\\//{print $2}' |\n head -n1 |\n sed 's|^ssh://||;\n s|^https://.*@||;\n s|^https://||;\n s|:[[:digit:]][[:digit:]]*||;\n s/^git@ssh.dev.azure.com:v3/dev.azure.com/;\n s|^git@||;\n s|^|https://|;\n s/\\.git$//;\n # Azure DevOps only puts this in https urls, not ssh, so strip for standardizing output\n # Update: actually dont do this because we cannot differentiate internal Azure DevOps\n # by internal fqdn urls so it is better to leave this in\n #s|/_git/|/|;\n ' |\n perl -pe 's/:(?!\\/\\/)/\\//'\n}\n\ngitbrowse(){\n local filter=\"${1:-origin}\"\n local path=\"${2:-}\"\n local url_base\n url_base=\"$(git_url_base \"$filter\")\"\n if [ -z \"$url_base\" ] && [ \"$filter\" != origin ]; then\n url_base=\"$(git_url_base \"origin\")\"\n fi\n if [ -z \"$url_base\" ]; then\n echo -n \"git remote url not found for filter '$filter'\"\n if [ \"$filter\" != \"origin\" ]; then\n echo \" or 'origin'\"\n else\n echo\n fi\n return 1\n fi\n if [ -n \"$path\" ]; then\n path=\"$(git ls-files --full-name \"$path\")\"\n fi\n if [[ \"$url_base\" =~ github.com ]]; then\n if [ -z \"$path\" ]; then\n path+=\"#readme\"\n fi\n else\n if [ -z \"$path\" ]; then\n local default_branch\n default_branch=\"$(git_default_branch)\"\n fi\n if [[ \"$url_base\" =~ gitlab.com ]]; then\n if [ -z \"$path\" ]; then\n url_base+=\"/-/blob/$default_branch/README.md\"\n fi\n elif [[ \"$url_base\" =~ dev.azure.com ]]; then\n # don't re-add this as it's no longer stripped out in git_url_base\n # because we cannot differentiate internal Azure Devops by fqdn so need to leave it in\n #url_base=\"${url_base%/*}/_git/${url_base##*/}\"\n if [ -z \"$path\" ]; then\n url_base+=\"?path=/README.md&_a=preview\"\n fi\n elif [[ \"$url_base\" =~ bitbucket.org ]]; then\n if [ -z \"$path\" ]; then\n url_base+=\"/src/$default_branch/README.md\"\n fi\n fi\n fi\n url=\"$url_base\"\n if [ -n \"$path\" ]; then\n if [[ \"$url_base\" =~ github.com ]]; then\n local default_branch\n default_branch=\"$(git_default_branch)\"\n url+=\"/blob/$default_branch\"\n fi\n url+=\"/$path\"\n fi\n browser \"$url\"\n}\n\ninstall_git_completion(){\n if ! [ -f ~/.git-completion.bash ]; then\n wget -O ~/.git-completion.bash https://raw.githubusercontent.com/git/git/master/contrib/completion/git-completion.bash\n fi\n}\n\n# shellcheck disable=SC1090,SC1091\n[ -f ~/.git-completion.bash ] && . ~/.git-completion.bash\n\n# usage: gi python,perl,go\n# gi list\ngitignore_api(){\n local url\n local langs\n local options=()\n local args=()\n # noop - set to use 'tr' to separate items to newlines when given the 'list' arg\n local commas_to_newlines=\"cat\"\n for arg; do\n if [ \"$arg\" = -- ]; then\n options+=(\"$arg\")\n else\n args+=(\"$arg\")\n fi\n done\n # take args 'python perl', store as 'python,perl' for the API call\n langs=\"$(IFS=, ; echo \"${args[*]}\")\"\n url=\"https://www.gitignore.io/api/$langs\"\n if [ \"$langs\" = \"list\" ]; then\n commas_to_newlines=\"tr ',' '\\\\n'\"\n fi\n {\n if hash curl 2>/dev/null; then\n curl -sSL \"${options[*]}\" \"$url\"\n elif hash wget 2>/dev/null; then\n wget -O - \"${options[*]}\" \"$url\"\n fi\n } | eval \"$commas_to_newlines\"\n echo\n}\nalias gi=gitignore_api\n\ngit_user_repo(){\n git remote -v | awk '{print $2}' | head -n1 | git_repo_strip\n}\n\ngit_repo(){\n git_user_repo | sed 's|.*/||'\n}\n\ngithub_owner_repo(){\n git remote -v | awk '/github.com/{print $2}' | head -n1 | git_repo_strip\n}\ngithub_user_repo(){\n github_owner_repo\n}\n\ngithub_repo(){\n github_user_repo | sed 's|.*/||'\n}\n\ngit_repo_strip(){\n git_repo_strip_auth | sed 's|.*\\.[^:/]*[:/]||; s/\\.git[[:space:]]*$//'\n}\n\ngit_repo_strip_auth(){\n sed 's/[[:alnum:]]*@//'\n}\n\nisGit(){\n local target=${1:-.}\n # There aren't local .hg dirs everywhere only at top level so this is difficult in bash\n if [ -d \"$target/.git\" ]; then\n return 0\n elif [ -f \"$target\" ] &&\n [ -d \"${target%/*}/.git\" ]; then\n #-o \"$target/../.git\" -o \"${target%/*}/../.git\" ]; then\n return 0\n else\n # This is because git command doesn't return correctly when running from outside git root, complains there is not .git\n if [ -d \"$target\" ]; then\n pushd \"$target\" >/dev/null || return 1\n #if [ -n \"$(git log -1 . 2>/dev/null)\" ]; then\n # better because it will succeed in subdirectories of git repos which are not checked in yet\n if git status &>/dev/null; then\n # shellcheck disable=SC2164\n popd &>/dev/null\n return 0\n fi\n else\n pushd \"$(dirname \"$target\")\" >/dev/null || return 1\n #if git log -1 \"$target\" 2>/dev/null | grep -q '.*'; then\n #if [ -n \"$(git log -1 \"$(basename \"$target\")\" 2>/dev/null)\" ]; then\n # better because it will succeed in subdirectories of git repos which are not checked in yet\n if git status &>/dev/null; then\n # shellcheck disable=SC2164\n popd &>/dev/null\n return 0\n fi\n fi\n # shellcheck disable=SC2164\n popd &>/dev/null\n return 2\n fi\n}\n\ngit_revision(){\n echo \"Revision: $(git rev-parse HEAD)\"\n}\n\nst(){\n # shellcheck disable=SC2086\n {\n local target=\"${1:-.}\"\n shift\n if ! [ -e \"$target\" ]; then\n echo \"$target does not exist\"\n return 1\n fi\n local target_basename\n local target_dirname\n target_basename=\"$(basename \"$target\")\"\n target_dirname=\"$(dirname \"$target\")\"\n #if [ -f \"Vagrantfile\" ]; then\n # echo \"> vagrant status\"\n # vagrant status\n # shellcheck disable=SC2166\n if [ \"$target\" = \".\" ] &&\n [ \"$PWD\" = \"$HOME/github\" ]; then\n hr\n for x in \"$target\"/*; do\n [ -d \"$x\" ] || continue\n pushd \"$x\" >/dev/null || { echo \"failed to pushd to '$x'\"; return 1; }\n if git remote -v | grep -qi harisekhon; then\n echo \"> GitHub: git status $x $*\"\n git status . \"$@\"\n echo\n hr\n echo\n fi\n # shellcheck disable=SC2164\n popd &>/dev/null\n done\n elif { [ \"$target\" = \".\" ] &&\n [ \"${PWD##*/}\" = work ] ; } ||\n grep -Fxq \"$PWD\" <<< \"${GIT_BASEDIRS:-}\" ||\n [ -f .iterate ]; then\n #ls ./*/.git &>/dev/null; then # matches inside repos with submodules unfortunately\n hr\n for x in \"$target\"/*; do\n [ -d \"$x\" ] || continue\n pushd \"$x\" >/dev/null || { echo \"failed to pushd to '$x'\"; return 1; }\n echo \"> Work: git status $x $*\"\n git status . \"$@\"\n echo\n hr\n echo\n # shellcheck disable=SC2164\n popd &>/dev/null\n done\n elif isGit \"$target\"; then\n if [ -d \"$target\" ]; then\n pushd \"$target\" >/dev/null || { echo \"Error: failed to pushd to $target\"; return 1; }\n echo \"> git stash list\" >&2\n git stash list && echo\n #\"$bash_tools/git/git_summary_line.sh\"\n echo \"> git status $target $*\" >&2\n #git -c color.status=always status -sb . \"$@\"\n git -c color.status=always status . \"$@\"\n echo\n git_revision\n echo\n else\n pushd \"$target_dirname\" >/dev/null || { echo \"Error: failed to pushed to '$target_dirname'\"; return 1; }\n echo \"> git status $target $*\" >&2\n #\"$bash_tools/git/git_summary_line.sh\"\n git -c color.status=always status \"$target_basename\" \"$@\"\n fi\n #git status \"$target\" \"${*:2}\"\n # shellcheck disable=SC2164\n popd &>/dev/null\n elif type isHg &>/dev/null && isHg \"$target\"; then\n echo \"> hg status $target $*\" >&2\n hg status \"$target\" \"$@\" | grep -v \"^?\"\n # to see relative paths instead of the default absolute paths\n #hg status \"$(hg root)\"\n elif type isSvn &>/dev/null && isSvn \"$target\"; then\n echo \"> svn st $*\" >&2\n svn st --ignore-externals \"$target\" \"$@\" | grep -v -e \"^?\" -e \"^x\";\n else\n echo \"not a revision controlled resource as far as bashrc can tell\"\n fi\n } |\n # more calls less on Mac, and gets stuck in interactive mode ignoring the less alias switches\n #more -R -n \"$((LINES - 3))\"\n #less -RFX\n eval ${GIT_PAGER:-cat}\n}\n\nstq(){\n st \"$@\" | grep --color=no -e \"=======\" -e branch -e GitHub | eval \"${GIT_PAGER:-cat}\"\n}\n\n# disabling this as I don't use Mercurial or Svn any more,\n# replacing with simpler function below that will pass through more things like --rebase\n#pull(){\n# local target=\"${1:-.}\"\n# if ! [ -e \"$target\" ]; then\n# echo \"$target does not exist\"\n# return 1\n# fi\n# local target_basename\n# target_basename=\"$(basename \"$target\")\"\n# # shellcheck disable=SC2166\n# if [ \"$target_basename\" = \"github\" ] || [ \"$target\" = \".\" -a \"$(pwd)\" = \"$github\" ]; then\n# for x in \"$target\"/*; do\n# [ -d \"$x\" ] || continue\n# # get last character of string\n# [ \"${x: -1}\" = 2 ] && continue\n# pushd \"$x\" >/dev/null || { echo \"failed to pushd to '$x'\"; return 1; }\n# if git remote -v | grep -qi harisekhon; then\n# echo \"> GitHub: git pull $x ${*:2}\"\n# git pull \"${@:2}\"\n# echo\n# echo \"> GitHub: git submodule update --init --recursive\"\n# git submodule update --init --recursive\n# echo\n# fi\n# # shellcheck disable=SC2164\n# popd &>/dev/null\n# done\n# return\n# elif isGit \"$target\"; then\n# pushd \"$target\" >/dev/null &&\n# echo \"> git pull -v ${*:2}\" >&2\n# git pull -v \"${@:2}\"\n# echo \"> git submodule update --init --recursive\"\n# git submodule update --init --recursive\n# #local orig_branch=$(git branch | awk '/^\\*/ {print $2}')\n# #for branch in $(git branch | cut -c 3- ); do\n# # git checkout -q \"$branch\" &&\n# # echo -n \"$branch => \" &&\n# # git pull -v\n# # echo\n# # echo\n# #done\n# #git checkout -q \"$orig_branch\"\n# # shellcheck disable=SC2164\n# popd &>/dev/null\n# elif type isHg &>/dev/null && isHg \"$target\"; then\n# pushd \"$target\" >/dev/null &&\n# echo \"> hg pull && hg up\" >&2 &&\n# hg pull && hg up\n# # shellcheck disable=SC2164\n# popd &>/dev/null\n# elif type isSvn &>/dev/null && isSvn \"$target\"; then\n# echo \"> svn up $target\" >&2\n# svn up \"$target\"\n# else\n# echo \"not a revision controlled resource as far as bashrc can tell\"\n# return 1\n# fi\n#}\n\n# simpler replacement function to above\n# shellcheck disable=SC2120\npull(){\n # shellcheck disable=SC2166\n if [ \"$PWD\" = \"$HOME/github\" ]; then\n for x in *; do\n [ -d \"$x/.git\" ] || continue\n # get last character of string - don't pull blah2, as I use them as clean checkouts\n [ \"${x: -1}\" = 2 ] && continue\n pushd \"$x\" >/dev/null || { echo \"failed to pushd to '$x'\"; return 1; }\n if git remote -v | grep -qi \"${GITHUB_USER:-${GIT_USER:-${USER:-}}}\"; then\n hr\n echo \"> GitHub $x: git pull --no-edit $*\"\n #echo \"> GitHub $x: git submodule update --init --recursive\"\n if [ -n \"${GIT_PULL_IN_BACKGROUND:-}\" ]; then\n git_pull \"$@\" &\n else\n git_pull \"$@\"\n fi\n fi\n # shellcheck disable=SC2164\n popd &>/dev/null\n done\n elif [ \"${PWD##*/}\" = work ] ||\n grep -Fxq \"$PWD\" <<< \"${GIT_BASEDIRS:-}\" ||\n [ -f .iterate ]; then\n #ls ./*/.git &>/dev/null; then # matches inside repos with submodules unfortunately\n for x in *; do\n [ -d \"$x/.git\" ] || continue\n hr\n pushd \"$x\" >/dev/null || { echo \"failed to pushd to '$x'\"; return 1; }\n echo \"> Work $x: git pull --no-edit $*\"\n #echo \"> work $x: git submodule update --init --recursive\"\n if [ -n \"${GIT_PULL_IN_BACKGROUND:-}\" ]; then\n git_pull \"$@\" &\n else\n git_pull \"$@\"\n fi\n # shellcheck disable=SC2164\n popd &>/dev/null\n done\n else\n echo \"> git pull --no-edit $*\"\n echo \"> git submodule update --init --recursive\"\n git_pull \"$@\"\n fi\n}\n\ngit_pull(){\n echo\n git pull --no-edit \"$@\"\n echo\n git submodule update --init --recursive\n echo\n}\n\nalias coj=\"git_branch_jira_ticket\"\ngit_branch_jira_ticket(){\n local ticket=\"$1\"\n local branch=\"${ticket##*/}\"\n if git branch | sed 's/^..//' | grep -Fxq \"$branch\"; then\n git checkout \"$branch\"\n else\n git checkout -b \"$branch\"\n fi\n}\n\ncheckout(){\n if isGit \".\"; then\n git checkout \"$@\";\n else\n echo \"not a Git checkout, cannot switch to branch $*\"\n return 1\n fi\n}\n\n_gitaddimport() {\n local action=\"$1\"\n shift;\n [ -z \"$*\" ] && return 1\n local basedir\n local trap_codes=\"INT ERR\"\n for filename in \"$@\"; do\n basedir=\"$(basedir \"$filename\")\"\n # shellcheck disable=SC2064,SC2086\n trap \"popd &>/dev/null; trap - $trap_codes; return 1 2>/dev/null\" $trap_codes;\n pushd \"$basedir\" > /dev/null || return 1;\n # shellcheck disable=SC2086\n filename=\"$(strip_basedirs \"$basedir\" \"$filename\")\";\n if ! [ -e \"$filename\" ]; then\n echo \"ERROR: $filename does not exist\" >&2\n #return 1\n elif git status -s \"$filename\" | grep -q '^[?A]'; then\n git add \"$filename\" &&\n git commit -m \"$action $filename\" \"$filename\"\n elif git status -s \"$filename\" | grep -q '^.M'; then\n echo \"ERROR: '$filename' already in git, but has changes, commit as an update instead\" >&2\n #return 1\n elif git status --ignored -s \"$filename\" | grep -q '^!!'; then\n echo \"ERROR: '$filename' is ignored!!! => $(git check-ignore -v \"$filename\")\" >&2\n #return 1\n else\n echo \"ERROR: '$filename' already in git\" >&2\n #return 1\n fi\n popd > /dev/null || return 1\n done\n}\n\ngitadd(){\n _gitaddimport added \"$@\"\n}\n\ngitimport(){\n _gitaddimport imported \"$@\"\n}\n\n\ngitu(){\n git_diff_commit.sh \"$@\"\n}\ngituu(){\n # avoiding xargs due to function reference:\n # gxargs: gitu: No such file or directory\n eval gitu \"$(\n git status --porcelain -s . |\n grep -e '^M' -e '^.M' |\n sed 's/^...//' |\n while read -r filename; do\n echo \"\\\"$filename\\\"\"\n done\n )\"\n}\n\n#githgu(){\n# target=\"${1:-.}\"\n# #count=0\n# while [ -L \"$target\" ]; do\n# #target=\"$(readlink \"$target\")\"\n# #let count+=1\n# #if [ $count -gt 10 ]; then\n# # echo \"looping over links more than 10 times in hggitu! \"\n# # exit 2\n# #fi\n# echo \"$target is a symlink! \"\n# return 1\n# done\n# if ! [ -e \"$target\" ]; then\n# echo \"$target does not exist\"\n# return 1\n# fi\n# if isGit \"$target\"; then\n# echo \"> git\" >&2\n# #if [ -d \"$target\" ]; then\n# # pushd \"$target\" >/dev/null\n# #else\n# # pushd \"$(dirname \"$target\")\" >/dev/null\n# #fi\n# #\"$srcdir2/gitu\" \"${target##*/}\" &&\n# gitu \"$target\"\n# #popd &>/dev/null\n# elif type isHg &>/dev/null && isHg \"$target\"; then\n# echo \"> hg\" >&2\n# #if [ -d \"$target\" ]; then\n# # pushd \"$target\" >/dev/null\n# #else\n# # pushd \"$(dirname \"$target\")\" >/dev/null\n# #fi\n# #\"$srcdir2/hgu\" \"${target##*/}\" &&\n# hgu \"$target\"\n# #popd &>/dev/null\n# # Not supporting SVN any more\n# #elif type isSvn &>/dev/null && isSvn \"$target\"; then\n# # echo \"> svn\" >&2\n# # svnu \"$target\"\n# else\n# echo \"not a revision controlled resource as far as bashrc can tell\"\n# return 1\n# fi\n#}\n\npush(){\n # shellcheck disable=SC2119\n pull || return 1\n if isGit .; then\n echo \"> git push $*\"\n #for remote in $(git remote); do\n # git push -v $remote $@\n #done\n # can't be sure where we're pushing without parsing the command args, so omit for now\n if [ $# -eq 0 ]; then\n echo \"pushing to:\"\n # uniq_ordered.pl from my DevOps-Perl-tools repo or\n # uniq2 from my DevOps-Golang-tools repo would be better here\n # but not sure I want to create a dependency on that\n # unix's standard uniq unfortnately will only deduplicate adjacent lines but should be good enough in most cases\n git remote -v | awk '/^origin/{print $1\"\\t\"$2}' | sed 's,://.*@,://,' | uniq\n echo\n fi\n # exposes your Github / GitLab / Bitbucket tokens on the screen, not secure, use printing above instead\n #git push -v \"$@\"\n git push \"$@\"\n echo\n st\n elif type isHg &>/dev/null && isHg .; then\n echo \"> hg push $*\"\n hg push \"$@\"\n else\n echo \"not in a Git or Mercurial controlled directory\"\n return 1\n fi\n}\nunalias pushu 2>/dev/null || :\npushu(){\n if git remote -v | grep -qi '^origin[[:space:]].*gitlab\\.'; then\n \"$bash_tools/gitlab/gitlab_push_mr_preview.sh\"\n else\n \"$bash_tools/github/github_push_pr_preview.sh\"\n fi\n}\nunalias pushup 2>/dev/null || :\npushup(){\n if git remote -v | grep -qi '^origin[[:space:]].*gitlab\\.'; then\n \"$bash_tools/gitlab/gitlab_push_mr.sh\"\n else\n \"$bash_tools/github/github_push_pr.sh\"\n fi\n}\nunalias pushupmerge 2>/dev/null || :\npushupmerge(){\n if git remote -v | grep -qi '^origin[[:space:]].*gitlab\\.'; then\n GITLAB_MERGE_PULL_REQUEST=true \\\n \"$bash_tools/gitlab/gitlab_push_mr.sh\"\n else\n GITHUB_MERGE_PULL_REQUEST=true \\\n \"$bash_tools/github/github_push_pr.sh\"\n fi\n}\nalias pushupm=pushupmerge\n\npushr(){\n for remote in $(git remote); do\n echo \"> git push \\\"$remote\\\"\"\n git push \"$remote\"\n echo\n done\n}\n\nalias pr=github_pull_request_create.sh\n\nalias mup=masterupdateprune\nmasterupdateprune(){\n #local master_branch=\"master\"\n #if git branch | sed 's/^..//' | grep -Fx main; then\n # master_branch=\"main\"\n #fi\n git checkout \"$(git_default_branch)\"\n pull\n prune\n git_revision\n echo\n}\n\ncurrent_branch(){\n git rev-parse --abbrev-ref HEAD\n}\nalias currentbranch=current_branch\n\nswitchbranch(){\n if isGit \".\"; then\n git checkout \"$1\";\n elif type isHg &>/dev/null && isHg \".\"; then\n hg update \"$1\"\n else\n echo \"not a Git / Mercurial checkout, cannot switch to branch $1\"\n return 1\n fi\n}\n\ngitrm(){\n git rm -- \"$@\" &&\n git commit -m \"removed $*\" -- \"$@\"\n}\n\ngitrename(){\n if [ $# -ne 2 ]; then\n echo \"usage: gitrename \"\n return 1\n fi\n if [ -f \"$2\" ]; then\n local file_already_exists=1\n mv -iv -- \"$2\" \"$2.tmp\"\n fi\n git mv -- \"$1\" \"$2\" &&\n git commit -m \"renamed $1 to $2\" \"$1\" \"$2\"\n if [ \"${file_already_exists:-}\" = 1 ]; then\n mv -fv -- \"$2.tmp\" \"$2\"\n fi\n}\n\ngitmv(){\n if [ $# -ne 2 ]; then\n echo \"usage: gitmv \"\n return 1\n fi\n if [ -f \"$2\" ]; then\n local file_already_exists=1\n mv -iv -- \"$2\" \"$2.tmp\"\n fi\n git mv -- \"$1\" \"$2\" &&\n git commit -m \"moved $1 to $2\" \"$1\" \"$2\"\n if [ \"${file_already_exists:-}\" = 1 ]; then\n mv -fv -- \"$2.tmp\" \"$2\"\n fi\n}\n\ngitd(){\n git diff \"${@:-.}\"\n}\n\ngitadded(){\n git log --name-status \"$@\" |\n grep -e '^A[^u]' -e '^Date' |\n grep -B 1 '^A' |\n less\n}\n\n# doesn't need pipe | less, git drops you in to less anyway\ngitl(){\n git log --all --graph --decorate --name-status \"$@\"\n}\n\ngitlp(){\n git log -p \"$@\"\n}\nalias gitlp1=\"gitlp -1\"\n\ngitl2(){\n git log --all --graph --decorate --stat \"$@\"\n}\n\ngitl3(){\n git log --pretty=format:\"%n%an => %ar%n%s\" --name-status \"$@\"\n}\n\ngithg(){\n if isGit .; then\n git \"$@\"\n elif type isHg &>/dev/null && isHg .; then\n hg \"$@\"\n else\n echo \"not a Git/Mercurial checkout\"\n return 1\n fi\n}\n\nretag(){\n local tag1=\"$1\"\n local checksum=\"$2\"\n local additional_tags=\"${*:2}\"\n for tag in $tag1 $additional_tags; do\n git tag -d \"$tag\" || :\n echo \"Creating git tag '$tag'\"\n # quoting checksum causes failure with unrecognized checksum ''\n git tag \"$tag\" \"$checksum\"\n git tag |\n grep -qF \"$tag\" ||\n echo \"FAILED\"\n done\n}\n\ngitfind(){\n local refids\n refids=\"$(git log --all --oneline | grep \"$@\" | awk '{print $1}')\"\n printf 'Branches:\\n\\n'\n for refid in $refids; do\n git branch --contains \"$refid\"\n done | sort -u\n printf '\\nTags:\\n\\n'\n for refid in $refids; do\n git tag --contains \"$refid\"\n done | sort -u\n}\n\n#stagemerge(){\n# if isGit \".\"; then\n# git checkout prod && git pull &&\n# git checkout staging && git pull &&\n# git merge prod\n# git checkout prod\n# else\n# echo \"Not a Git working copy\";\n# fi\n#}\n\ngitdiff(){\n local filename=\"${1:-}\"\n [ -n \"$filename\" ] || { echo \"usage: gitdiff filename\"; return 1; }\n git diff \"$filename\" > \"/tmp/gitdiff.tmp\"\n diffnet.pl \"/tmp/hgdiff.tmp\"\n}\n\ngit_author_names(){\n git log --all --pretty=format:\"%an\" | sort | uniq -c | sort -k1nr | less\n}\n\ngit_author_emails(){\n git log --all --pretty=format:\"%ae\" | sort | uniq -c | sort -k1nr | less\n}\n\ngit_author_names_emails(){\n git log --all --pretty=format:\"%an %ae\" | sort | uniq -c | sort -k1nr | less\n}\n\ngit_authors(){\n git_author_emails\n}\n\ngit_commit_count(){\n # interestingly, even on 10,000 commit repos, there are no duplicate short hashes shown from:\n # git log --all --pretty=format:\"%h\" | sort | uniq -d\n git log --all --pretty=format:\"%h\" | wc -l\n}\n\ngit_revert_typechange(){\n # want splitting to separate filenames\n # shellcheck disable=SC2046\n co $(git status --porcelain -s \"${1:-.}\" | awk '/^.T/{print $2}')\n}\n\ngit_rm_untracked(){\n if [ $# -lt 1 ]; then\n echo \"usage: rm_untracked \"\n return 1\n fi\n # iterate on explicit targets only\n # intentionally not including current directory to avoid accidentally wiping out untracked files - you must specify \"rm_untracked .\" if you really intend this\n for x in \"${@:-}\"; do\n git status --porcelain -s --untracked-files=all \"$x\" |\n # this breaks the correct spacings for Spotify playlist filenames\n #awk '/^\\?\\?/{$1=\"\"; print}' |\n grep '^??' |\n sed 's/^?? //' |\n while read -r filename; do\n # git status --porcelain double quotes file paths when containing unicode chars which are representated in \\xxx format\n # you must set 'git config --global core.quotePath false' for this to work properly\n #\n # this doesn't help because you are still stuck with \\xxx chars throughout\n filename=\"${filename#\\\"}\"\n filename=\"${filename%\\\"}\"\n rm -v -- \"$filename\" || break\n done\n done\n}\n\n# example of usage of this in the function below - make sure to put '$repo' or \"\\$repo\" somewhere in the argument body to make use of the iteration variable\nforeachrepo(){\n local repolist=\"${REPOLIST:-$bash_tools/setup/repos.txt}\"\n while read -r repo; do\n \"$@\"\n done < <(sed 's/#.*$//; s/.*://; /^[[:space:]]*$/d' \"$repolist\")\n}\n\ngithub_authors(){\n # deferring expansion into loop\n # shellcheck disable=SC2016\n foreachrepo 'echo \"repo: $repo\"; pushd \"$github/$repo\" >/dev/null || return 1; git_authors; popd >/dev/null || return 1; echo' | ${less:-less}\n}\n\nmerge_conflicting_files(){\n # merge conflicts:\n #\n # UU = both updated\n # AA = both added\n #\n git status --porcelain | awk '/^UU|^AA/{$1=\"\"; print}'\n}\n\nmerge_deleted_files(){\n git status --porcelain | awk '/^DU/{$1=\"\"; print}'\n}\n\n# useful for Dockerfiles merging lots of branches\n#\n# while ! make mergemasterpull; do fixmerge \"merged master\"; done\n#\nfixmerge(){\n local msg=\"${*:-merged}\"\n local merge_conflicted_files\n local merge_deleted_files\n merge_deleted_files=\"$(merge_deleted_files)\"\n if [ -n \"$merge_deleted_files\" ]; then\n # false positive, not passing add function/alias add to git\n # shellcheck disable=SC2033\n xargs git add <<< \"$merge_deleted_files\"\n fi\n merge_conflicted_files=\"$(merge_conflicting_files)\"\n if [ -n \"$merge_conflicted_files\" ]; then\n # shellcheck disable=SC2086\n \"$EDITOR\" $merge_conflicted_files &&\n git add $merge_conflicted_files\n fi\n git ci -m \"$msg\"\n}\n\nbuildkite_browse(){\n if [ -z \"${BUILDKITE_ORGANIZATION:-}\" ]; then\n echo \"\\$BUILDKITE_ORGANIZATION not set\"\n return 1\n fi\n local repo\n repo=\"$(git_repo | tr '[:upper:]' '[:lower:]')\"\n browser \"https://buildkite.com/$BUILDKITE_ORGANIZATION/$repo\"\n}\n# bk is used by buildkite cli now\nalias bkb=buildkite_browse\n" }, { "path": ".bash.d/golang.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2015 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G o l a n g\n# ============================================================================ #\n# Golang\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# unreliable that HOME is set, ensure shell evaluates to the right thing before we use it\n[ -n \"${HOME:-}\" ] || HOME=~\n\ngithub=\"${github:-$HOME/github}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/os_detection.sh\"\n\n#export GOPATH=\"$github/go-tools\"\nexport GOPATH=\"$HOME/go\"\nalias gopath='cd \"$GOPATH\"'\nalias gogo='gopath'\nalias cdgo='gopath'\nalias gosrc='cd \"$GOPATH/src\"'\nalias gobin='cd \"$GOPATH/bin\"'\n\nalias go-tools='cd \"$github/go-tools\"; export GOPATH=\"$github/go-tools\"'\nalias gtools=go-tools\nalias gt=gtools\n\n# already added in paths.sh GitHub section\n#add_PATH \"$github/go-tools\"\n\nadd_PATH \"$github/go-tools/bin\"\n\nif [ -d ~/go/bin ]; then\n add_PATH ~/go/bin\nfi\n\n# manual installation of 1.5 mismatches with HomeBrew 1.6 installed to $PATH and\n#export GOROOT=\"/usr/local/go\"\n# causes:\n# imports runtime/internal/sys: cannot find package \"runtime/internal/sys\" in any of:\n# /usr/local/go/src/runtime/internal/sys (from $GOROOT)\n# /Users/hari/github/go-tools/src/runtime/internal/sys (from $GOPATH)\nif type -P go &>/dev/null; then\n if is_mac; then\n GOROOT=\"$(dirname \"$(dirname \"$(greadlink -f \"$(type -P go)\")\")\")\"\n else\n GOROOT=\"$(dirname \"$(dirname \"$(readlink -f \"$(type -P go)\")\")\")\"\n fi\n export GOROOT\n add_PATH \"$GOROOT/bin\"\n add_PATH \"$GOROOT/libexec/bin\"\n add_PATH \"$GOPATH/bin\"\nfi\n\nif type -P colorgo &>/dev/null; then\n alias go=colorgo\nfi\n\nalias lsgobin='ls -d ~/go/bin/* \"$GOROOT\"/{bin,libexec/bin}/* \"$GOPATH/bin/\"* 2>/dev/null'\nalias llgobin='ls -ld ~/go/bin/* \"$GOROOT\"/{bin,libexec/bin}/* \"$GOPATH/bin/\"* 2>/dev/null'\n" }, { "path": ".bash.d/gpg-agent.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G P G A g e n t\n# ============================================================================ #\n\n# Pinentry is important, gpg-agent won't work without it.\n# pinentry intercepts and stores passphrase.\n\ngpg_agent(){\n if [ $UID != 0 ]; then\n if type -P gpg-agent &>/dev/null; then\n # looks like gpg-agent not longer outputs the pid to stdout to capture\n #GPG_ENV_FILE=~/.gpg-agent.env\n #if [ -f \"$GPG_ENV_FILE\" ]; then\n # shellcheck disable=SC1090,SC1091\n #. \"$GPG_ENV_FILE\" > /dev/null\n\n #GPG_AGENT_PID=\"${GPG_AGENT_INFO#*:}\"\n #GPG_AGENT_PID=\"${GPG_AGENT_PID%:*}\"\n #if ! kill -0 \"$GPG_AGENT_PID\" > /dev/null 2>&1; then\n # echo \"Stale gpg-agent found. Spawning new agent...\"\n # killall -9 gpg-agent\n # eval \"$(gpg-agent --daemon | tee \"$GPG_ENV_FILE\")\"\n #elif [ \"$(ps -p \"$GPG_AGENT_PID\" -o comm=)\" != \"gpg-agent\" ]; then\n # echo \"gpg-agent PID does not belong to gpg-agent, spawning new agent...\"\n # eval \"$(gpg-agent --daemon | tee \"$GPG_ENV_FILE\")\"\n #fi\n if type -P pgrep &>/dev/null; then\n if ! pgrep -qf gpg-agent.*--daemon; then\n echo \"Starting gpg-agent...\"\n killall -9 gpg-agent\n #eval \"$(gpg-agent --daemon | tee \"$GPG_ENV_FILE\")\"\n gpg-agent --daemon\n fi\n fi\n #clear\n fi\n fi\n}\n# don't really use this any more anyway so don't bother starting it\n#gpg_agent\n" }, { "path": ".bash.d/grype.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-01-10 17:58:03 +0000 (Mon, 10 Jan 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G r y p e\n# ============================================================================ #\n\n#set -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n\n#eval \"$(grype completion bash)\"\n\n# generates auto-completion file to avoid repeating running auto-completion command, and sources from there\n#autocomplete grype\n" }, { "path": ".bash.d/hadoop.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2009+ (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# H a d o o p E c o s y s t e m\n# ============================================================================ #\n\n#srcdir=\"${srcdir:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$srcdir/.bash.d/paths.sh\"\n\n# ============================================================================ #\n# E n v s\n# ============================================================================ #\n\n## ln -s -- /usr/local/hadoop-x.y.z /usr/local/hadoop\n## ln -s -- /usr/local/hbase-x.y.z /usr/local/hadoop\n## ln -s -- /usr/local/zookeeper-x.y.z /usr/local/zookeeper\n#\n# #find /usr/local -type d -name 'hadoop-*' -o -type d -name 'hbase-*' -o -type d -name 'zookeeper-*' -maxdepth 1 | while read path; do sudo ln -vfsh \"$path\" \"${path%%-*}\"; done\n# link_latest '/usr/local/hadoop-*' '/usr/local/hbase-*' '/usr/local/pig-*' '/usr/local/zookeeper-*'\n# chown -R hari -- /usr/local/{hadoop,hbase,zookeeper}\n# re-enabled HADOOP_HOME for Kite SDK\n\n#export HADOOP_HOME=\"/usr/local/hadoop\" # Deprecated. Annoying error msgs\n#export HADOOP_PREFIX=\"/usr/local/hadoop\" # Hate this\n## For OSX\n#export HADOOP_OPTS=\"$HADOOP_OPTS -Djava.security.krb5.realm= -Djava.security.krb5.kdc=\"\n#export HBASE_OPTS=\" $HBASE_OPTS -Djava.security.krb5.realm= -Djava.security.krb5.kdc=\"\n#export HBASE_HOME=/usr/local/hbase\n#export PIG_HOME=/usr/local/pig\n#export ZOOKEEPER_HOME=/usr/local/zookeeper\n#add_PATH \"$HADOOP_PREFIX/bin\"\n#add_PATH \"$HBASE_HOME/bin\"\n#add_PATH \"$PIG_HOME/bin\"\n#add_PATH \"$ZOOKEEPER_HOME/bin\"\n\n#export MAHOUT_HOME=/usr/local/mahout\n## indicates to run locally instead of on Hadoop\n#export MAHOUT_LOCAL=true\n#add_PATH \"$MAHOUT_HOME/bin\"\n\n# ============================================================================ #\n# C L I\n# ============================================================================ #\n\n# Hadoop CLI usability is weak so some conveniences for day to day\n\nalias dfs='hdfs dfs'\nalias dfsls='hdfs dfs -ls'\n\nalias yarnapp='yarn application'\n\nalias impala='impala_shell.sh'\n\n# nobody should use hive 1 cli any more, remap it to HS2 beeline\nalias hive='beeline.sh'\nalias hivezk='beeline_zk.sh'\n" }, { "path": ".bash.d/intellij.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n#\n# Author: Hari Sekhon\n# Date: 2023-07-26 00:10:06 +0100\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# I n t e l l i J\n# ============================================================================ #\n\n# requires git.sh for git_root() function\n\n# so that you can open files in IntelliJ from the command line on Mac like so:\n#\n# idea \n#\nif [ -d \"/Applications/IntelliJ IDEA CE.app/Contents/MacOS\" ]; then\n add_PATH \"/Applications/IntelliJ IDEA CE.app/Contents/MacOS\"\nfi\n\nalias i='idea'\n\n# wrote find_lock.sh to try to find if IntelliJ uses a lock file in the git project\n# whether it's open or not but it found not file existence changes at all\n#\n# after various experimentation, cannot find a reliable indicator via either process or lockfile\n# or any .idea/ file change if IntelliJ has a project dir open or not, surprising\n#\n#is_intellij_project_open(){\n# local path=\"$1\"\n# if [ -f \"$path\" ]; then\n# path=\"$(dirname \"$path\")\"\n# fi\n# local git_root\n# git_root=\"$(git_root \"$path\")\"\n# if [ -z \"$git_root\" ]; then\n# echo \"Given path is not in a git checkout!!\" >&2\n# return 1\n# fi\n# local pid\n# pid=\"$(lsof -n -c java | awk \"/${git_root//\\//\\\\/}/ {print \\$2}\" | sort -u)\"\n# if [ -z \"$pid\" ]; then\n# return 1\n# fi\n# if ps -ef | awk \"\\$2 == $pid { print }\" | grep -q IntelliJ; then\n# return 0\n# fi\n# return 1\n#}\n#\n#open_intellij_project_if_not_already(){\n# local path=\"$1\"\n# local dir\n# if [ -e \"$path\" ]; then\n# if ! is_intellij_project_open \"$path\"; then\n# if [ -f \"$path\" ]; then\n# dir=\"$(dirname \"$path\")\"\n# else\n# dir=\"$path\"\n# fi\n# idea_bg_disown \"$dir\"\n# sleep 1\n# fi\n# fi\n#}\n\nidea_bg_disown(){\n nohup command idea \"$@\" &\n # disowns the first backgrounded command instead of the latest command,\n # so use $! to specify the pid of the latest command in this shell\n disown $!\n}\n\n# so that you can quickly open files without them holding your terminal open and spewing Java logs all over your screen\nidea(){\n local dir\n for arg in \"$@\"; do\n # because otherwise README Markdown Preview will not render images with relative paths to images inside project:\n #\n # https://github.com/HariSekhon/Knowledge-Base/blob/69bb8d4220596e90e6c0e61c48dd8e1b9ffdf720/intellij.md#markdown-images-with-relative-paths-not-displaying-in-preview\n #\n # can't find any reliable method for this function, see comment just above function itself for more details\n #open_intellij_project_if_not_already \"$arg\"\n # XXX: caveat here - in order to not eat CLI args, we open all args after this loop,\n # which means multiple markdown files in one command will open in the last project\n # This will still result in broken markdown preview for any markdown files that are outside\n # the last project directory which will be ithe foreground window\n if [[ \"$arg\" =~ \\.md$ ]]; then\n dir=\"$(git_root \"$arg\" || :)\"\n if [ -n \"$dir\" ]; then\n idea_bg_disown \"$dir\"\n # give time to settle otherwise race condition of immediate idea_bg_own() call will open the file in the other existing project\n sleep 1\n fi\n fi\n done\n idea_bg_disown \"$@\"\n}\n\nidearoot(){\n idea \"$(git_root)\"\n}\nalias idear=idearoot\n\n# if a file does not already exist then IntelliJ opens it in a new light IDE instead of in the current project\ntouch_idea(){\n touch \"$@\"\n idea \"$@\"\n}\nalias tidea=\"touch_idea\"\n" }, { "path": ".bash.d/java.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Sun Sep 9 21:20:49 2012 +0100\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# J a v a\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\nadd_PATH CLASSPATH ~/bin/java\n\n# turn off those annoying Java 11 warnings when using Groovy scripting\nexport GROOVY_TURN_OFF_JAVA_WARNINGS=true\n\n#alias rmclass='rm -fv *.class'\nalias rmclass='find . -type f -name \"*.class\" -exec rm -fv {} \\;'\n\nif is_mac; then\n mac_export_java_home(){\n local version=\"$1\"\n local args=()\n local java_home\n local java_library_base=\"/Library/Java/JavaVirtualMachines\"\n local java_home_variable=\"JAVA_HOME\"\n # for cross compiling to be found by gradle build\n if [ -n \"$version\" ]; then\n args+=(-v \"1.$version\")\n java_home_variable=\"JAVA${version}_HOME\"\n fi\n if [ -x /usr/libexec/java_home ]; then\n # want arg splutting\n java_home=\"$(/usr/libexec/java_home \"${args[@]}\" 2>/dev/null)\"\n # $? is fine here thanks shellcheck\n # shellcheck disable=SC2181\n if [ $? -eq 0 ] && [ -d \"$java_home\" ]; then\n export \"$java_home_variable\"=\"$java_home\"\n if [ -n \"$DEBUG\" ]; then\n echo \"Determined $java_home_variable from /usr/libexec/java_home to be '$java_home', update ~/.bashrc to optimize by setting this explicitly\" >&2\n fi\n fi\n else\n ## java_home=/Library/Java/JavaVirtualMachines/jdk1.7.0_45.jdk/Contents/Home\n ## JAVA_HOME=/System/Library/Frameworks/JavaVM.framework/Home\n ## JAVA_HOME=/System/Library/Frameworks/JavaVM.framework/Versions/Current/Home\n ## JAVA_HOME=/System/Library/Frameworks/JavaVM.framework/Versions/1.6/Home\n java_home=\"$(find \"$java_library_base/\"*1.\"$version\"* -type d -name 'Home*' 2>/dev/null | tail -n1)\"\n if [ -d \"$java_home\" ]; then\n export \"$java_home_variable\"=\"$java_home\"\n if [ -n \"$DEBUG\" ]; then\n echo \"Determined $java_home_variable from searching $java_library_base to be '$java_home', update ~/.bashrc to optimize by setting this explicitly\" >&2\n fi\n fi\n fi\n }\n if [ -z \"$JAVA_HOME\" ]; then\n mac_export_java_home\n mac_export_java_home 7\n fi\nelif is_linux; then\n if [ -z \"$JAVA_HOME\" ]; then\n # RHEL / CentOS\n if type -P alternatives &>/dev/null; then\n java_home=\"$(alternatives --list | awk '/^java[[:space:]]/{print $3; exit}' | sed 's,\\(/jre\\)\\?/bin/java$,,')\"\n if [ -n \"$java_home\" ]; then\n export JAVA_HOME=\"$java_home\"\n fi\n # Debian / Ubuntu\n elif type -P update-alternatives &>/dev/null; then\n java_home=\"$(update-alternatives --list java 2>/dev/null | sed 's,\\(/jre\\)\\?/bin/java$,,' | head -n1)\"\n if [ -n \"$java_home\" ]; then\n export JAVA_HOME=\"$java_home\"\n fi\n # Alpine / Other / or if all else fails\n else\n # prefers Sun's JDK to OpenJDK, put it higher in the testing list\n # readlink -f => /etc/alternatives/java_sdk => /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.222.b10-0.el7_6.x86_64\n for java_home in \\\n /usr/java/latest \\\n /usr/java/latest/jre \\\n /usr/lib/jvm/java \\\n /usr/lib/jvm/java-openjdk \\\n /usr/lib/jvm/jre-openjdk \\\n /usr/lib/jvm/jre \\\n /usr/lib/jvm/default-jvm \\\n ; do # default-jvm is on Alpine\n if [ -x \"$java_home/bin/java\" ]; then\n export JAVA_HOME=\"$java_home\"\n break\n fi\n done\n if [ -z \"$JAVA_HOME\" ]; then\n if [ -n \"$DEBUG\" ]; then\n echo \"WARNING: failed to find JAVA_HOME\" >&2\n fi\n # last ditch effort, this will work with warnings\n if [ -x /usr/bin/java ]; then\n export JAVA_HOME=/usr\n fi\n fi\n fi\n fi\nfi\n\n# haven't used this in many years\n#j(){\n# for x in \"$@\"; do\n# echo \"javac $x\" &&\n# javac \"$x\" &&\n# echo \"java ${x%.java} $x\" &&\n# java \"${x%.java}\" \"$x\"\n# done\n#}\n\nif ! type sdk &>/dev/null && [ -s ~/.sdkman/bin/sdkman-init.sh ]; then\n # shellcheck disable=SC1090,SC1091\n source ~/.sdkman/bin/sdkman-init.sh\nfi\n" }, { "path": ".bash.d/jenkins.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-02-22 17:18:09 +0000 (Mon, 22 Feb 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# J e n k i n s\n# ============================================================================ #\n\n#alias jenkins_cli='java -jar ~/jenkins-cli.jar -s http://jenkins:8080'\nalias jenkins-cli='jenkins_cli.sh'\n\n#alias backup_jenkins=\"rsync -av root@jenkins:/jenkins_backup/*.zip '~/jenkins_backup/'\"\n\n# sets Jenkins URL to the local docker and finds and loads the current container's superuser token to the environment for immediate use with jenkins_api.sh\njenkins_local(){\n JENKINS_SUPERUSER_PASSWORD=\"$(\n docker-compose -p bash-tools -f \"$(dirname \"${BASH_SOURCE[0]}\")/../docker-compose/jenkins.yml\" \\\n exec -T jenkins-server cat /var/jenkins_home/secrets/initialAdminPassword /dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\nautocomplete k3d\n" }, { "path": ".bash.d/kafka.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2019-07-28 14:46:37 +0100 (Sun, 28 Jul 2019)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# K a f k a\n# ============================================================================ #\n\nsrcdir=\"${srcdir:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$srcdir/.bash.d/paths.sh\"\n\nfor directory in \\\n /usr/hdp/current/kafka-broker \\\n /usr/local/kafka \\\n ; do\n if [ -d \"$directory\" ]; then\n #export KAFKA_HOME=/usr/local/kafka\n export KAFKA_HOME=/usr/hdp/current/kafka-broker\n add_PATH \"$KAFKA_HOME/bin\"\n break\n fi\ndone\n\n# kafka wrapper scripts use underscores instead of dashes so do not conflict with above kafka scripts which appear first in $PATH\n# moved to top level now\n#kafka_wrappers=\"$(dirname \"${BASH_SOURCE[0]}\")/../kafka_wrappers\"\n#add_PATH \"$kafka_wrappers\"\n\n# HDP defaults to 8GB, on VMs that often breaks cli commands which try to claim too much ram and fail\nexport KAFKA_OPTS=\"${KAFKA_OPTS:-} -Xms1G -Xmx1G\"\n\n# there was another setting like KAFKA_KERBEROS_CLIENT I've used before but can't remember, this should work too\n#kafka_cli_jaas_conf=\"$(dirname \"${BASH_SOURCE[0]}\")/../kafka_wrappers/kafka_cli_jaas.conf\"\nkafka_cli_jaas_conf=\"$(dirname \"${BASH_SOURCE[0]}\")/../kafka_cli_jaas.conf\"\nexport KAFKA_OPTS=\"${KAFKA_OPTS:-} -Djava.security.auth.login.config=$kafka_cli_jaas_conf\"\n\n# ============================================================================ #\n\n# XXX: Enable KAFKA_BROKERS and KAFKA_ZOOKEEPER for convenience\n# of not having to specify them each time when using kafka_wrapper/ commands\n\n# XXX: Must use FQDNs to match Kerberos service principals\n\n# Apache / Cloudera\n#export KAFKA_BROKERS=\"$(hostname -f):9092\"\n\n# Hortonworks\n#export KAFKA_BROKERS=\"$(hostname -f):6667\"\n\n#export KAFKA_ZOOKEEPERS=\"$(hostname -f):2181\"\n\n# optional - use if chrooting in zookeeper\n#export KAFKA_ZOOKEEPER_ROOT=/kafka\n\n# ============================================================================ #\n\nbootstrap_server=\"\"\n\nif [ -n \"${KAFKA_BROKERS:-}\" ] &&\n ! [[ \"$*\" =~ --bootstrap-server ]]; then\n # shellcheck disable=SC2034\n bootstrap_server=\"--bootstrap-server $KAFKA_BROKERS\"\nfi\n\nbroker_list=\"\"\nif [ -n \"${KAFKA_BROKERS:-}\" ] &&\n ! [[ \"$*\" =~ --broker-list ]]; then\n # shellcheck disable=SC2034\n broker_list=\"--broker-list $KAFKA_BROKERS\"\nfi\n\nkafka_zookeeper=\"\"\nif [ -n \"${KAFKA_ZOOKEEPERS:-}\" ] &&\n ! [[ \"$*\" =~ --zookeeper ]]; then\n # shellcheck disable=SC2034\n kafka_zookeeper=\"--zookeeper $KAFKA_ZOOKEEPERS\"\nfi\n" }, { "path": ".bash.d/kubernetes.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2019-07-28 14:56:41 +0100 (Sun, 28 Jul 2019)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# K u b e r n e t e s / O p e n S h i f t\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\nfor x in kubectl oc helm flux; do\n autocomplete \"$x\"\ndone\n\n# minishift oc-env > ~/.minishift.env\nif [ -f ~/.minishift.env ]; then\n # remove .minishift.env if it causes errors, which can happen if it was generated when there was no MiniShift VM running\n # shellcheck disable=SC1090,SC1091\n . ~/.minishift.env || rm -f -- ~/.minishift.env\nfi\n\n#if [ -f \"/usr/local/opt/kube-ps1/share/kube-ps1.sh\" ]; then\n# . \"/usr/local/opt/kube-ps1/share/kube-ps1.sh\"\n# # overriden in prompt.sh which is evaluated later so this is sourced there\n# #PS1='$(kube_ps1)'\" $PS1\"\n#fi\n\n# unreliable that HOME is set, ensure shell evaluates to the right thing before we use it\n[ -n \"${HOME:-}\" ] || HOME=~\n\nadd_PATH \"${KREW_ROOT:-$HOME/.krew/bin}\"\n\nfor x in \"$bash_tools\"/kubernetes*.sh; do\n x=\"${x##*/}\"\n name=\"${x#kubernetes_}\"\n eval \"k8s_${name}(){\n '$x' \\\"\\$@\\\"\n }\"\ndone\n\n# ============================================================================ #\n\n# replaced by function further down\n#alias k=kubectl\n# still need this autocomplete\ncomplete -F __start_kubectl k\n\n# 'k8s-app' label is set by dashboard creation but who uses that\n# false positive, the comma doesn't separate args\n# shellcheck disable=SC2054\nk8s_get_pod_opts=(-o wide -L app,env --show-labels)\n\n#alias po='k get po \"${k8s_get_pod_opts[@]}\"'\nalias po='k get po'\nalias pow='po -o wide'\nalias powc='poc -o wide'\nalias pocw='poc -o wide'\nalias kapply='k apply -f'\nalias kapp=kapply\nalias kget='k get'\nalias kedit='k edit'\nalias kdel='k delete'\nalias kdelf='kdel -f'\nalias wp=watchpods\nalias kd=kdesc\nalias ke=kubectl_exec.sh\nalias kexec=kubectl_exec.sh\nalias ke2=kubectl_exec2.sh\nalias keg=kubectl_exec_grep.sh\nalias kg='k get'\nalias ka='k apply'\nalias kaf='ka -f'\nalias kl='k logs'\nalias ktp='k top po'\nalias kshell='kube-shell'\nalias kubesh='kube-shell'\nalias kubeconfig='$EDITOR \"${KUBECONFIG:-~/.kube/config}\"'\nalias kubeconf=kubeconfig\n\n#alias use=\"k config use-context\"\nalias contexts=\"k config get-contexts\"\n#alias context=\"k config current-context\"\ncontext(){ k config current-context; }\n#alias con=context\nalias cons=contexts\n# contexts has this info and is more useful\n#alias clusters=\"k config get-clusters\"\n\n# scripts in kubernetes/ directory that should be added to \\$PATH (done automatically by sourcing this repo's .bashrc)\nalias kbusybox=\"kubectl_busybox.sh\"\nalias kalpine=\"kubectl_alpine.sh\"\nalias kcurl=\"kubectl_curl.sh\"\nalias kdns=\"kubectl_dnsutils.sh\"\n\nkube_config_isolate(){\n local tmpdir=\"/tmp/.kube\"\n\n mkdir -pv \"$tmpdir\"\n\n local default_kubeconfig=\"${HOME:-$(cd ~ && pwd)}/.kube/config\"\n local original_kubeconfig=\"${KUBECONFIG:-$default_kubeconfig}\"\n\n # reload safety - do not source from new tmpdir - not necessary for direnv but useful for local sourcing tests\n #if [[ \"$original_kubeconfig\" =~ $tmpdir ]]; then\n # echo \"ignoring \\$KUBECONFIG=$original_kubeconfig, using default home location $default_kubeconfig\"\n # original_kubeconfig=\"$default_kubeconfig\"\n #fi\n\n # isolate the kubernetes context to avoid a race condition affecting any other shells or scripts\n # epoch is added because $$ and $PPID are direnv sub-processes and may be reused later, so using epoch to add uniqueness\n local epoch\n epoch=\"$(date +%s)\"\n export KUBECONFIG=\"$tmpdir/config.${EUID:-${UID:-$(id -u)}}.$$.$epoch\"\n\n # load your real kube config to isolated staging area to source the context info\n if [ -f \"$original_kubeconfig\" ]; then\n cp -v -- \"$original_kubeconfig\" \"$KUBECONFIG\"\n elif [ -f \"$default_kubeconfig\" ]; then\n cp -v -- \"$default_kubeconfig\" \"$KUBECONFIG\"\n elif [ -f \"$PWD/.kube/config\" ]; then\n cp -v -- \"$PWD/.kube/config\" \"$KUBECONFIG\"\n elif [ -f \"/etc/rancher/k3s/k3s.yaml\" ]; then\n cp -v -- \"/etc/rancher/k3s/k3s.yaml\" \"$KUBECONFIG\"\n else\n echo \"WARNING: failed to find one of:\n\n $original_kubeconfig\n $default_kubeconfig\n $PWD/.kube/config\n /etc/rancher/k3s/k3s.yaml\n \" >&2\n fi\n}\n\n# false positive, not using positional parameters\n# shellcheck disable=SC2142\nalias namespace='k config get-contexts | grep -F \"$(kubectl config current-context)\" | awk \"{print \\$5}\"'\nalias kwhere=\"{ echo -n 'context: '; context; echo -n 'namespace: '; namespace; }\"\nalias con='kwhere'\n\n#alias kcd='k config set-context \"$(kubectl config current-context)\" --namespace'\n\nalias menv='eval $(minikube docker-env)'\n\n# scripts at top level, automatically included in $PATH\nalias labels=\"kubectl_node_labels.sh\"\nalias taints=\"kubectl_node_taints.sh\"\n\nunalias kcd 2>/dev/null\nkcd(){\n if [ $# -lt 1 ] || [ $# -gt 2 ]; then\n echo \"usage: kcd \" >&2\n return 1\n fi\n local namespace=\"$1\"\n echo \"Switching to namespace '$namespace'\"\n k config set-context \"$(kubectl config current-context)\" --namespace \"$namespace\"\n}\n\nunalias use 2>/dev/null\nuse(){\n if [ $# -lt 1 ] || [ $# -gt 2 ]; then\n echo \"usage: use []\" >&2\n return 1\n fi\n local context=\"$1\"\n local namespace=\"${2:-}\"\n local contexts\n contexts=\"$(k config get-contexts -o name)\"\n if ! grep -Fxq \"$context\" <<< \"$contexts\"; then\n #echo \"No matching contexts, inferring first partial match\"\n context=\"$(grep -Em1 \"$context\" <<< \"$contexts\" || :)\"\n if [ -z \"$context\" ]; then\n echo \"Couldn't find any matching context name\" >&2\n return 1\n fi\n #echo \"Inferred context to be '$context'\"\n fi\n #local args=()\n #if [ -n \"$namespace\" ]; then\n # args+=(--namespace \"$namespace\")\n #fi\n #k config use-context \"$context\" \"${args[@]}\"\n # less efficient, but more verbose\n k config use-context \"$context\"\n if [ -n \"$namespace\" ]; then\n kcd \"$namespace\"\n fi\n}\n\nkubectl_namespace(){\n kubectl config get-contexts | awk '/^\\*/{print $5}'\n}\n\n#alias poc='po | grep -v Completed'\nunalias poc &>/dev/null\npoc(){\n po \"$@\" | grep -v Completed\n}\n\n#alias dat='datree test --only-k8s-files --ignore-missing-schemas'\ndat(){\n if [ $# -eq 0 ]; then\n find . -type f -iname '*.y*ml' |\n # datree doesn't handle patches well\n grep -v patch |\n tr '\\n' '\\0' |\n xargs -0 datree test --only-k8s-files --ignore-missing-schemas\n else\n datree test --only-k8s-files --ignore-missing-schemas \"$@\"\n fi\n}\ndatkust(){\n datree_kustomize_all.sh . -- --enable-helm\n}\n\n# kustomize\nalias kbuild='kustomize build --enable-helm'\nalias kustomizebuilddiff='kbuild | kubectl_create_namespaces.sh; kbuild | kubectl diff -f -'\nalias kbuilddiff=kustomizebuilddiff\nalias kbuildd=kbuilddiff\nalias kbd=kbuildd\nalias kda=kustomize_diff_apply.sh\n\n# workaround for the fact that kustomize doesn't accept other filenames\nkustomize_build_file(){\n local kustomization=\"$1\"\n if [ -z \"$kustomization\" ]; then\n echo \"usage: kustomize_build_file -kustomization.yaml\" >&2\n return 1\n fi\n # because shell completion will stop at the prefix, so allow us to just enter and have it figure out what we're doing\n if ! [ -f \"$kustomization\" ];then\n if [ -f \"${kustomization}kustomization.yaml\" ]; then\n kustomization+=\"kustomization.yaml\"\n elif [ -f \"${kustomization}-kustomization.yaml\" ]; then\n kustomization+=\"-kustomization.yaml\"\n elif [ -f \"${kustomization}kustomization.yml\" ]; then\n kustomization+=\"kustomization.yml\"\n elif [ -f \"${kustomization}-kustomization.yml\" ]; then\n kustomization+=\"-kustomization.yml\"\n else\n echo \"File not found: $kustomization\" >&2\n return 1\n fi\n fi\n local prefix=\"${kustomization%kustomization.y*ml}\"\n prefix=\"${prefix%-}\"\n prefix=\"${prefix%_}\"\n command cp -v -- \"$prefix\"*.yaml /tmp/ >&2\n cd /tmp >&2 || return 1\n echo >&2\n command mv -v -- \"${kustomization##*/}\" kustomization.yaml >&2\n echo >&2\n kbuild\n local result=$?\n echo >&2\n cd - >&2 || return 1\n return $result\n}\nalias kbuildf=kustomize_build_file\nalias kbf=kbuildf\nkbfa(){\n kbuildf \"$@\" >/dev/null || return 1\n cd /tmp >&2 || return 1\n kustomize_diff_apply.sh\n cd - >&2 || return 1\n}\n\n# copies kustomization and values files while stripping their comments and filename prefixes\nkustcp(){\n local name=\"$1\"\n local dir=\"$2\"\n echo \"Copying $name-kustomization.yaml to $dir/kustomization.yaml\" >&2\n decomment \"$name-kustomization.yaml\" > \"$dir/kustomization.yaml\"\n echo \"Copying $name-values.yaml to $dir/values.yaml\" >&2\n decomment \"$name-values.yaml\" > \"$dir/values.yaml\"\n echo \"Replacing values filename reference in kustomization.yaml\" >&2\n perl -pi -e \"s/$name-values\\\\.yaml/values.yaml/\" \"$dir/kustomization.yaml\"\n echo \"Done\" >&2\n}\n\n# ============================================================================ #\n\n# results in a blank arg which breaks kubectl command\n#kubectl_opts=(\"${KUBECTL_OPTS:-}\")\n# split KUBECTL_OPTS to array properly\nread -r -a kubectl_opts <<< \"${KUBECTL_OPTS:-}\"\n# set K8S_NAMESPACE in local .bashrc or similar files for environments where your ~/.kube/config\n# gets regenerated daily with certification authentication from a kerberos login script, which\n# resets the 'kcd bigdata' namespace change. This way you automatically send the right namespace every time\nif [ \"${K8S_NAMESPACE:-}\" ]; then\n kubectl_opts+=(-n \"$K8S_NAMESPACE\")\nfi\n# TODO: might split this later\noc_opts=(\"${kubectl_opts[@]:-}\")\n\n# ============================================================================ #\n\n# oc() and kubectl() fix future invocations of k() to the each command if you want to explicitly switch between them\noc(){\n export KUBERNETES_CLI=oc\n command oc \"${oc_opts[@]}\" \"$@\"\n}\n\nkubectl(){\n export KUBERNETES_CLI=kubectl\n # if empty causes 'bash: kubectl_opts[@]: unbound variable', and can't use \"${kubectl_opts[@]:-}\" default because this results in a blank arg which ruins commands\n if [ -n \"${kubectl_opts[*]:-}\" ]; then\n command kubectl \"${kubectl_opts[@]}\" \"$@\"\n else\n command kubectl \"$@\"\n fi\n}\n\nk(){\n local opts=()\n # more efficient than forking to check history every time\n if [ -n \"$KUBERNETES_CLI\" ]; then\n case \"$KUBERNETES_CLI\" in\n kubectl) opts+=(\"${kubectl_opts[@]}\")\n ;;\n oc) opts+=(\"${oc_opts[@]:-}\")\n ;;\n *) echo \"invalid command '$KUBERNETES_CLI' listed in \\$KUBERNETES_CLI (must be either 'kubectl' or 'oc' depending on whether you are using straight Kubernetes or OpenShift). Fix the variable or unset it to auto-detect when calling the k() function\"\n return\n ;;\n esac\n command \"$KUBERNETES_CLI\" \"${opts[@]}\" \"$@\"\n else\n # shellcheck disable=SC2086\n case \"$(k8s_or_openshift)\" in\n openshift) command oc \"${oc_opts[@]}\" \"$@\"\n export KUBERNETES_CLI=oc\n ;;\n k8s|*) command kubectl \"${kubectl_opts[@]}\" \"$@\"\n export KUBERNETES_CLI=kubectl\n ;;\n esac\n fi\n}\n\nkrun(){\n local image=\"$1\"\n local name=\"${image//\\//-}\"\n shift\n # sleep infinity only works on some distros\n k run --generator=run-pod/v1 \"$name\" --image \"$image\" -ti -- /bin/sh\n}\n\n# use ../kubernetes/kubectl_exec.sh via alias instead\n#kexec(){\n# local lines\n# local name=\"${1//\\//-}\"\n# if [ -z \"$name\" ]; then\n# echo \"usage: kexec \"\n# return 1\n# fi\n# for ((i=0;i<100;i++)); do\n# lines=\"$(k get po | grep -F \"$name\")\"\n# if [ -z \"$lines\" ]; then\n# echo \"No pods matching name $name found!\"\n# return 1\n# fi\n# name=\"$(awk '$3 ~ /Running/{print $1; exit}' <<< \"$lines\")\"\n# if [ -n \"$name\" ]; then\n# break\n# fi\n# echo \"waiting for pod to start running...\"\n# sleep 1\n# done\n# local cmd=(kubectl exec -ti \"$name\" \"$@\" -- /bin/sh -c 'if type bash >/dev/null 2>&1; then exec bash; else exec sh; fi')\n# echo \"${cmd[*]}\"\n# \"${cmd[@]}\"\n#}\n\nklog(){\n local name=\"$1\"\n k logs -f -n \"$name\" \"deploy/$name\"\n}\nklogs(){\n local lines\n local name=\"${1//\\//-}\"\n shift || :\n if [ -z \"$name\" ]; then\n echo \"usage: klogs \"\n return 1\n fi\n for ((i=0;i<100;i++)); do\n lines=\"$(k get po | grep -F \"$name\")\"\n if [ -z \"$lines\" ]; then\n echo \"No pods matching name $name found!\"\n return 1\n fi\n # often want to see the logs of the last pod restart in 'Crashing' status\n #name=\"$(awk '$3 ~ /Running/{print $1; exit}' <<< \"$lines\")\"\n name=\"$(awk '{print $1; exit}' <<< \"$lines\")\"\n if [ -n \"$name\" ]; then\n break\n fi\n echo \"waiting for pod to start running...\"\n sleep 1\n done\n echo kubectl logs \"$@\" \"\\\"$name\\\"\"\n k logs \"$@\" \"$name\"\n}\n\nkfwd(){\n local filter=\"$1\"\n local port=\"$2\"\n local hostport=\"$3\"\n shift\n shift\n shift\n # mind need splitting if it's a filter\n # shellcheck disable=SC2086\n kubectl port-forward $filter \"$port\" \"$hostport\" &\n open \"http://localhost:$hostport\"\n}\n\n# looks like both of these work on OpenShift context\n#\n# 'kubectl get pods'\n#\n# 'oc get pods'\n\n# figure out if we're using k8s or openshift via most recent commands - return either 'k8s' or 'openshift'\nk8s_or_openshift(){\n local last_k8s_cmd\n last_k8s_cmd=\"$(\n history |\n grep -v history |\n grep -Eo -e '\\' \\\n -e '\\' \\\n -e '\\' \\\n -e '\\' |\n tail -n 1\n )\"\n case \"$last_k8s_cmd\" in\n oc|minishift) echo openshift\n # these end up in a subshell so aren't really useful, set in k() instead\n #export KUBERNETES_CLI=oc\n ;;\n kubectl|minikube) echo k8s\n #export KUBERNETES_CLI=kubectl\n ;;\n *) echo unknown\n ;;\n esac\n}\n\noc_get_pods(){\n # shellcheck disable=SC2086\n oc get pods \"${k8s_get_pod_opts[@]}\"\n}\n\nk8s_get_pods(){\n # shellcheck disable=SC2086\n k get pods \"${k8s_get_pod_opts[@]}\"\n}\n\nget_pods(){\n #case \"$(k8s_or_openshift)\" in\n # openshift) oc_get_pods\n # ;;\n # k8s) k8s_get_pods\n # ;;\n # *) k8s_get_pods\n # ;;\n #esac\n #\n # k8s functions now include k8s vs oc detection, no need for above or would end up double calling k8s_or_openshift\n k8s_get_pods\n}\nexport -f get_pods\n\nget_pod(){\n local filter=\"${1:-.*}\"\n get_pods |\n grep -v '^NAME[[:space:]]' |\n grep Running |\n awk \"/$filter/{print \\$1; exit}\"\n}\n\nwatchpods(){\n # watch on Mac (brew installed) doesn't have -x switch and doesn't work on even 'export -f function'\n # leave using kubectl call for now as that works on openshift too\n watch \"\n echo 'Context: '\n echo\n kubectl config current-context\n echo\n echo\n echo 'Pods:'\n echo\n kubectl \" \"${kubectl_opts[@]}\" \" get pods \" \"${k8s_get_pod_opts[@]:-}\" \" 2>&1\n echo\n \"\n}\n\nkdesc(){\n k describe \"$@\" | less\n}\n\n# kdesc pod with grep filter on name for fast describing a pod in the current or given namespace\nkdp(){\n local filter=\"${1:-.*}\"\n shift || :\n pod=\"$(k get po -o name \"$@\" | grep -Em 1 \"$filter\")\" || return\n kdesc \"$pod\" \"$@\"\n}\n\nkdelp(){\n k delete pod \"$@\"\n}\n\n# Getting token works on stock Kubernetes but not OpenShift due to stricter defaults\n#\n# Error from server (Forbidden): secrets is forbidden: User \"developer\" cannot list secrets in the namespace \"kube-system\": no RBAC policy matched\n# error: resource name may not be empty\n#\n## even after 'oc login' as system/admin\n#\n# Error from server (Forbidden): secrets is forbidden: User \"system\" cannot list secrets in the namespace \"kube-system\": no RBAC policy matched\n# error: resource name may not be empty\n#\nk8s_get_token(){\n kubectl describe secret -n kube-system \"$(kubectl get secrets -n kube-system | awk '/^default-token/ {print $1}')\" |\n awk '/^token/ {print $2}'\n}\n\n# better than: kubectl config view | grep server\nk8s_get_api(){\n local context\n local cluster\n context=\"$(context)\"\n cluster=\"$(k config view -o jsonpath=\"{.contexts[?(@.name == \\\"$context\\\")].context.cluster}\")\"\n k config view -o jsonpath=\"{.clusters[?(@.name == \\\"$cluster\\\")].cluster.server}\"\n # or if you have jq installed:\n # k get --raw=/api | jq -r '.serverAddressByClientCIDRs[0].serverAddress'\n echo\n}\n\n# TODO: path like above to get the current context's cluster\nk8s_get_client_cert(){\n awk '/^[[:space:]]*client-cert/{print $2}' ~/.kube/config | head -n 1\n}\n\nk8s_get_client_key(){\n awk '/^[[:space:]]*client-key-data/{print $2}' ~/.kube/config | head -n 1\n}\n\nk8s_get_ca_cert(){\n awk '/^[[:space:]]*certificate-authority-data/{print $2}' ~/.kube/config | head -n 1\n}\n\n# generates files for authenticating to kube-apiserver via curl:\n#\n# curl --cert client_cert.pem --key client_key.pem --cacert ca_cert.pem https://k8smaster:6443/api/v1/pods\n# curl --cert client_cert.pem --key client_key.pem --cacert ca_cert.pem https://k8smaster:6443/api/v1/pods/namespaces/default/pods -XPOST -H 'Content-Type: application/json' -d @pod_defintion.json\nk8s_get_keys(){\n # use --decode not -d / -D which varies between Linux and Mac\n k8s_get_client_cert | base64 --decode - > client_cert.pem\n echo \"generated client_cert.pem\"\n k8s_get_client_key | base64 --decode - > client_key.pem\n echo \"generated client_key.pem\"\n k8s_get_ca_cert | base64 --decode - > ca_cert.pem\n echo \"generated ca_cert.pem\"\n}\n\n# run kubectl commands against multiple clusters\nkclusters(){\n for context in $(kubectl config get-contexts -o=name --kubeconfig clusters.yaml); do\n kubectl \"$@\" --kubeconfig clusters.yaml --context=\"$context\"\n done\n}\n\n# to kubectl apply manifests to both clusters for multi-cluster deployments\nkclustersapply(){\n kclusters apply -f \"$@\" # eg. manifests\n}\n\n# inspired by my class 'when' functions in when.sh\nwhenpodup(){\n local name=\"${1:-}\"\n shift || :\n if [ -z \"$name\" ]; then\n echo \"usage: whenpodup \"\n return 1\n fi\n local count=0\n while ! kubectl get pods \"$name\" -o 'jsonpath={.status.phase}' | grep -q 'Running'; do\n ((count+=1))\n timestamp \"waiting for pod '$name' to come up...\"\n if [ $count -gt 22 ]; then\n sleep 10\n else\n sleep 5\n fi\n done\n timestamp \"pod '$name' is up\"\n \"$@\"\n}\n" }, { "path": ".bash.d/linux.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# L i n u x\n# ============================================================================ #\n\n# Linux specific bits to not include on Mac\n\n# most of the regular stuff is in the other bash.d/*.sh files\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\nis_linux || return\n\nopen(){\n if type -P xdg-open &>/dev/null; then\n xdg-open \"$@\"\n elif sensible-browser &>/dev/null; then\n sensible-browser \"$@\"\n elif x-www-browser &>/dev/null; then\n x-www-browser \"$@\"\n elif gnome-open &>/dev/null; then\n gnome-open \"$@\"\n else\n echo \"Neither 'xdg-open' nor 'sensible-browser' were found in \\$PATH - install one of them to automatically open this URL:\"\n echo\n echo \"$*\"\n echo\n fi\n}\n\nalias reloadXdefaults=\"xrdb ~/.Xdefaults\"\n\n#setxkbmap us\n\n# Assign middle mouse to my Alt Gr key\n# TODO: change this to keysym as keycodes can change between keyboards, to find keymaps do\n# xmodmap -pkie\n\nif [ -n \"$DISPLAY\" ] && ! is_mac; then\n # This caused the left to be remapped, must test and handle better\n #xmodmap -e 'keycode 113 = Pointer_Button2'\n #xmodmap -e 'keycode 113 = Left NoSymbol Left'\n xkbset m\n # Ubuntu 12.04.1 LTS had a bug where it turned off repeat keys on my down arrow, this fixed it\n xkbset repeatkeys 116\nfi\n\nrpmqf(){\n rpm -qf \"$(readlink -m \"$1\")\"\n}\n\nfixtime(){\n # $sudo defined in .bashrc\n # shellcheck disable=SC2154\n $sudo /etc/init.d/ntp stop\n $sudo ntpdate pool.ntp.org\n $sudo /etc/init.d/ntp start\n}\n\ngetmounts(){\n #grep -e \"ext\" -e \"reiser\" -e \"fat\" -e \"ntfs\" < /proc/mounts |\n #awk '{ print $2 }'\n awk '/ext|reiser|fat|ntfs|btrfs|xfs/{print $2}'\n}\n\nfindsuid(){\n for x in $(getmounts); do\n echo \"Searching $x for suid programs:\"\n # $sudo defined in .bashrc if not root\n # shellcheck disable=SC2154\n $sudo find \"$x\" -xdev -type f -perm -u+s -exec ls -l {} \\;\n done\n}\n\nfindguid(){\n for x in $(getmounts); do\n echo \"Searching $x for guid programs:\"\n $sudo find \"$x\" -xdev -type f -perm -g+s -exec ls -l {} \\;\n done\n}\n\nfindsguid(){\n for x in $(getmounts); do\n echo \"Searching $x for suid and guid programs:\"\n $sudo find \"$x\" -xdev -type f \\( -perm -u+s -o -perm -g+s \\) -exec ls -l {} \\;\n done\n}\n\nfindwritable(){\n for x in $(getmounts); do\n echo \"Searching $x for world writeable files:\"\n $sudo find \"$x\" -xdev -type f -perm -o+w -exec ls -l {} \\;\n done\n}\n\n# ==========================\n# When using Samba WinPopups on Linux in Windows workgroups - convenient back in the day but shouldn't be needed today with the plethora of better chat tools\n#\n#netsend(){ smbclient -M \"$1\" <<< \"${*:2}\"; }\n#alias ns=netsend\n#\n# clear pop-ups and alerts if sending instant security alerts\n#clearnetsend(){\n# sudo pkill -f sambapopup\n#}\n#alias cns=clearnetsend\n#\n#clearxmessage(){\n# while pkill xmessage; do\n# sleep 0.1\n# done\n# while pkill gmessage; do\n# sleep 0.1\n# done\n#}\n# =========================\n" }, { "path": ".bash.d/lolcat.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2019-11-03 11:31:02 +0000 (Sun, 03 Nov 2019)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nlolz(){\n exec 1> >(lolcat >&2)\n}\n" }, { "path": ".bash.d/mac.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2011 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A p p l e M a c O S X\n# ============================================================================ #\n\n# More Mac specific stuff in adjacent *.sh files, especially network.sh\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\nis_mac || return\n\nexport HOMEBREW_DISPLAY_INSTALL_TIMES=1\n#export HOMEBREW_DEBUG=1\n#export HOMEBREW_CLEANUP_MAX_AGE_DAYS=30 # default: 120\n\n# Stops Mac calling update_terminal_cwd() which causes a tonne of noise during set -x tracing\nexport INSIDE_EMACS=1\n\nexport icloud=\"$HOME/Library/Mobile Documents/com~apple~CloudDocs\"\nalias icloud=\"cd '$icloud'\"\n\nalias osash=\"osascript -i\"\nalias osashell=osash\n\nif [ -x /opt/homebrew/bin/brew ]; then\n # shellcheck disable=SC2046\n eval $(/opt/homebrew/bin/brew shellenv)\nfi\n\ndate(){\n gdate \"$@\"\n}\n\nxargs(){\n # because --no-run-if-empty is useful\n command gxargs \"$@\"\n}\n\nif ! type tac &>/dev/null; then\n tac(){\n gtac \"$@\"\n }\nfi\n\n# used for Shazaming while on headphones - see:\n#\n# https://github.com/HariSekhon/Knowledge-Base/blob/master/audio.md#shazam-songs-while-using-headphones-on-mac\n#\n# Switches to Multi-Output Device which should already be configured as above and contain your headphones and BlackHole 2ch\n#\n#alias mshazam='SwitchAudioSource -s \"Multi-Output Device\"; open -a Shazam'\n#alias msound='SwitchAudioSource -s \"Multi-Output Device\"'\nunalias msound 2>/dev/null || :\nmsound(){\n # because if you have 2 multi-output devices eg.\n #\n # - one using AirPods + Blackhole\n # - another using Speakers + Blackhole\n #\n # then Mac automatically renames \"Multi-Output Device\" to \"Multi-Output Device 1\",\n # even if the other multi-output device has already been differentiated, it refuses to let you set\n # it back to the default name, so just determine what the first one is called and use that\n #\n local multi_output_device\n multi_output_device=\"$(SwitchAudioSource -a | grep -m1 '^Multi-Output Device')\"\n #echo \"Found first multi-output device: $multi_output_device\"\n echo \"Using first found multi-output device\"\n SwitchAudioSource -s \"$multi_output_device\"\n}\n\nalias restartsound='sudo killall coreaudiod'\n\nalias mshazam='msound; open -a Shazam'\n\nvol(){\n if [ $# -ne 1 ]; then\n echo \"usage: vol \"\n return 1\n fi\n osascript -e \"set volume output volume $1\"\n}\n\n# put in inputrc for readline\n#set completion-ignore-case on\n\n# Apple default in Terminal is xterm\n#export TERM=xterm\n# not sure why I set it to linux\n#export TERM=linux\n#ulimit -u 512\n\ndhcprenew(){\n local interface=\"${1:-en0}\"\n watch -q 1 ifconfig \"$interface\"\n sudo scutil <<< \"add State:/Network/Interface/$interface/RefreshConfiguration temporary\"\n watch ifconfig \"$interface\"\n}\n\ndhcpdiscover(){\n local interface=\"${1:-en0}\"\n watch -q 1 ifconfig \"$interface\"\n sudo ipconfig set \"$interface\" BOOTP\n sudo ipconfig set \"$interface\" DHCP\n watch ifconfig \"$interface\"\n}\n\nmacsleep(){\n sudo pmset sleepnow\n}\n\nnosleep(){\n echo \"Running: caffeinate -s $*\"\n echo \"(works even if you close the Macbook lid but will still sleep on battery power)\"\n caffeinate -s \"$@\"\n}\n\nsilence_startup(){\n sudo nvram SystemAudioVolume=%80\n}\n\ntop(){\n local opts=(-F -R -o)\n if [ $# -eq 1 ]; then\n command top \"${opts[@]}\" \"$1\"\n elif [ $# -gt 1 ]; then\n command top \"$@\"\n else\n command top \"${opts[@]}\" cpu\n fi\n}\n\nfixvbox(){\n sudo /Library/StartupItems/VirtualBox/VirtualBox restart\n}\n\nfixaudio(){\n sudo kextunload /System/Library/Extensions/AppleHDA.kext\n sudo kextload /System/Library/Extensions/AppleHDA.kext\n}\n\nshowhiddenfiles(){\n defaults write com.apple.finder AppleShowAllFiles YES\n # must killall Finder after this\n}\n\nalias reloadprefs='killall -u $USER cfprefsd'\nalias strace=\"dtruss -f\"\nalias usbinfo='system_profiler SPUSBDataType'\nalias vlc=\"/Applications/VLC.app/Contents/MacOS/VLC\"\n\n\n# clear paste buffer\nclpb(){\n copy_to_clipboard.sh < /dev/null\n}\n\nmacmac(){\n ifconfig |\n awk '\n /^en[[:digit:]]+:/{gsub(\":\", \"\", $1); printf \"%s:\\t\", $1}\n /^[[:space:]]ether[[:space:]]/{print $2}\n ' |\n # filters to only the lines with prefixed interfaces from first match\n grep '\\t'\n}\n\nduall(){\n # bash_tools defined in .bashrc\n # shellcheck disable=SC2154\n du -ax \"$bash_tools\" | sort -k1n | tail -n 2000\n sudo du -ax / | sort -k1n | tail -n 50\n}\nalias dua=duall\nif type -P brew &>/dev/null; then\n brew_prefix=\"$(brew --prefix)\"\n if [ -f \"$brew_prefix/etc/bash_completion\" ]; then\n # shellcheck disable=SC1090,SC1091\n . \"$brew_prefix/etc/bash_completion\"\n fi\nfi\n\nbrewupdate(){\n if ! brew update; then\n echo \"remove the following to brew update\"\n brew update 2>&1 | tee /dev/stderr | grep '^[[:space:]]*Library/Formula/' |\n while read -r formula; do\n echo rm -fv -- \"/usr/local/$formula\"\n done\n return 1\n fi\n}\n\nbrewinstall(){\n brewupdate &&\n sed 's/#.*// ; /^[[:space:]]*$/d' < ~/mac-list.txt |\n while read -r pkg; do\n brew install \"$pkg\" #||\n #{ echo \"FAILED\"; break; }\n done\n}\n\nbrew_find_unlinked_bins(){\n for x in /usr/local/Cellar/*/*/bin/*; do\n if ! [ -f \"/usr/local/bin/${x##*/}\" ]; then\n echo \"$x\"\n fi\n done\n}\n\n# don't export BROWSER on Mac, trigger python bug:\n# AttributeError: 'MacOSXOSAScript' object has no attribute 'basename'\n# from python's webbrowser library\n#export BROWSER=\"/Applications/Google Chrome.app/Contents/MacOS/Google Chrome\"\n#export BROWSER=\"/Applications/Firefox.app/Contents/MacOS/firefox\"\n\n# MacPorts - using HomeBrew instead in recent years\n#if [ -e \"/sw/etc/bash_completion\" ]; then\n# . /sw/etc/bash_completion\n#fi\n\n# seems Mac OS X has a native pkill now\n#pkill(){\n# local args=\"\"\n# local regex=\"\"\n# local grep_args=\"\"\n# while [ -n \"$1\" ]; do\n# case \"$1\" in\n# -i) grep_args=\"$grep_args -i\"\n# shift\n# ;;\n# -*) args=\"$args $1\"\n# shift\n# ;;\n# *) regex=\"$1\"\n# shift\n# ;;\n# esac\n# done\n# # TODO: check this a few times and then remove the echo\n# local proclist=$(ps -e | awk '{printf $1 OFS;for(i=4;i<=NF;i++)printf $i OFS;print\"\"}' | grep $grep_args \"$regex\")\n# if [ -n \"$proclist\" ]; then\n# echo \"$proclist\"\n# awk '{print $1}' <<< \"$proclist\" | xargs echo kill $args\n# read -r -p \"Kill all these processes? [y/N] \" answer\n# if [ \"$answer\" = \"y\" ]; then\n# awk '{print $1}' <<< \"$proclist\" | xargs kill $args\n# fi\n# fi\n#}\n" }, { "path": ".bash.d/mercurial.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# R e v i s i o n C o n t r o l - M e r c u r i a l\n# ============================================================================ #\n\ntype -P hg &>/dev/null || return 0\n\nalias hgi=hgignore\nalias hgrc='$EDITOR ~/.hgrc'\n\n# HG doesn't record dirs and there is no .hg per subdir, rather than traverse upwards checking filesystem boundaries use hg tools themselves\nisHg(){\n local target=\"${1:-.}\"\n # There aren't local .hg dirs everywhere only at top level so this is difficult in bash\n #if [ -d \"$target/.hg\" -o -d \"$(dirname \"$target\")/.hg\" ]; then\n # shortcut for efficiency\n if [ -d \"$target/.hg\" ] ||\n [ -d \"${target%/*}/.hg\" ]; then # || hg parents \"$target\" &>/dev/null; then # can only call this on files not dirs anyway since Hg doesn't track dirs\n return 0\n #elif [ -f \"$target\" ] && hg parents \"$target\"; then\n # return 0\n #elif hg status \"$target\" &>/dev/null; then # Doesn't work at all always returns 0 if a subdir of a repo and just blank even if in ignores\n # Unfortunately the -P switch only supports a single pattern so we can't use --file\n #grep -qP -f \"$(hg root)/.hgignore\"\n # algorithm horribly inefficient, was going to rewrite in perl isHg.pl but see futher down\n #while read regex; do\n # grep \"^[[:space:]]*$\" <<< \"$regex\" && continue\n # abs_path=\"$(abs_path \"$target\")\"\n # abs_path=\"${abs_path/$(hg root)\\/}\"\n # grep -qP \"$regex\" <<< \"$abs_path\" && return 1\n #done < \"$(hg root)/.hgignore\"\n # return 0\n #elif [ -d \"$target\" ]; then\n # echo \"WARNING: cannot call hg on a dir, $target is a dir so this returns false and will fall through\"\n # return 1\n # finally found a reasonably efficient way to handle all cases\n # trick to return False on subdirs which are not handled by Mercurial\nelif [ -n \"$(hg log --limit 1 \"$target\" 2>/dev/null)\" ]; then\n return 0\n else\n return 1\n fi\n}\n\nhgignore(){\n #pushd \"$srcdir\" &>/dev/null\n local hgroot\n hgroot=\"$(hg root)\"\n [ -n \"$hgroot\" ] || return 1\n \"$EDITOR\" \"$hgroot/.hgignore\"\n #popd &>/dev/null\n}\n\nhgci(){\n local hgcimsg=\"\"\n for x in \"$@\"; do\n if hg st \"$x\" | grep -q \"^[?A]\"; then\n hgcimsg+=\"$x, \"\n fi\n done\n [ -z \"$hgcimsg\" ] && return 1\n hgcimsg=\"${hgcimsg%, }\"\n hgcimsg=\"added $hgcimsg\"\n hg add -- \"$@\" &&\n echo \"committing $*\"\n hg ci -m \"$hgcimsg\" -- \"$@\"\n}\n\nhgrm(){\n hg rm -- \"$@\" &&\n hg ci -m \"removed $*\" -- \"$@\"\n}\n\nhgrevertrm(){\n hg revert \"$@\"\n rm -v -- \"$@\"\n}\n\nhgrename(){\n hg mv -- \"$1\" \"$2\" &&\n hg ci -m \"renamed $1 to $2\" -- \"$1\" \"$2\"\n}\n\nhgmv(){\n hg mv -- \"$1\" \"$2\" &&\n hg ci -m \"moved $1 to $2\" -- \"$1\" \"$2\"\n}\n\nhgl(){\n hg log \"$@\" | less\n}\n\nhgu(){\n [ -n \"$1\" ] || { echo \"ERROR: must supply arg\"; return 1; }\n [ \"$(hg diff \"$@\" | wc -l)\" -gt 0 ] || return\n hg diff -- \"$@\" | more &&\n read -r &&\n echo \"committing $*\" &&\n hg ci -m \"updated $*\" -- \"$@\"\n}\n\n#hhgu(){\n# # all playlists end in \\n from now on via paste_playlists.sh fix\n# [ -n \"$1\" ] || { echo \"ERROR: must supply arg\"; return 1; }\n# pushd \"$music\" >/dev/null\n# spotify/validate_playlists.sh \"$1\" || { echo \"Playlist validation failed\"; return 1; }\n# spotify/validate_playlist_lengths.sh \"$1\" || { echo \"Playlist dump length validation failed\"; return 1; }\n# [ `hg st \"$1\" \"spotify/$1\" | wc -l` -gt 0 ] || { echo \"No changes in either uri or track lists\"; return 0; }\n# local target=\"${1##*/}\"\n# local target_tip=\"$(dirname \"$target\")/.$(basename \"$target\").tip\"\n# hg cat \"$target\" | spotify/normalize_tracknames.pl > \"$target_tip\"\n# cat \"$target\" | spotify/normalize_tracknames.pl > \".$target\"\n# if [ -z \"$(diff -iwu \"$target_tip\" \".$target\")\" ]; then\n# echo \"Noop changes only, committing...\"\n# hg mydiff \"$target\" |\n# #egrep '^\\+' | tee /dev/stderr |\n# grep -v '^[+-][+-][+-]' # | sl --no-locking\n# hg ci -m \"updated $target\" \"$target\" \"spotify/$target\"\n# return $?\n# elif diff -iwu \"$target_tip\" \".$target\" | grep -q '^-[^-]'; then\n# local diffs=\"$(\n# { hg mydiff \"$target\"\n# hg mydiff \"spotify/$target\"\n# })\"\n# local removals=\"$(grep -c \"^-[^-]\" <<< \"$diffs\")\"\n# local additions=\"$(grep -c \"^+[^+]\" <<< \"$diffs\")\"\n# diffs=\"$(echo \"$diffs\" |\n# egrep \"^[+-]\" |\n# spotify/normalize_tracknames.pl |\n# diffnet.pl -iw\n# )\"\n# if [ -z \"$diffs\" ]; then\n# echo \"Noop changes to tracks, committing...\"\n# elif ! echo \"$diffs\" | grep -q '^-[^-]'; then\n# echo \"Net diff shows only playlist additions, committing...\"\n# echo \"$diffs\" |\n# more\n# else\n# {\n# echo \"$additions additions $removals removals\"\n# echo \"$diffs\"\n# } |\n# more &&\n# read || return\n# fi\n# hg ci -m \"updated $target\" \"$target\" \"spotify/$target\"\n# else\n# echo \"Only playlist additions detected, committing...\"\n# hg mydiff \"$target\" |\n# #grep -v '^[+-][+-][+-]'\n# egrep \"^[+-]\"\n# hg ci -m \"updated $target\" \"$target\" \"spotify/$target\"\n# return $?\n# # echo \"No additions or removals detected, playlist dump must currently be in progress\"\n# # return 1\n# fi\n# popd &>/dev/null\n#}\n\n# equiv to using the 3rd party shelve extension since HG doesn't have this Git Stash functionality\nhgshelve(){\n local hgroot\n hgroot=\"$(hg root)\"\n [ -f \"$hgroot/shelve.diff\" ] &&\n { echo \"$hgroot/shelve.diff already exists, aborting for safety to not lose changes\"; return 1; }\n hg diff > \"$hgroot/shelve.diff\"\n hg revert -a\n}\n\n# Then merge, hg up etc, then unshelve\n\nhgunshelve(){\n hg import --no-commit \"$hgroot/shelve.diff\" # && rm -v \"$srcdir/shelve.diff\"\n}\n\nhgdiff(){\n local filename=\"${1:-}\"\n [ -n \"$filename\" ] || { echo \"usage: hgdiff filename\"; return 1; }\n hg diff -- \"$filename\" > \"/tmp/hgdiff.tmp\"\n diffnet.pl \"/tmp/hgdiff.tmp\"\n}\n" }, { "path": ".bash.d/mp3.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-07-21 11:36:49 +0100 (Tue, 21 Jul 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# set the Track number metadata on mp3 files in the order that they are given\n# see much better mp3_set_track_order.sh at top level of this repo now\n#mp3_renumber(){\n# local i=0\n# for x in \"$@\"; do\n# ((i+=1))\n# id3v2 --track \"$i\" \"$x\"\n# done\n#}\n\nmp3info(){\n find \"${@:-.}\" -type f -iname '*.mp3' |\n head -n 1 |\n while read -r filename; do\n mediainfo \"$filename\"\n done\n}\n\nmp3infotail(){\n find \"${@:-.}\" -type f -iname '*.mp3' |\n tail -n 1 |\n while read -r filename; do\n mediainfo \"$filename\"\n done\n}\n\nmp3infoheadtail(){\n find \"${@:-.}\" -type f -iname '*.mp3' |\n sed -n '1p;$p' |\n while read -r filename; do\n mediainfo \"$filename\"\n done\n}\n\nmp3set(){\n if [ $# != 2 ]; then\n echo \"usage: mp3set \"\n return 1\n fi\n local artist=\"$1\"\n local album=\"$2\"\n mp3_set_artist.sh \"$artist\"\n mp3_set_album.sh \"$album\"\n mp3_set_track_order.sh\n mp3_set_track_name.sh\n}\n" }, { "path": ".bash.d/mysql.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-16 13:26:50 +0000 (Mon, 16 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# M y S Q L\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# shellcheck disable=SC1090,SC1091\ntype pass &>/dev/null ||\n. \"$bash_tools/.bash.d/functions.sh\"\n\n# highest priority env var first, common one second - export as both\nalias mysqlpass='pass MYSQL_PWD MYSQL_PASSWORD'\n" }, { "path": ".bash.d/network.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# N e t w o r k\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\nalias 4=\"ping 4.2.2.1\"\nalias 8=\"ping 8.8.8.8\"\n\nalias ping=\"ping -n\"\nalias p=\"ping\"\n\npingwait=\"-w\"\nis_mac && pingwait=\"-W\"\n\nalias ping_google=\"while true; do ping www.google.com && sleep 1 || break; done\"\nalias g=ping_google\n\n# watch_url.pl is in DevOps-Perl-tools repo which should be in $PATH\nalias watchu=\"watch_url.pl\"\n# watch google\n# https because http often gets intercepted by routers + proxies giving false 200 OKs where there is an internet issue\nalias wg=\"watch_url.pl https://google.com\"\n\nalias speedtesturl=\"browser https://speedtest.net\"\n\n# ============================================================================ #\n# Y o u r I P A d d r e s s\n# ============================================================================ #\n\n# local/internal IP address\nmyip(){\n ifconfig | grep 'inet[[:space:]]' | grep -v 127.0.0.1 | awk '{print $2}'\n}\n\n# public IP address\nifconfigco(){\n curl ifconfig.co\n # something else to consider with jq for lat/long coordinates, ASN, country etc\n #curl ifconfig.co/json\n}\n\nipinfo(){\n # returns json without /ip with region, reverse dns hostname, city, region, country, lat/long coordinates, org, postcode, timezone\n curl ipinfo.io/ip\n}\n\nipify(){\n curl http://api.ipify.org/\n echo\n}\n\n# doesn't welcome automation / curl - requires captchas now so obsolete\n#whatismyip(){\n# #lynx -dump $(lynx -dump www.whatismyip.com | tail -n 1)\n# lynx -useragent=\"Mozilla\" -dump www.whatismyip.com 2>/dev/null | awk '/Your Public IPv[46] is:/ {print $6}'\n#}\n\n# ============================================================================ #\n# F u n c t i o n s\n# ============================================================================ #\n\ncheckhost(){\n if [ -z \"$1\" ]; then\n echo \"usage: checkhost hostname/ip\"\n return 1\n fi\n if grep -qi \"unknown host\" <<< \"$(ping -c 1 \"$pingwait\" 1 \"$1\" 2>&1)\"; then\n echo \"Unknown host\"\n return 1\n fi\n}\n\nn(){\n if type -P host &>/dev/null; then\n host \"$@\"\n elif type -P nslookup &>/dev/null; then\n nslookup \"$@\"\n else\n echo \"neither host nor nslookup were found in the path\"\n return 1\n fi\n}\nalias h=n\n\ngetip(){\n host \"$@\" | grep \"has address\" | awk '{print $4; exit}'\n}\n\ntping(){\n while true; do\n #echo -n \"`date '+%F %T'` \"\n local output\n output=\"$(ping -c 1 \"$pingwait\" 2 \"$@\" |\n grep -v -e statistics \\\n -e \"transmitted\" \\\n -e \"rtt min/avg/max/mdev\" \\\n -e \"bytes of data\" \\\n -e \"^[[:space:]]*$\" \\\n -e \"^PING \" \\\n -e \"round-trip\"\n )\"\n echo \"$(date '+%F %T') ${output:-no response from $1}\"\n sleep 1\n done\n}\ntpinggw(){\n tping \"$(get_gw)\" \"$@\"\n}\n\n# for trying to find those damn wifi capture portals that disappear but block your internet http proxying\nopengw(){\n local gateway\n gateway=\"$(get_gw)\"\n open \"http://$gateway\"\n open \"https://$gateway\"\n}\n\nport(){\n if [ -z \"$2\" ]; then\n echo \"You must supply a hostname/ip address to test followed by a port number\"\n return 1\n fi\n #sudo nmap $1 -p $2 ${@:3} -P0 | grep tcp\n nc -zv \"$1\" \"$2\" 2>&1 | grep -v \"DNS fwd/rev misma\" | sed 's/[^]]*\\] //'\n}\n\ntestport(){\n if [ -z \"$2\" ]; then\n echo \"You must supply a hostname/ip address to test followed by a port number\"\n return 1\n fi\n while true; do\n timestampcmd port \"$1\" \"$2\"\n sleep 1\n done\n}\n\nhammerport(){\n for i in {1..500}; do\n printf \"%-3s: \" \"$i\"\n nc -z -v \"$1\" \"$2\"\n done\n}\n\nhalfopen(){\n while true; do\n echo -n \"half-open connections: \"\n netstat -ant | grep c SYN_RECV\n sleep 1\n done\n}\n\nget_gw(){\n local gw\n #gw=\"$(netstat -rn | awk '/^default.*\\./ {print $2;exit}')\"\n gw=\"$(\n netstat -rn |\n awk '\n /^default.*\\./ { print $2; exit }\n $1 == \"Internet:\" { inet = 1; next }\n $1 == \"Internet6:\" { inet = 0 }\n inet && ($1 == \"default\" || $1 == \"0.0.0.0\") && $2 ~ /^[0-9.]+$/ {\n print $2\n exit\n }\n '\n )\"\n if [ -z \"$gw\" ]; then\n echo \"Could not find gateway, no default route! \" >&2\n return 1\n fi\n echo \"$gw\"\n}\n\ngw(){\n local gw\n gw=\"$(get_gw)\"\n [ -n \"$gw\" ] || return 1\n ping \"$gw\"\n}\n\n\nz(){\n local gw\n gw=\"$(get_gw)\"\n if [ -n \"$gw\" ]; then\n whenup \"$gw\" &&\n whenup 4.2.2.1 &&\n whenup www.google.com echo \"INTERNET OK\"\n else\n echo \"Couldn't find gateway, cannot test upstream connectivity!\"\n return 1\n fi\n}\n\nbrowser(){\n if [ -n \"${BROWSER:-}\" ]; then\n \"$BROWSER\" \"$@\"\n elif is_mac; then\n open \"${*:-http://google.com}\"\n else\n echo \"\\$BROWSER environment variable not set and not on Mac OSX, not sure which browser to use, aborting...\"\n return 1\n fi\n}\n\nbrowse(){\n if isGit . &>/dev/null && git remote -v | grep -qi http; then\n gitbrowse \"$@\"\n else\n browser \"$@\"\n fi\n}\n\ndownorjustme(){\n browser \"http://www.downforeveryoneorjustme.com/$1\"\n}\n\n# directs to the same as downorjustme\nisupme(){\n browser \"http://www.isup.me/$1\"\n}\n\nchrome(){\n if is_mac; then\n # opens in most recent Chrome window\n # could use one of these: --new --args --incognito --new-window\n open -a 'Google Chrome' \"${*:-http://www.google.com}\"\n else\n checkprog google-chrome || return 1\n google-chrome \"${*:-http://www.google.com}\" &\n fi\n\n}\n\nff(){\n if is_mac; then\n open -a 'Firefox' \"http://${*:-www.google.com}\"\n else\n checkprog firefox || return 1\n firefox \"${*:-http://www.google.com}\" &\n fi\n}\n\ngg(){\n if [ -z \"$*\" ]; then\n browser &\n else\n searchterm=\"${*// /%20}\"\n browser \"http://www.google.com/search?q=$searchterm\" &\n fi\n}\n\nnetcraft(){\n checkprog firefox || return 1\n browser \"http://uptime.netcraft.com/up/graph?site=$*\" &\n}\n\nwikipedia(){\n checkprog \"firefox\" || return 1\n local searchterm\n searchterm=\"${*// /%20}\"\n browser \"http://en.wikipedia.org?search=$searchterm&go=Go\" &\n}\nalias wiki=wikipedia\n\ndefinition(){\n checkprog \"firefox\" || return 1\n local searchterm\n searchterm=\"${*// /%20}\"\n # hl=en&q=test&btnI=I%27m+Feeling+Lucky&meta=&aq=f\n browser \"http://www.google.co.uk/search?hl=en&q=definition+$searchterm&btnI=I%27m+Feeling+Lucky\" &\n}\n# alias def=definition\n\n# gh(){\n# url=\"http://www.google.com/search?q=\"\n# browser \"${url}site%3A$*\" &\n# browser \"${url}site%3A$* login\" &\n# browser \"${url}link%3A$*\" &\n# browser \"${url}related%3A$*\" &\n# }\n\n\nretry(){\n local cmd=\"$1\"\n local host=\"${2##*@}\"\n #local user=\"${2%%@*}\"\n local args=(\"${@:3}\")\n if [ -z \"$host\" ]; then\n echo \"You must supply a hostname or ip address to connect to\"\n return 2\n fi\n if [ \"$cmd\" = \"ssh\" ] || [ \"$cmd\" = \"rdp\" ]; then\n whenup \"$host\" || return 1\n fi\n #[ \"$cmd\" = \"ssh\" ] && host=\"root@$host\"\n if [ \"$cmd\" = \"ssh\" ]; then\n until port \"${host##*@}\" 22 >/dev/null; do\n tstamp \"trying $host port 22\"\n sleep 1\n done\n elif [ \"$cmd\" = \"rdp\" ]; then\n until port \"$host\" 3389 >/dev/null; do\n tstamp \"trying $host port 3389\"\n sleep 1\n done\n fi\n [ \"$cmd\" = \"ssh\" ] && printargs=\"\" || printargs=\"${args[*]}\"\n until \"$cmd\" \"$host\" \"${args[@]}\"; do\n sleep 1\n tstamp \"trying $cmd $host $printargs\"\n done\n echo >/dev/null\n}\n\n\nrdp(){\n if is_mac; then\n \"/Applications/Remote Desktop Connection.app/Contents/MacOS/Remote Desktop Connection\" \"$@\" &\n else\n [ -n \"$1\" ] || return 1\n local resolution=\"800x600\"\n if [ \"$(xdpyinfo | awk '/dimensions/ {print $2}' | sed 's/x.*//')\" -gt 1024 ]; then\n resolution=\"1024x768\"\n fi\n if type -P krdc &>/dev/null; then\n krdc \"rdp:/$WINDOWSDOMAIN\\\\$WINDOWSUSER@$*\" &\n exit 0\n elif type -P rdesktop &>/dev/null; then\n rdesktop -u \"$WINDOWSUSER\" -d \"$WINDOWSDOMAIN\" \"$@\" -g \"$resolution\" &\n exit 0\n else\n echo \"Could not find krdc or rdesktop in path\"\n return 1\n fi\n fi\n}\n\nrerdp(){\n retry \"whenport $1 3389; rdp\" \"$1\"\n}\n\n\n# ============================================================================ #\n# L i n u x\n# ============================================================================ #\n\nif is_linux; then\n\n ipl(){\n iptables -L | nl\n }\n\nfi\n\n\n# ============================================================================ #\n# M a c O S X\n# ============================================================================ #\n\nif ! is_mac; then\n return\nfi\n\ndnsservers(){\n scutil --dns | grep 'nameserver\\[[0-9]*\\]' | sort -u\n}\n\nflushdns(){\n dscacheutil -flushcache\n sudo killall -HUP mDNSResponder\n}\nalias flushcache=flushdns\n\n#APPLE_INTERFACES=\"Ethernet Airport\"\n#APPLE_INTERFACES=\"$(networksetup -listallnetworkservices | grep -E 'Ethernet|Wi-Fi')\"\nunset APPLE_INTERFACES\n\nget_apple_interfaces(){\n networksetup -listallnetworkservices | grep -E 'Ethernet|Wi-Fi'\n}\n\n# Cisco AnyConnect set these rules which mess up my ability to connect directly to VirtualBox VMs on HostOnly Networking\ncleardeny(){\n sudo ipfw delete \"$(sudo ipfw list | grep deny | awk '{print $1}')\"\n}\nipfwqflush(){\n sudo ipfw -q flush\n}\n\nisMacNetworkService(){\n local interface=\"$1\"\n if [ \"$interface\" != \"Thunderbolt Ethernet\" ] &&\n [ \"$interface\" != \"Wi-Fi\" ]; then\n echo \"interface must be one of Thunderbolt Ethernet or Wi-Fi\"\n return 1\n fi\n}\n\nset_dns(){\n get_apple_interfaces |\n while read -r interface; do\n sudo networksetup -setdnsservers \"$interface\" \"$@\"\n done\n}\n\nset_dns_search(){\n get_apple_interfaces |\n while read -r interface; do\n sudo networksetup -setsearchdomains \"$interface\" \"$@\"\n done\n}\n\nset_dns_search_empty(){\n set_dns_search \"Empty\"\n}\n# this wasn't found as an alias from another function\nclear_dns_search(){\n set_dns_search_empty\n}\n\nfunction publicdns(){\n set_dns 4.2.2.1 4.2.2.2 4.2.2.3 4.2.2.4 4.2.2.5 4.2.2.6\n set_dns_search_empty\n}\n\nfunction dhcpdns(){\n clear_dns_search # hangs without this as I think it tries to query DNS for all the suffixes in the list\n set_dns \"Empty\"\n #networksetup -setsearchdomains [domain2]\n}\n\nget_wifi_interface(){\n networksetup -listnetworkserviceorder |\n grep \"Hardware.*Wi-Fi\" |\n sed 's/.*: //;s/)$//'\n}\n\nget_wifi_network(){\n networksetup -getairportnetwork \"$(get_wifi_interface)\" | sed 's/^Current Wi-Fi Network: //'\n}\n\nset_wifi_network(){\n networksetup -setairportnetwork \"$(get_wifi_interface)\" \"$*\"\n}\n\nwifi(){\n if [ $# -eq 1 ]; then\n airport on\n set_wifi_network \"$1\"\n elif [ $# -eq 0 ]; then\n get_wifi_network\n else\n echo \"usage: wifi \"\n return 1\n fi\n}\n\nwifi_networks_preferred(){\n networksetup -listpreferredwirelessnetworks \"$(get_wifi_interface)\"\n}\n\nairport(){\n networksetup -setairportpower \"$(get_wifi_interface)\" \"$1\"\n}\nalias air=airport\n\nairportr(){\n airport off\n airport on\n}\nalias airr=airportr\nalias ag=\"airr; g\"\n\nwatchwifi(){\n scnum 39\n while true; do\n checkwifi\n sleep 30 || break\n done\n}\n\ncheckwifi(){\n # needs to be global otherwise will be forgotten between runs of this program\n [ -z \"$wifi_failures\" ] && wifi_failures=0\n for((i=1;i<=3;i++)); do\n if ping -c1 -W1 4.2.2.1 >/dev/null; then\n if [ \"$wifi_failures\" -gt 0 ]; then\n tstamp \"wifi recovered from $wifi_failures failures\"\n fi\n wifi_failures=0\n return\n else\n ((wifi_failures+=1))\n tstamp \"$wifi_failures wifi failures\"\n fi\n done\n timestamp \"RESTARTING WIFI\"\n airportr\n}\n\nsetdhcp(){\n isMacNetworkService \"$1\" || return 1;\n sudo networksetup -setdhcp \"$1\"\n}\n\nrenewdhcp(){\n sudo ipconfig set \"$1\" DHCP\n}\n\n#sethomenet(){\n# isMacNetworkService \"$1\" || return 1;\n# sudo networksetup -setmanual \"$1\" x.x.x.x 255.255.255.0 x.x.x.1\n# sudo route delete 0.0.0.0\n# sudo route add 0.0.0.0 x.x.x.1\n# publicdns\n#}\n" }, { "path": ".bash.d/nodejs.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2019 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# N o d e\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/os_detection.sh\"\n\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# output from 'npm bin'\nif [ -d ~/node_modules/.bin ]; then\n add_PATH ~/node_modules/.bin\nfi\n\nif [ -d \"$bash_tools/node_modules/.bin\" ]; then\n add_PATH \"$bash_tools/node_modules/.bin\"\nfi\n\nalias lsnodebin='ls -d ~/node_modules/.bin/* 2>/dev/null'\nalias llnodebin='ls -ld ~/node_modules/.bin/* 2>/dev/null'\n" }, { "path": ".bash.d/os_detection.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2010 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\ntype is_linux &>/dev/null &&\ntype isMac &>/dev/null &&\ntype isGoogleCloudShell &>/dev/null &&\ntype isAzureCloudShell &>/dev/null &&\nreturn\n\nget_os(){\n if [ -z \"${operating_system:-}\" ] ||\n ! [[ \"$operating_system\" =~ ^(Linux|Darwin)$ ]]; then\n operating_system=\"$(uname -s)\"\n export operating_system\n fi\n}\n\nisLinux(){\n [ -n \"${LINUX:-}\" ] && return 0\n get_os\n if [ \"$operating_system\" = Linux ]; then\n export LINUX=1\n return 0\n fi\n return 1\n}\n\nisMac(){\n [ -n \"${OSX:-}\" ] && return 0\n get_os\n if [ \"$operating_system\" = Darwin ]; then\n export APPLE=1\n export OSX=1\n return 0\n fi\n return 1\n}\n\nisGoogleCloudShell(){\n [ -n \"${GOOGLE_CLOUD_SHELL:-}\" ] && return 0\n get_os\n [ \"$operating_system\" = Linux ] || return 1\n # DEVSHELL_PROJECT_ID is more likely to be unique to GCP Cloud Shell environment\n #if [ -n \"${GOOGLE_CLOUD_PROJECT:-}\" ]; then\n if [ -n \"${DEVSHELL_PROJECT_ID:-}\" ]; then\n export GOOGLE_CLOUD_SHELL=1\n return 0\n fi\n return 1\n}\n\nisAzureCloudShell(){\n [ -n \"${AZURE_CLOUD_SHELL:-}\" ] && return 0\n get_os\n [ \"$operating_system\" = Linux ] || return 1\n if [ -n \"${ACC_TERM_ID:-}\" ]; then\n export AZURE_CLOUD_SHELL=1\n return 0\n fi\n return 1\n}\n\n# for compatibility to use the same names as non-interactive lib/\nis_linux(){\n isLinux\n}\n\nis_mac(){\n isMac\n}\n\nis_google_cloud_shell(){\n isGoogleCloudShell \"$@\"\n}\n\nis_azure_cloud_shell(){\n isAzureCloudShell \"$@\"\n}\n\n# make this safe to import in set -e scripts\nis_linux || :\nisMac || :\nisGoogleCloudShell || :\nisAzureCloudShell || :\n" }, { "path": ".bash.d/paths.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# $ P A T H\n# ============================================================================ #\n\n# general path additions that aren't big enough to have their own .sh file\n\n# this is sourced in .bashrc before .bash.d/*.sh because add_PATH() is used extensively everywhere to deduplicate $PATHs across disparate code and also reloads before it gets to this point in the .bash.d/*.sh lexically ordered list\n\nif type add_PATH &>/dev/null && [ -n \"${PATHS_SET:-}\" ]; then\n return\nfi\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# unreliable that HOME is set, ensure shell evaluates to the right thing before we use it\n[ -n \"${HOME:-}\" ] || HOME=~\n\ngithub=\"${github:-$HOME/github}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# ============================================================================ #\n\nrepaths(){\n unset PATHS_SET\n # shellcheck disable=SC1091\n source \"$bash_tools/.bash.d/paths.sh\"\n}\n\n#export PATH=\"${PATH%%:~/github*}\"\nadd_PATH(){\n export PATH=\"$PATH:$1\"\n # this clever stuff kills performance and I want my shell to open faster\n # it's not worth saving a few duplicates in $PATH\n # was used by dedupe paths at the end of this file\n #local env_var\n #local path\n #if [ $# -gt 1 ]; then\n # env_var=\"$1\"\n # path=\"$2\"\n #else\n # env_var=PATH\n # path=\"${1:-}\"\n #fi\n #path=\"${path%/}\"\n #path=\"${path//[[:space:]]/}\"\n #if [[ \"$path\" =~ \\$ ]]; then\n # echo \"WARNING: skipping add path '$path' for safety\"\n # return\n #fi\n #if ! [[ \"${!env_var}\" =~ (^|:)$path(:|$) ]]; then\n # # shellcheck disable=SC2140\n # eval \"$env_var\"=\"${!env_var}:$path\"\n #fi\n ## to prevent Empty compile time value given to use lib at /Users/hari/perl5/lib/perl5/perl5lib.pm line 17.\n ##PERL5LIB=\"${PERL5LIB##:}\"\n ## fix for Codeship having a space after one of the items in their $PATH, causing the second half of the $PATH to error out as a command\n #eval \"$env_var\"=\"${!env_var//[[:space:]]/}\"\n #eval \"$env_var\"=\"${!env_var##:}\"\n #export \"${env_var?env_var not defined in add_PATH}\"\n}\n\n# use 'which -a'\n#\n#binpaths(){\n# if [ $# != 1 ]; then\n# echo \"usage: binpaths \"\n# return 1\n# fi\n# local bin=\"$1\"\n# tr ':' '\\n' <<< \"$PATH\" |\n# while read -r path; do\n# if [ -x \"$path/$bin\" ]; then\n# echo \"$path/$bin\"\n# fi\n# done\n#}\n\n# need newer Homebrew curl for --cookies-from-browser functionality\n# Homebrew build wasn't compiled with it anyway - see curl_with_cookies.sh script for a more generic workaround\n# that works with any version of curl\n#if [ -d /opt/homebrew/opt/curl/bin ]; then\n# PATH=\"/opt/homebrew/opt/curl/bin:$PATH\"\n#fi\n\nadd_PATH \"/bin\"\nadd_PATH \"/usr/bin\"\nadd_PATH \"/sbin\"\nadd_PATH \"/usr/sbin\"\nadd_PATH \"/usr/local/sbin\"\nadd_PATH \"/usr/local/bin\"\nadd_PATH \"/usr/local/opt/python/libexec/bin\" # Mac brew installed Python, must be ahead of ~/anaconda/bin below\nadd_PATH \"/opt/homebrew/bin/\" # on new M1 Macs\nadd_PATH \"$bash_tools\"\nadd_PATH ~/bin\nadd_PATH ~/.local/bin\nadd_PATH ~/venv/bin\nwhile read -r x; do\n # much less noisy to just just find the right dirs instead of testing lots of files\n #[ -d \"$x\" ] || continue\n #if [ -d \"$x/bin\" ]; then\n # add_PATH \"$x/bin\"\n #else\n add_PATH \"$x\"\n #fi\ndone < <(for x in \"$bash_tools\" ~/bin; do find \"$x\" -maxdepth 2 -type d -name bin; done)\n\n# Serverless.com framework\nif [ -d ~/.serverless/bin ]; then\n add_PATH ~/.serverless/bin\nfi\n\n# HomeBrew on Linux\nif [ -d /opt/homebrew/bin ]; then\n add_PATH /opt/homebrew/bin\nfi\n\n# HomeBrew on Linux\nif [ -d ~/.linuxbrew/bin ]; then\n add_PATH ~/.linuxbrew/bin\nfi\n\n# AWS CLI Linux install location\nif [ -d ~/.local/bin ]; then\n add_PATH ~/.local/bin\nfi\n\n# AWS SAM CLI Linux install location\nif [ -d \"/home/linuxbrew/.linuxbrew/bin\" ]; then\n add_PATH \"/home/linuxbrew/.linuxbrew/bin\"\nfi\n\n# Rancher Desktop\nif [ -d ~/.rd/bin ]; then\n add_PATH ~/.rd/bin\nfi\n\nif [ -d ~/.pulumi/bin ]; then\n add_PATH ~/.pulumi/bin\nfi\n\n#add_PATH \"${JX_HOME:-$HOME/.jx}/bin\"\nadd_PATH ~/.jx/bin\n\n# do the same with MANPATH\nif [ -d ~/man ]; then\n MANPATH=~/man:\"${MANPATH:-}\"\n export MANPATH\nfi\n\n# added to .bash_profile by SnowSQL installer\n#if [ -d /Applications/SnowSQL.app/Contents/MacOS ]; then\n# add_PATH /Applications/SnowSQL.app/Contents/MacOS\n#fi\n\n# so that you can open files in IntelliJ from the command line: idea \nif [ -d \"/Applications/IntelliJ IDEA CE.app/Contents/MacOS\" ]; then\n add_PATH \"/Applications/IntelliJ IDEA CE.app/Contents/MacOS\"\nfi\n\nif [ -d \"/Applications/Visual Studio Code.app\" ]; then\n # don't need this one as you can just 'code /path/to/filename' to open the file in VS Code\n #add_PATH \"/Applications/Visual Studio Code.app/Contents/MacOS\" # Electron IDE is here\n add_PATH \"/Applications/Visual Studio Code.app/Contents/Resources/app/bin\" # code CLI is here\nfi\n\n# ============================================================================ #\n# A n a c o n d a\n# ============================================================================ #\n\n# Make sure to customize Anaconda installation and de-select Modify Path otherwise it'll change the bash profile\n\n# XXX: WARNING - this will appear earlier in the $PATH than the python bin paths, so if you have it installed, you should use it\n# otherwise pylint for example may be called from anaconda/bin but not have the pip modules necessary to check files, leading to CI breakages\n\n# for the 'conda' command\nadd_PATH ~/anaconda/bin\n\n# version installed by HomeBrew\nadd_PATH /usr/local/anaconda3/bin\n\n\n# ============================================================================ #\n# P a r q u e t T o o l s\n# ============================================================================ #\n\nfor x in ~/bin/parquet-tools-*; do\n if [ -d \"$x\" ]; then\n add_PATH \"$x\"\n fi\ndone\n\nif [ -d /usr/local/parquet-tools ]; then\n add_PATH \"/usr/local/parquet-tools\"\nfi\n\n\n# ============================================================================ #\n# M y G i t H u b r e p o s\n# ============================================================================ #\n\n# $github defined in aliases.sh\n# shellcheck disable=SC2154\nadd_PATH \"$bash_tools\"\nwhile read -r x; do\n add_PATH \"$x\"\ndone < <(find \"$bash_tools\" -maxdepth 1 -type d)\nadd_PATH \"$github/go-tools\"\nadd_PATH \"$github/go\"\nadd_PATH \"$github/go-tools/bin\"\nadd_PATH \"$github/go/bin\"\nadd_PATH \"$github/perl-tools\"\nadd_PATH \"$github/perl\"\nadd_PATH \"$github/pytools\"\nadd_PATH \"$github/tools\"\n#add_PATH \"$github/tool\"\nadd_PATH \"$github/nagios-plugins\"\nadd_PATH \"$github/nagios-plugin-kafka\"\nadd_PATH \"$github/spotify\"\nadd_PATH \"$github/spotify-tools\"\n\nif is_linux; then\n add_PATH ~/.buildkite-agent/bin\nfi\n\n# ============================================================================ #\n\nlink_latest(){\n # -p suffixes / on dirs, which we grep filter on to make sure we only link dirs\n # shellcheck disable=SC2010\n ls -d -p \"$@\" |\n grep \"/$\" |\n tail -n 1 |\n while read -r path; do\n [ -d \"$path\" ] || continue\n #local path_noversion=\"$( echo \"$path\" | perl -pn -e 's/-\\d+(\\.v?\\d+)*(-\\d+|-[a-z]+)?\\/?$//' )\"\n local path_noversion\n path_noversion=\"$(perl -pn -e 's/-\\d+[\\.\\w\\d-]+\\/?$//' <<< \"$path\")\"\n if [ \"$path_noversion\" = \"$path\" ]; then\n echo \"FAILED to strip version, linking back on itself will create a link in subdir\"\n return 1\n fi\n [ -e \"$path_noversion\" ] && [ ! -L \"$path_noversion\" ] && continue\n if is_mac; then\n local ln_opts=\"-h\"\n else\n local ln_opts=\"-T\"\n fi\n # if you're in 'admin' group on Mac you don't really need to sudo here\n # shellcheck disable=SC2154\n $sudo ln -vfs $ln_opts -- \"$path\" \"$path_noversion\"\n done\n}\n\n\n# ============================================================================ #\n# ============================================================================ #\n# O l d S t u f f\n# ============================================================================ #\n\n# Most of the stuff below has been migrated to Docker rather than /usr/local installs\n\n# ============================================================================ #\n# A p a c h e D r i l l\n# ============================================================================ #\n\n#link_latest /usr/local/apache-drill-*\n#export DRILL_HOME=/usr/local/apache-drill\n#add_PATH \"$DRILL_HOME/bin\"\n\n\n# ============================================================================ #\n# M i s c\n# ============================================================================ #\n\n#add_PATH \"/usr/local/etcd\"\n#add_PATH \"/usr/local/artifactory-oss/bin\"\n#add_PATH \"/usr/local/jmeter/bin\"\n#add_PATH \"/usr/local/jruby/bin\"\n#add_PATH \"/usr/local/jython/bin\"\n#add_PATH \"/usr/local/mysql/bin\"\n\n#add_PATH ~/bin/expect\n#add_PATH \"$RANCID_HOME/bin\"\n#add_PATH /usr/lib/bin/distcc\n#add_PATH \"/usr/lib/nagios/plugins\"\n#add_PATH \"/usr/nagios/libexec\"\n#add_PATH \"/usr/nagios/libexec/contrib\"\n\n#if is_mac; then\n# # MacPort and Octave installation\n# add_PATH /opt/local/bin\n#\n# if [ -d \"/Applications/VMware Fusion.app/Contents/Library\" ]; then\n# add_PATH \"/Applications/VMware Fusion.app/Contents/Library\"\n# fi\n#fi\n\n# ============================================================================ #\n# C a s s a n d r a\n# ============================================================================ #\n\n#export CASSANDRA_HOME=/usr/local/cassandra\n#export CCM_HOME=/usr/local/ccm\n#add_PATH \"$CASSANDRA_HOME/bin\"\n#add_PATH \"$CASSANDRA_HOME/tools/bin\"\n#add_PATH \"$CCM_HOME/bin\"\n\n\n# ============================================================================ #\n# E l a s t i c s e a r c h\n# ============================================================================ #\n\n#export ELASTICSEARCH_HOME=/usr/local/elasticsearch\n#add_PATH \"$ELASTICSEARCH_HOME/bin\"\n\n\n# ============================================================================ #\n# C o u c h b a s e\n# ============================================================================ #\n\n#export COUCHBASE_HOME=\"/Applications/Couchbase Server.app/Contents/Resources/couchbase-core\"\n#alias cbq=\"$COUCHBASE_HOME/bin/cbq\"\n#add_PATH \"$COUCHBASE_HOME/bin\"\n\n\n# ============================================================================ #\n# G r o o v y\n# ============================================================================ #\n\n# brew install groovy\n#export GROOVY_HOME=/usr/local/opt/groovy/libexec\n# brew uninstall groovy\n# brew install groovysdk\n#export GROOVY_HOME=/usr/local/opt/groovysdk/libexec\n\n# using SDK Man now, sourced at end of private .bashrc\n\n\n# ============================================================================ #\n# 0 x d a t a H 2 O\n# ============================================================================ #\n\n#export H2O_HOME=/usr/local/h2o\n#alias h2o=\"cd $H2O_HOME && java -jar h2o.jar -Xmx1g\"\n\n\n# ============================================================================ #\n# J e t t y\n# ============================================================================ #\n\n#export JETTY_HOME=\"/usr/local/jetty-hightide\"\n#alias jetty=\"cd $JETTY_HOME/ && java -jar start.jar\"\n\n\n# ============================================================================ #\n# M e s o s\n# ============================================================================ #\n\n# this breaks parsing if supplying without port and causes duplicate --master switch if supplying the switch manually to mesos-slave or mesos-slave.sh\n#export MESOS_MASTER=$HOST:5050\n\n# link_latest /usr/local/mesos\n#export MESOS_HOME=/usr/local/mesos\n#add_PATH \"$MESOS_HOME/bin\"\n\n#if is_mac; then\n# export MESOS_NATIVE_JAVA_LIBRARY=/usr/local/mesos/src/.libs/libmesos.dylib\n#else\n# # check this path\n# export MESOS_NATIVE_JAVA_LIBRARY=/usr/local/mesos/lib/libmesos.so\n#fi\n# deprecated old var\n#export MESOS_NATIVE_LIBRARY=\"$MESOS_NATIVE_JAVA_LIBRARY\"\n\n\n# ============================================================================ #\n# M o n g o D B\n# ============================================================================ #\n\n#export MONGO_HOME=/usr/local/mongo\n#add_PATH \"$MONGO_HOME/bin\"\n#add_PATH \"$github/mtools\"\n\n\n# ============================================================================ #\n# N e o 4 J\n# ============================================================================ #\n\n#export NEO4J_HOME=\"/usr/local/neo4j\"\n#add_PATH \"$NEO4J_HOME/bin\"\n\n\n# ============================================================================ #\n# S o l r\n# ============================================================================ #\n\n# find /usr/local -type d -name 'apache-solr-*' -maxdepth 1 | while read path; do sudo ln -vfsh \"$path\" \"${path%%-*}\"; done\n# link_latest '/usr/local/apache-solr-*'\n# ln -vsf /usr/local/apache-solr /usr/local/solr\n# 3.x\n#export SOLR_HOME=/usr/local/apache-solr\n# 4.x\n#export SOLR_HOME=/usr/local/solr\n#export APACHE_SOLR_HOME=\"$SOLR_HOME\"\n#add_PATH \"$SOLR_HOME/bin\"\n#add_PATH \"$SOLR_HOME/example/scripts/cloud-scripts\"\n\n\n# ============================================================================ #\n# S t o r m\n# ============================================================================ #\n\n#export STORM_HOME=/usr/local/storm\n#add_PATH \"$STORM_HOME/bin\"\n\n\n# ============================================================================ #\n# T a c h y o n\n# ============================================================================ #\n\n#export TACHYON_HOME=/usr/local/tachyon\n#add_PATH \"$TACHYON_HOME/bin\"\n\n# ============================================================================ #\n# B a s h o R i a k\n# ============================================================================ #\n\n#export RIAK_HOME=/usr/local/riak\n#add_PATH \"$RIAK_HOME/bin\"\n\n\n# ============================================================================ #\n# S c a l a\n# ============================================================================ #\n\n#add_PATH \"/usr/local/scala/bin\"\n\n\n# ============================================================================ #\n# S p a r k\n# ============================================================================ #\n\n#export SPARK_HOME=/usr/local/spark\n#add_PATH \"$SPARK_HOME/bin\"\n\n\n# ============================================================================ #\n# S o n a r Q u b e\n# ============================================================================ #\n\n#export SONAR_SCANNER_HOME=/usr/local/sonar-scanner\n#add_PATH \"$SONAR_SCANNER_HOME/bin\"\n\n\n# ============================================================================ #\n# TypeSafe Activator - Akka, Play\n# ============================================================================ #\n\n# link_latest /usr/local/activator-dist-*\n#export ACTIVATOR_HOME=/usr/local/activator-dist\n#add_PATH \"$ACTIVATOR_HOME\"\n\n# slows down new shells\n#dedupe_paths(){\n# local var=\"${1:-PATH}\"\n# local path_tmp=\"\"\n# # <( ) only works in Bash, but breaks when sourced from sh\n# # <( ) also ignores errors which don't get passed through the /dev/fd\n# # while read -r path; do\n# #done < <(tr ':' '\\n' <<< \"$PATH\")\n# local IFS=':'\n# for path in ${!var}; do\n# if [[ \"$path\" =~ ^[[:space:]]*$ ]]; then\n# continue\n# fi\n# if ! [[ \"$path_tmp\" =~ :$path(:|$) ]]; then\n# path_tmp=\"$path_tmp:$path\"\n# fi\n# done\n# eval export \"$var\"=\"\\\"$path_tmp\\\"\"\n#}\n\n# call in z_final.sh\n#dedupe_paths\n\nexport PATHS_SET=1\n" }, { "path": ".bash.d/perl.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P e r l\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/os_detection.sh\"\n\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\nif [ -d ~/perl5/bin ]; then\n add_PATH ~/perl5/bin\nfi\n\n# see the effect of inserting a path like so\n# PERL5LIB=/path/to/blah perlpath\nperlpath(){\n perl -e 'print join(\"\\n\", @INC) . \"\\n\";'\n}\n\n# XXX: Perl Taint mode resets and restricts the Perl Path to not use PERL5LIB for security\n#\n# scripts like those in the Advanced Nagios Plugins Collection and DevOps-Perl-tools will need to add lib\n#\n#if [ -d /Library/Developer/CommandLineTools/SDKs/MacOSX.sdk/System/Library/Perl/ ]; then\n# add_PATH PERL5LIB /Library/Developer/CommandLineTools/SDKs/MacOSX.sdk/System/Library/Perl\n#fi\nif [ -d ~/perl5/lib/perl5 ]; then\n #add_PATH PERL5LIB ~/perl5/lib/perl5\n #export PERL5LIB=\"$PERL5LIB:$HOME/perl5/lib/perl5\"\n if ! [[ \"${PERL5LIB:-}\" == *\"$HOME/perl5/lib/perl5\"* ]]; then\n export PERL5LIB=~/perl5/lib/perl5\"${PERL5LIB+:$PERL5LIB}\"\n fi\n\nfi\nif ! [[ \"${PERL_LOCAL_LIB_ROOT:-}\" == *\"$HOME/perl5\"* ]]; then\n export PERL_LOCAL_LIB_ROOT=\"$HOME/perl5${PERL_LOCAL_LIB_ROOT+:$PERL_LOCAL_LIB_ROOT}\"\nfi\nexport PERL_MB_OPT=\"--install_base '$HOME/perl5'\"\nexport PERL_MM_OPT=\"INSTALL_BASE=$HOME/perl5\"\n\nalias lsperlbin='ls -d ~/perl5/bin/* 2>/dev/null'\nalias llperlbin='ls -ld ~/perl5/bin/* 2>/dev/null'\n\n# cpanm --local-lib=~/perl5 local::lib\n# populates a bunch of Perl env vars pointing to ~/perl5/...\n# eval \"$(perl -I ~/perl5/lib/perl5/ -Mlocal::lib)\"\n" }, { "path": ".bash.d/postgres.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-16 13:20:17 +0000 (Mon, 16 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P o s t g r e S Q L\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/functions.sh\"\n\n# highest priority env var\nalias pgpass='pass PGPASSWORD'\n# mac\nalias postgresd='postgres -D /usr/local/var/postgres'\n" }, { "path": ".bash.d/prompt.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P r o m p t M a g i c\n# ============================================================================ #\n\n# XXX: Warning: This must be perfect - edit at your own peril as imperfect PS1 prompt codes cause terminal wrap around to the same line\n\n[ -n \"${GOOGLE_CLOUD_SHELL:-}\" ] && return\n#[ \"${USER:-}\" = vagrant ] && return\n\n# \\[\\033k\\033\\\\\\] is required for Screen auto title feature to detect prompt\n# replace \\033 with \\e as it's directly supported in PS1\n\n# need 'Defaults env_keep=STY' for this to not trigger on sudo su\n# shellcheck disable=SC1117\nSCREEN_ESCAPE=\"\\[\\ek\\e\\\\\\\\\\]\"\n\nPS1=\"\"\n\n# if inside Screen, set the screen escape inside PS1\n[ -n \"$STY\" ] && PS1=\"$SCREEN_ESCAPE\"\n\n# defined in adjacent colors.sh\n# shellcheck disable=SC2154\nPS1_COLOUR=\"$txtgrn\"\n# shellcheck disable=SC2154\nPS1_USER_COLOUR=\"$txtcyn\"\n\nif [ $EUID -eq 0 ]; then\n # shellcheck disable=SC2154\n PS1_COLOUR=\"$bldred\"\n PS1_USER_COLOUR=\"$bldred\"\nfi\n\n# XXX: important that every single escape sequence is enclosed in \\[ \\] to make sure it isn't included in the line wrapping calculcation otherwise the lines wrap back on to themselves\n# \\W basename of cwd\n# \\w full path of cwd\n# \\h host\n# shellcheck disable=SC2154\n# export PS1+=\"\\[$PS1_COLOUR\\]\\t \\[$bldblu\\]\\w \\[$PS1_COLOUR\\]> \\[$txtrst\\]\"\n# shellcheck disable=SC1117\nexport PS1+=\"\\[$PS1_COLOUR\\]\\t \\[$PS1_USER_COLOUR\\]\\u\\[$txtwht\\]@\\[$bldcyn\\]\\h:\\[$bldpur\\]\\$(git branch 2>/dev/null | grep '^*' | sed 's/^*//') \\[$bldgrn\\]\\w \\[$PS1_COLOUR\\]> \\[$txtrst\\]\"\n\n#if type kube_ps1 &>/dev/null; then\n# PS1='$(kube_ps1)'\" $PS1\"\n#fi\n\n\n# Screen relies on prompt having a dollar sign to detect the next word to set the screen title dynamically - .screenrc needs the following setting\n#\n# shelltitle ' > |'\n\n# TODO: make screen auto title detect # for root\n\n\n# For passing PS1 around:\n#\n# base64 <<< \"$PS1\"\n#\n# and then pass the result through base64 --decode\n#\n# base64 <<< \"$PS1\" | base64 --decode\n#\n# is a noop to demonstrate\n\nif [ -z \"$BASH_TIMING\" ]; then\n export PS4=\"--> \"\nfi\n\n# Bash performance profiling, can be heavy on performance, &>/tmp/bash_perf.out then use a profiling script\n# combine with DEBUG=1 or set -x\nbash_timing(){\n export BASH_TIMING=1\n export PS4='$(date \"+%s.%N ($LINENO) + \") --> '\n}\n\ndebug_bashrc(){\n PS4='+ $BASH_SOURCE:$LINENO:' bash -xic '' 2>&1 | less\n}\n\ndebug_bash_profile(){\n PS4='+ $BASH_SOURCE:$LINENO:' bash -xlic '' 2>&1 | less\n}\n\nif is_mac; then\n # turn this off on mac thing - it heavily pollutes $DEBUG output and does nothing because we have a custom prompt\n if [[ \"${PROMPT_COMMAND:-}\" =~ update_terminal_cwd ]]; then\n # this unsets direnv's hook\n #unset PROMPT_COMMAND\n PROMPT_COMMAND=\"${PROMPT_COMMAND//update_terminal_cwd;/}\"\n fi\n # stripping update_terminal_cwd can leave some weird broken PROMPT_COMMAND start due to interaction with direnv, so strip it without forking to sed/perl\n while [[ \"${PROMPT_COMMAND:-}\" =~ ^[[:space:]]|^\\; ]]; do\n PROMPT_COMMAND=\"${PROMPT_COMMAND##[[:space:]]}\"\n PROMPT_COMMAND=\"${PROMPT_COMMAND##;}\"\n done\n export PROMPT_COMMAND\n\n export SHELL_SESSION_HISTORY=0\nfi\n" }, { "path": ".bash.d/python.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P y t h o n\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# silence those annoying Python 2 cryptography warnings that mess up our programs outputs\nexport PYTHONWARNINGS=ignore::UserWarning\n\n# shellcheck disable=SC1090,SC1091\ntype add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# see the effect of inserting a path like so\n# PYTHONPATH=/path/to/blah pythonpath\npythonpath(){\n python -c 'from __future__ import print_function; import sys; [print(_) for _ in sys.path if _]'\n}\n# enable this to avoid creating .pyc files (sometimes they trip you up executing outdated python code)\n# export PYTHONDONTWRITEBYTECODE=1\n\nif is_mac; then\n # try to find pip in brew installed Python versions since it is\n # not in /System/Library/Frameworks/Python.framework/Versions/2.7/bin\n for dir in /usr/local/Cellar/python*; do\n if [ -d \"$dir\" ]; then\n add_PATH \"$dir/bin\"\n fi\n done\nfi\n\nif [ -d ~/Library/Python ]; then\n for x in ~/Library/Python/*/bin; do\n [ -d \"$x\" ] || continue\n add_PATH \"$x\"\n done\nfi\n\nalias lspythonbin='ls -d ~/Library/Python/*/bin/* 2>/dev/null'\nalias llpythonbin='ls -ld ~/Library/Python/*/bin/* 2>/dev/null'\nalias lspybin=lspythonbin\nalias llpybin=llpythonbin\n\n# RHEL8 has split python2 / python3 and removed default 'python' :-(\nif ! type -P python &>/dev/null; then\n if type -P python2 &>/dev/null; then\n python(){ python2 \"$@\"; }\n elif type -P python3 &>/dev/null; then\n python(){ python3 \"$@\"; }\n fi\nfi\n" }, { "path": ".bash.d/rancid.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2010 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# R a n c i d\n# ============================================================================ #\n\nexport RANCID_HOME=~/rancid\n\n#flogin(){\n# title \"$1\"\n# command flogin \"${@:1}\"\n# title \" \"\n#}\n\n# l33ter way of generating functions for all of the rancid programs\n#for x in $(ls \"$RANCID_HOME/bin/\"*login | sed 's/.*\\///;s/*$//'); do\n# eval \"$x\"'(){ title \"$1\"\n# command '\"$x\"' ${@:1}\n# title \" \"\n# }'\n#done\n\n# More prim and proper abstracted function with minimal function code\nrancidlogin_func(){\n local prog=\"$1\"\n local host=\"$2\"\n shift\n title \"$host\"\n command \"$prog\" \"$@\"\n title \"$LAST_TITLE\"\n}\n\n#for x in \"$RANCID_HOME/bin/\"*login; do y=${x##*/}; alias \"$y\"=\"rancidlogin_func $y\"; done\nfor x in \"$RANCID_HOME/bin/\"*login; do\n y=\"${x##*/}\"\n # needs to be evaluated here to build dynamic aliases\n # shellcheck disable=SC2139,SC2140\n alias \"$y\"=\"rancidlogin_func $y\"\ndone\n\n# for x in \"$RANCID_HOME/bin/\"*login; do y=\"${x##*/}\"; which \"${y%ogin}\" &>/dev/null || alias \"${y%ogin}\"=\"$y\"; done\n# This is slow to do every time so just past the echo output from:\n# for x in \"$RANCID_HOME/bin/\"*login; do y=\"${x##*/}\"; which \"${y%ogin}\" &>/dev/null || echo alias \"${y%ogin}\"=\"$y\"; done\n#alias al=alogin\n#alias avol=avologin\n#alias bl=blogin\n#alias cl=clogin\n#alias el=elogin\n#alias fl=flogin\n#alias hl=hlogin\n#alias htl=htlogin\n#alias jl=jlogin\n#alias mrvl=mrvlogin\n# nl is a real program so skipped nlogin\n#alias nsl=nslogin\n#alias rivl=rivlogin\n#alias tl=tlogin\n#alias tntl=tntlogin\n" }, { "path": ".bash.d/ruby.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# R u b y / G e m\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/os_detection.sh\"\n\ntype add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# gems will be installed to ~/.gem/ruby/x.y.z/bin\n\n\n# ============================================================================ #\n# R V M\n# ============================================================================ #\n# RVM\n\n# usually /usr/local/rvm/bin\nif [ -n \"${rvm_bin_path:-}\" ];then\n add_PATH \"$rvm_bin_path\"\nfi\n\nif [ -d /usr/local/rvm/bin ]; then\n add_PATH /usr/local/rvm/bin\nfi\n\nif [ -d ~/.rvm/bin ]; then\n add_PATH ~/.rvm/bin\nfi\n\n# ============================================================================ #\n# R b E n v\n# ============================================================================ #\n# RbEnv\n\nif [ -f ~/.rbenv/bin ]; then\n add_PATH ~/.rbenv/bin\nfi\n\n#eval \"$(rbenv init - --no-rehash bash)\"\n\n# ============================================================================ #\n# R u b y U s e r D i r s\n# ============================================================================ #\n# Ruby User Dirs\n\n# add newest ruby to path first\nruby_bins=\"$(\n find ~/.gem/ruby -maxdepth 2 -name bin -type d 2>/dev/null\n find ~/.local/share/gem/ruby -maxdepth 2 -name bin -type d 2>/dev/null\n)\"\n#if is_mac; then\n# ruby_bins_newest=\"$(tail -r <<< \"$ruby_bins\")\"\n#else\n# ruby_bins_newest=\"$(tac <<< \"$ruby_bins\")\"\n#fi\nruby_bins_newest=\"$(sort -Vr <<< \"$ruby_bins\")\"\nfor ruby_bin in $ruby_bins_newest; do\n add_PATH \"$ruby_bin\"\ndone\nunset ruby_bins\nunset ruby_bins_newest\n\nalias lsrubybin='ls -d ~/.gem/ruby/*/bin/* 2>/dev/null'\nalias llrubybin='ls -ld ~/.gem/ruby/*/bin/* 2>/dev/null'\n\n# ============================================================================ #\n\n# HomeBrew install on Linux (for AWS SAM CLI)\nif [ -d ~/.linuxbrew/Homebrew/Library/Homebrew/vendor/portable-ruby/current/bin ]; then\n add_PATH ~/.linuxbrew/Homebrew/Library/Homebrew/vendor/portable-ruby/current/bin\nfi\n" }, { "path": ".bash.d/screen.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S c r e e n\n# ============================================================================ #\n\n# quickly open new screen terminal in the same $PWD\nalias scbash=\"screen bash\"\n\nsc(){\n checkprog screen || return 1\n isscreen && { echo \"I am already in a screen, aborting\"; return 1; }\n screen -wipe\n local session=main\n local detached_screens\n detached_screens=\"$(screen -ls | grep Detached)\"\n if [ -n \"$detached_screens\" ] &&\n [ \"$(wc -l <<< \"$detached_screens\" | awk '{print $1}')\" = 1 ]; then\n session=\"$(awk '{print $1;exit}' <<< \"$detached_screens\")\"\n fi\n screen -aARRD -S \"$session\" \"$@\"\n}\n\nscreencmd(){\n screen -X \"$@\"\n}\n\nscreensleep(){\n screen \"$@\"\n sleep 0.1\n}\n\nalias scnum=\"screen -X number\"\n\n#screen_get_pid(){\n# # Mac ps doesn't have --noheaders\n# ps -p \"${PPID}\" -o ppid | tail -n +2 | sed 's/[[:space:]]//g'\n#}\n#\n#screen_get_session_name(){\n# local ppid\n# ppid=\"$(screen_get_pid)\"\n# screen -ls | awk \"/^[[:blank:]]$ppid/{print \\$1}\" | cut -d. -f2\n#}\n\n# needs modern version of screen for -Q switch - on Mac you must brew install screen to get recent version, then start new screen\n# when installing GNU screen you will lose Mac's screen since /usr/bin/screen uses a different /var/folders/...../.screen directory for screen sessions\nscreen_renumber_windows(){\n local windowlist\n windowlist=\"$(screen -Q windows | grep -Eo '(^|[[:blank:]])[[:digit:]]+')\"\n i=0\n for windownum in $windowlist; do\n screen -p \"$windownum\" -X number \"$i\"\n ((i+=1))\n done\n}\nalias screnum=screen_renumber_windows\n\nscreenbuf(){\n local tmp\n tmp=\"$(mktemp /tmp/screen-exchange.XXXXXX)\"\n cat > \"$tmp\"\n screen -X readbuf \"$tmp\"\n rm -- \"$tmp\";\n}\nalias sb=screenbuf\n\nsh_server_real(){\n for x in \"$@\"; do\n echo \"sh server real $x | i $x|Weight|Total\"\n done |\n tee /dev/stderr |\n screenbuf\n echo\n}\nalias fsr=sh_server_real\nalias ssr=sh_server_real\n\n# this idea's is a bust so far...\n#function c(){\n# screen -t \"$@\" bash -c \". ~/.bashrc && eval $@\"\n#}\n" }, { "path": ".bash.d/skaffold.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-07-05 16:31:14 +0100 (Mon, 05 Jul 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S k a f f o l d\n# ============================================================================ #\n\n#bash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n#autocomplete skaffold\n" }, { "path": ".bash.d/spinner.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2012-06-25 15:20:39\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S p i n n e r\n# ============================================================================ #\n\nspinner(){\n local msg=\"$* \"\n #local num=${2:-100}\n local num=1000\n #local delay=${3:-0.00001}\n local delay=0.00001\n spin='-\\|/'\n #printf \"${msg//?/ }\"\n printf \"%s\" \"$msg \"\n for ((i=0; i < num; i++)); do\n sleep $delay\n # This way results in more flashing\n #printf \"\\r${msg}${spin:$((${i}%${#spin})):1}\"\n # TODO: naughty allowing variables in printf format string but fiddly with msg var replaced backspace otherwise, clean up later...\n # shellcheck disable=SC2059\n printf \"\\\\b${msg//?/\\\\b}${msg}${spin:$((i % ${#spin})):1}\"\n done\n printf '\\b '\n echo\n echo \"done\"\n}\n" }, { "path": ".bash.d/spotify.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-07-18 19:43:00 +0100 (Sat, 18 Jul 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# exports SPOTIFY_ACCESS_TOKEN so all the user private data spotify tools (../spotify_*.sh) can use it easily without re-prompting ia browser\n\nspotifysession(){\n local SPOTIFY_ACCESS_TOKEN\n # this would prevent it from being exported to the shell as we want to make it easier to use full spotify tools\n #local SPOTIFY_ACCESS_TOKEN\n # SECONDS cannot be reset in the background in spotify_token_expire_timer() function\n SECONDS=0\n spotify_token_expire_timer &\n # defined in ../.bashrc\n # shellcheck disable=SC2154\n SPOTIFY_ACCESS_TOKEN=\"$(SPOTIFY_PRIVATE=1 \"$bash_tools/spotify/spotify_api_token.sh\")\"\n export SPOTIFY_ACCESS_TOKEN\n timestamp \"starting spotify session shell\"\n \"$SHELL\"\n timestamp \"exiting spotify session shell\"\n unset SPOTIFY_ACCESS_TOKEN\n}\n\nspotify_token_expire_timer(){\n # we have the same $$ as our foreground shell\n local ppid=$$\n while true; do\n if [ \"$SECONDS\" -ge 3600 ]; then\n # XXX: this would never work as it'd only affect this background thread\n #unset SPOTIFY_ACCESS_TOKEN\n # instead kill the shell session and handle the unset in the spotifysession() function\n timestamp \"Spotify Token expired - killing spotify shell\"\n pgrep -P \"$ppid\" |\n # protect own shell so we can finish this code pipe\n grep -v $$ |\n # bash needs a -HUP signal, ignores TERM\n xargs kill -HUP\n break\n fi\n sleep 1\n done\n}\n" }, { "path": ".bash.d/ssh-agent.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S S H A g e n t\n# ============================================================================ #\n\n# keychain id_rsa\n# . .keychain/$HOSTNAME-sh\n\nssh_agent(){\n #if [ $UID != 0 ]; then\n local SSH_ENV_FILE=~/.ssh-agent.env\n if [ -f \"${SSH_ENV_FILE:-}\" ]; then\n # shellcheck source=~/.agent.env\n # shellcheck disable=SC1090,SC1091\n . \"$SSH_ENV_FILE\" > /dev/null\n\n if ! kill -0 \"$SSH_AGENT_PID\" >/dev/null 2>&1; then\n echo \"Stale ssh-agent found. Spawning new agent...\"\n killall -9 ssh-agent\n eval \"$(ssh-agent | tee \"$SSH_ENV_FILE\")\" #| grep -v \"^Agent pid [[:digit:]]\\+$\"\n # lazy evaluated ssh func now so it's not prompted until used\n #ssh-add\n elif [ \"$(ps -p \"$SSH_AGENT_PID\" -o comm=)\" != \"ssh-agent\" ]; then\n echo \"ssh-agent PID does not belong to ssh-agent, spawning new agent...\"\n eval \"$(ssh-agent | tee \"$SSH_ENV_FILE\")\" #| grep -v \"^Agent pid [[:digit:]]\\+$\"\n # lazy evaluated ssh func now so it's not prompted until used\n #ssh-add\n fi\n else\n echo \"Starting ssh-agent...\"\n killall -9 ssh-agent\n eval \"$(ssh-agent | tee \"$SSH_ENV_FILE\")\"\n # lazy evaluated ssh func now so it's not prompted until used\n #ssh-add\n fi\n #clear\n #fi\n}\n\n[ -n \"${GOOGLE_CLOUD_SHELL:-}\" ] && return\n\n# do not launch SSH Agent if we are inheriting an SSH_AUTH_SOCK from an 'ssh -A' agent forwarding connection\n[ -n \"${SSH_AUTH_SOCK:-}\" ] && return\n\nssh_agent\n" }, { "path": ".bash.d/ssh.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S S H\n# ============================================================================ #\n\n#ssh() { set -o xtrace ; command ssh \"$@\" <<< \"$(cat .bashrc_remote)\" ; }\n\nalias sshconfig='$EDITOR ~/.ssh/config'\nalias sshcfg=sshconfig\n\n# ssh-add\nssha(){\n ssh_agent\n #num_keys=\"$(ssh-add -l | grep -Ec \"(rsa|dsa)\")\"\n #if [ \"$num_keys\" -lt 1 ]; then\n # ssh-add ~/.ssh/id_[rd]sa\n #else\n # return 0\n #fi\n for key in ~/.ssh/id_[rd]sa; do\n key_fingerprint=\"$(ssh-keygen -lf \"$key\" | awk '{print $2}')\"\n if ! ssh-add -l | grep -Fq \"$key_fingerprint\"; then\n ssh-add \"$key\"\n fi\n done\n}\n\nssh_func(){\n ssha\n if [ \"$1\" = \"ssh\" ] || [ \"$1\" = \"vagrant\" ]; then\n local n=2\n [ \"$1\" = \"vagrant\" ] && ((n+=1))\n until [ \"$n\" -gt \"$#\" ]; do\n case ${!n} in\n -*) :\n ;;\n *) grep -Eq \"^[0-9]+$\" <<< \"${!n}\" || break\n ;;\n esac\n ((n+=1))\n done\n fi\n local t=\"${!n}\" # indirect reference to variable number by evaluating\n t=\"${t##*@}\"\n t=\"${t%%.*}\"\n title \"$t\"\n command \"$1\" \"${@:2}\"\n [ \"$1\" != \"scp\" ] && title \"$LAST_TITLE\"\n}\nalias ssh=\"ssh_func ssh\"\nalias sshl=\"ssh-add -l\"\nalias sshni=\"ssh_func ssh -oPreferredAuthentications=publickey -oStrictHostKeyChecking=no\"\nalias scp=\"ssh_func scp\"\nalias sftp=\"ssh_func sftp\"\n#alias sshc=\"ssh_custom\"\n\nsafe_ssh(){\n if [ $# -lt 1 ]; then\n echo \"usage: safe_ssh [user@]hostname\"\n return 1\n fi\n host=\"${1##*@}\"\n if grep -q '@' <<< \"$1\"; then\n user=\"${1%%@*}\"\n else\n user=root\n fi\n #keys=`ssh -oStrictHostKeyChecking=no $@ 'for x in rsa dsa; do ssh-keygen -l -f /etc/ssh/ssh_host_${x}_key ; done' 2>&1`\n #keys=`ssh -oStrictHostKeyChecking=no $@ 'for x in rsa dsa; do cat /etc/ssh/ssh_host_${x}_key ; done' 2>&1`\n keys=\"$(ssh \"$user@$host\" 'for x in rsa dsa; do cat /etc/ssh/ssh_host_${x}_key.pub ; done')\"\n rsa_key=\"$(echo \"$keys\" | awk '/ssh-rsa/ {print $1\" \"$2}')\"\n dsa_key=\"$(echo \"$keys\" | awk '/ssh-dsa/ {print $1\" \"$2}')\"\n known_key=\"$(grep \"${@##*@}\" ~/.ssh/known_hosts | awk '{print $2\" \"$3}' | sort -u)\"\n echo\n if [ \"$rsa_key\" = \"$known_key\" ]; then\n echo \"OK: Host rsa key matches known key\"\n elif [ \"$dsa_key\" = \"$known_key\" ]; then\n echo \"OK: Host dsa key matches known key\"\n else\n echo 'WARNING: known ssh key for '\"$1\"' does not match either rsa or dsa keys obtained from server!!!'\n echo \"Known Key: $known_key\"\n echo \"RSA Key: $rsa_key\"\n echo \"DSA Key: $dsa_key\"\n fi\n}\nalias sssh=safe_ssh\n\ncheck_sshkey(){\n for x in \"$@\"; do\n grep \"$x\" ~/.ssh/known_hosts |\n sort |\n while read -r host id known_key; do\n scanned_key=\"$(ssh-keyscan \"$host\" | awk \"/^$host $id / {print \\$3}\")\"\n if [ \"$scanned_key\" != \"$known_key\" ]; then\n echo -e \"\\\\nMISMATCH: $host\\\\nknown key: $known_key\\\\nscanned_key:$scanned_key\\\\n\\\\n\"\n fi\n done\n done\n}\n\n#update_sshkey(){\n# host=\"$1\"\n# id=\"$2\"\n# key=\"$3\"\n# perl -pi -e \"s/^$host .*/$host $id $key/\" ~/.ssh/known_hosts\n#}\n\nressh(){\n # FIXME: a cheat, it should be set properly but ssh in retry doesn't look like it's triggers ssh_func properly\n title \"$1\"\n retry ssh \"$@\"\n title \"$LAST_TITLE\"\n}\n\nrissh(){\n if [ $# -lt 1 ]; then\n echo \"rissh \"\n return 1\n fi\n cleankey \"$@\"\n ressh \"$@\" -oStrictHostKeyChecking=no\n}\n\nissh(){\n if [ $# -lt 1 ]; then\n echo \"issh \"\n return 1\n fi\n cleankey \"$@\"\n ssh -oStrictHostKeyChecking=no \"$@\"\n}\n\nbouncessh(){\n checkhost \"$1\" || return 1\n title \"$1\"\n whendown \"$1\"\n ressh \"$@\"\n}\nalias bssh=bouncessh\n\nbouncerissh(){\n checkhost \"$1\" || return 1\n title \"$1\"\n whendown \"$1\"\n rissh \"$@\"\n}\nalias brissh=bouncerissh\nalias bissh=bouncerissh\n\nrekey(){\n [ -n \"$1\" ] || { echo \"usage: rekey host\"; return 1; }\n cleankey \"$1\"\n ssh-keyscan -t rsa \"$1\" | grep \"^$1 ssh-rsa\" >> ~/.ssh/known_hosts\n ssh-keyscan -t dsa \"$1\" | grep \"^$1 ssh-dss\" >> ~/.ssh/known_hosts\n}\n\nsshkey(){\n local key=~/.ssh/id_rsa.pub\n # now available on Mac, but my tried and tested function of years gone by dedupes the keys\n# if type -P ssh-copy-id; then\n# ssh-copy-id -i \"$key\" \"$@\"\n# else\n ssh \"$@\" '\n umask 077;\n [ -d ~/.ssh ] || mkdir -p ~/.ssh;\n key=`cat`;\n # my version is better than what ssh-copy-id did it would add duplicate keys\n if ! grep \"$key\" ~/.ssh/authorized_keys >/dev/null 2>&1; then\n echo $key >> ~/.ssh/authorized_keys;\n fi;\n chmod 0600 ~/.ssh/authorized_keys\n # this line was the only advantage ssh-copy-id script had\n test -x /sbin/restorecon && /sbin/restorecon ~/.ssh ~/.ssh/authorized_keys >/dev/null 2>&1 || true\n ' < \"$key\"\n# fi\n}\n\nsshkeygo(){\n sshkey \"$@\"\n ssh \"$@\"\n}\n\nsshkey2(){\n sshkeygo \"$@\"\n}\n\ncleankey(){\n if [ $# -lt 1 ]; then\n echo \"usage: cleankey regex\"\n return 1\n fi\n for x in \"$@\"; do\n ssh-keygen -R \"$x\"\n local aliasname\n aliasname=\"$(host \"$x\" | awk '/is an alias for/ {print $6}')\"\n if [ -n \"$aliasname\" ]; then\n ssh-keygen -R \"$aliasname\"\n ssh-keygen -R \"${aliasname%%.*}\"\n fi\n continue\n# local ip\n# ip=\"$(host -W 1 \"$x\" | grep address)\"\n# if [ $? -eq 0 ]; then\n# ip=\"$(cut -d\" \" -f 4 <<< \"$ip\")\"\n# perl -pi -e 's/^\\[?[^,]+\\]?(:\\d+)?,\\[?'\"$ip\"'\\]?(:\\d)? .*$//;s/^'\"$ip\"' .*$//' ~/.ssh/known_hosts\n# fi\n# # need to leave second deletion just in case as you may want to specify just the ip address\n# #perl -pi -e 's/^\\[?'\"$x\"'\\]?(:\\d+)?\\[,\\s.*$//;s/^.*[^,]+,'\"$x\"' .*$//' ~/.ssh/known_hosts\n# perl -pi -e 's/^'\"$x\"'\\s.*$//;s/^.*[^,]+,'\"$x\"' .*$//' ~/.ssh/known_hosts\n done\n}\n\nkeyremove(){\n for x in \"$@\"; do\n # shellcheck disable=SC1117\n ssh -o \"PasswordAuthentication no\" \"$x\" '\n for y in ~/.ssh/authorized_keys*; do\n if [ -f \"$y\" ]; then\n perl -pi -e '\"'s/ssh-rsa .*= hari@.*\\n//'\"' \"$y\"\n fi\n done\n '\n done\n}\n\n#keyremoveall(){\n# for x in \"$@\"; do\n# for y in root hari oracle; do\n# keyremove \"$y@$x\"\n# done\n# done\n#}\n" }, { "path": ".bash.d/svn.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# R e v i s i o n C o n t r o l - S u b v e r s i o n\n# ============================================================================ #\n\n# I don't use SVN any more so a lot of the convenient aliases for daily use are commented out\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# superceded by hg and then git pull\n#alias u=\"svn up\"\n#alias sd=\"svn diff\"\n#alias svnl=svnlog\n#alias svnr=\"svn revert\"\n\n# remapped to screen\n#s(){ svn st \"$@\" | more; }\n#stx(){ svn st \"$@\" | grep -v \"^?\"; }\n\nisSvn(){\n local target=${1:-.}\n if [ -d \"$target/.svn\" ]; then\n return 0\n elif [ -f \"$target\" ] &&\n [ -d \"$(dirname \"$target\")/.svn\" ]; then\n return 0\n else\n return 1\n fi\n}\n\nsvn(){\n if is_mac; then\n export stat_formatopt=f\n else\n export stat_formatopt=c\n fi\n local svn_owner\n for x in \"$@\"; do\n if [ -d \"$x/.svn\" ]; then\n local dir_tested=true\n svn_owner=\"$(stat -$stat_formatopt \"%u\" \"$x/.svn\")\"\n if [ \"$EUID\" != \"$svn_owner\" ]; then\n echo \"YOU ARE RUNNING SVN AS THE WRONG USER ON $x\"\n return 1\n fi\n fi\n done\n if [ \"$dir_tested\" != \"true\" ]; then\n if [ -d \"./.svn\" ]; then\n svn_owner=\"$(stat -$stat_formatopt \"%u\" ./.svn)\"\n if [ \"$EUID\" != \"$svn_owner\" ]; then\n echo \"YOU ARE RUNNING SVN AS THE WRONG USER HERE\"\n return 1\n fi\n fi\n fi\n command svn \"$@\"\n}\n\nsvnst(){\n svn st \"$@\"\n}\n\nsvnkw(){\n svn ps svn:keywords \"LastChangedBy LastChangedDate Revision URL Id\" \"$@\"\n}\n\nsvnadd(){\n svn add -- \"$@\" &&\n svnkw \"$@\"\n}\n\nsvni(){\n svn pe svn:ignore -- \"${@:-.}\"\n}\n\nsvnaddci(){\n svnadd \"$@\" &&\n svn ci -m \"added $*\" -- \"$@\"\n}\n\nsvnci() {\n local svncimsg=\"\"\n for x in \"$@\"; do\n if svn st \"$x\" | grep -q \"^[?A]\"; then\n svncimsg+=\"$x, \"\n fi\n done\n [ -z \"$svncimsg\" ] && return 1\n svncimsg=\"${svncimsg%, }\"\n svncimsg=\"added $svncimsg\"\n svn add -- \"$@\" &&\n svn ci -m \"$svncimsg\" \"$@\"\n}\n\nsvnrm(){\n svn rm -- \"$@\" &&\n svn ci -m \"removed $*\" -- \"$@\"\n}\n\nsvnrmf(){\n svn rm --force -- \"$@\" &&\n svn ci -m \"removed $*\" -- \"$@\"\n}\n\nsvnrename(){\n svn up \"$(dirname \"$1\")\" \"$(dirname \"$2\")\"\n svn mv -- \"$1\" \"$2\" &&\n svn ci -m \"renamed $1 to $2\" -- \"$1\" \"$2\"\n}\n\nsvnrename2(){\n local svn_url\n svn_url=$(svn info \"$1\" | grep \"^URL: \" | sed 's/^URL: //')\n [ -n \"$svn_url\" ] || return\n svn rename -m \"renamed $1 to $2\" -- \"$svn_url\" \"$(dirname \"$svn_url\")/$2\"\n svn up -- \"$1\" \"$2\"\n}\n\nsvnmkdir(){\n svn mkdir --parents -- \"$@\" &&\n svn ci -m \"created directory $*\" -- \"$@\"\n}\n\nsvnmv(){\n svn up \"$(dirname \"$1\")\" \"$(dirname \"$2\")\"\n svn mv -- \"$1\" \"$2\" &&\n svn ci -m \"moved $1 to $2\" -- \"$1\" \"$2\"\n}\n\nsvnrevert(){\n svn revert -- \"$@\"\n}\n\nsvnlog(){\n local args=()\n local args2=()\n until [ $# -lt 1 ]; do\n case \"$1\" in\n -*) args+=(\"$1\")\n ;;\n *) args2+=(\"$1\")\n ;;\n esac\n shift\n done\n svn up \"${args2[@]}\" &&\n read -r -p \"press enter to see log\" &&\n svn log \"${args[@]}\" \"${args2[@]}\" | less\n}\n\nsvnu(){\n [ -n \"$1\" ] || { echo \"ERROR: must supply arg\"; return 1; }\n [ \"$(svn diff -- \"$@\" | wc -l)\" -gt 0 ] || return\n svn diff -- \"$@\" | more &&\n read -r &&\n svn ci -m \"updated $*\" -- \"$@\"\n}\n\nsvne(){\n svn ps svn:executable on \"$@\"\n}\n\nsvnec(){\n svne \"$@\";\n for x in \"$@\"; do\n svn ci -m \"set executable on $x\"\n done\n}\n\nsvncommitauthors(){\n svn log |\n awk '/^r[[:digit:]]+[[:space:]]/ {print $3}' |\n sort |\n uniq -c |\n sort -k1nr\n}\n\nrmnonsvn(){\n svn st |\n grep \"^?\" |\n awk '{print $2}' |\n xargs rm -f --\n}\n\nsvndifflast(){\n local rev=HEAD\n local rev_last=PREV\n if grep -q '^[[:digit:]]\\+' <<< \"$1\"; then\n rev=\"$1\"\n shift;\n fi\n if [ \"$rev\" != \"HEAD\" ]; then\n #let rev_last=$rev-1\n (( rev_last = rev - 1 ))\n fi\n svn diff -r \"$rev_last:$rev\" -- \"$@\" |\n more\n}\n#alias sdl=svndifflast\n\nsvndiff(){\n local filename=\"${1:-}\"\n [ -n \"$filename\" ] || { echo \"usage: svndiff filename\"; return 1; }\n svn diff \"$filename\" > \"/tmp/svndiff.tmp\"\n diffnet.pl \"/tmp/svndiff.tmp\"\n}\n\nsvndiffcumulative(){\n local url\n svn up\n url=\"$(svn info | awk '/^URL/ {print $2}')\"\n HEAD=\"$(svn info | awk '/Revision/ {print $2}')\"\n for x in $(eval echo \"{25470..$HEAD}\"); do\n ((y=x+1))\n echo -n \"svn $x => $y: \"\n svn diff -r -- \"$x:$y\" \"$url\"\n done\n}\nalias svndiffcum=\"svndiffcumulative\"\n\nsvncommmitcount(){\n svn up\n svn log -r 25470:HEAD |\n grep -E \"^r[[:digit:]]+ |\" |\n wc\n}\n" }, { "path": ".bash.d/teamcity.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-11-24 17:09:11 +0000 (Tue, 24 Nov 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T e a m C i t y\n# ============================================================================ #\n\n# sets TeamCity URL to the local docker and finds and loads the current container's superuser token to the environment for immediate use with teamcity_api.sh\nteamcity_local(){\n TEAMCITY_SUPERUSER_TOKEN=\"$(\n # project name must match COMPOSE_PROJECT_NAME from teamcit.sh otherwise will fail to find token\n docker-compose -p bash-tools -f \"$(dirname \"${BASH_SOURCE[0]}\")/../docker-compose/teamcity.yml\" \\\n logs teamcity-server | \\\n grep -E -o 'Super user authentication token: [[:alnum:]]+' | \\\n tail -n1 | \\\n awk '{print $5}' || :\n )\"\n\n export TEAMCITY_SUPERUSER_TOKEN\n export TEAMCITY_URL=\"http://localhost:8111\"\n}\n" }, { "path": ".bash.d/terraform.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-09-24 18:02:04 +0100 (Thu, 24 Sep 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T e r r a f o r m\n# ============================================================================ #\n\nif ! [ -e ~/.tfenv/bin ] && is_mac; then\n mkdir -p -v ~/.tfenv\n tfenv_bin=\"$(find /usr/local/Cellar/tfenv -type d -name bin 2>/dev/null | head -n1)\"\n if [ -d \"$tfenv_bin\" ]; then\n ln -sfv -- \"$tfenv_bin\" ~/.tfenv/bin\n fi\nfi\n\nadd_PATH ~/.tfenv/bin\n\n# don't get this wrong or you'll get this error:\n#\n# ERRO[0000] fork/exec /Users/hari/.tfenv/bin: no such file or directory\n# ERRO[0000] Unable to determine underlying exit code, so Terragrunt will exit with error code 1\n#\nif [ -x ~/.tfenv/bin/terraform ]; then\n #export TERRAGRUNT_TFPATH=~/.tfenv/bin/ # it's full path to binary executable not a search $PATH!\n # neweer versions of Mac seems to not create ~/.tfenv/bin/ terraform link and instead use /opt/homebrew/bin/terraform link to the tfenv Cellar path\n export TERRAGRUNT_TFPATH=~/.tfenv/bin/terraform\nelif ! [ -x \"$TERRAGRUNT_TFPATH\" ]; then\n unset TERRAGRUNT_TFPATH\nfi\n\nexport TG_PROVIDER_CACHE=1\nexport TG_PROVIDER_CACHE_HOST=172.0.0.1\n\nalias tf=terraform\nalias tfp='tf plan'\nalias tfa='tf apply'\nalias tfip='tf init && tfp'\nalias tfia='tf init && tfa'\nalias tfaa='tfa -auto-approve'\nalias tfiaa='tfia -auto-approve'\n#complete -C /Users/hari/bin/terraform terraform\n\nunalias tffu &>/dev/null || :\ntffu(){\n local lock_id=\"${1:-}\"\n # self-determine the lock if not provided\n if [ -z \"$lock_id\" ]; then\n lock_id=\"$(terraform plan -input=false -no-color 2>&1 | grep -A 1 'Lock Info:' | awk '/ID:/{print $NF; exit}')\"\n fi\n if [ -z \"$lock_id\" ]; then\n echo \"Failed to determine lock ID\" >&2\n return 1\n fi\n terraform force-unlock -force \"$lock_id\"\n}\n\nalias tg=terragrunt\nalias tgp='tg plan'\nalias tga='tg apply'\nalias tgaa='tga -auto-approve'\nalias tgip='tg init && tgp'\nalias tgia='tg init && tga'\n\n# the fix for .terraform.lock.hcl:\n#\n# the cached package for registry.terraform.io/hashicorp/aws 5.80.0 (in .terraform/providers) does not match any of the checksums recorded in the dependency lock file\n#\nalias tfprov='terraform providers lock -platform=windows_amd64 -platform=darwin_amd64 -platform=linux_amd64'\nalias tgprov='terragrunt providers lock -platform=windows_amd64 -platform=darwin_amd64 -platform=linux_amd64'\n\nunalias tgfu &>/dev/null || :\ntgfu(){\n local lock_id=\"${1:-}\"\n # self-determine the lock if not provided\n if [ -z \"$lock_id\" ]; then\n lock_id=\"$(terragrunt plan -input=false -no-color 2>&1 | grep -A 1 'Lock Info:' | awk '/ID:/{print $NF; exit}')\"\n fi\n if [ -z \"$lock_id\" ]; then\n echo \"Failed to determine lock ID\" >&2\n return 1\n fi\n terragrunt force-unlock -force \"$lock_id\"\n}\n\nif [ -n \"${github:-}\" ]; then\n for x in terraform-templates terraform tf; do\n if [ -d \"$github/$x\" ]; then\n # shellcheck disable=SC2139\n alias tft=\"cd '$github/$x'\"\n break\n fi\n done\nfi\n\n#generate_terraform_autocomplete(){\n# local terraform_bin\n# local terraform_version_number\n#\n# for terraform_bin in ~/bin/terraform[[:digit:]]*; do\n# [ -x \"$terraform_bin\" ] || continue\n# terraform_version_number=\"${terraform_bin##*/terraform}\"\n# # expand now\n# # shellcheck disable=SC2139,SC2140\n# alias \"tf${terraform_version_number}\"=\"$terraform_bin\"\n# complete -C \"$terraform_bin\" terraform\n# complete -C \"$terraform_bin\" tf\n# done\n#\n# terraform_bin=\"$(type -P terraform)\"\n# complete -C \"$terraform_bin\" terraform\n# complete -C \"$terraform_bin\" tf\n#}\n#\n#generate_terraform_autocomplete\n" }, { "path": ".bash.d/title.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T i t l e M a g i c\n# ============================================================================ #\n\n# Sets the Screen and Terminal titles\n\nalias ti=\"title\"\n# static title - turn dynamic prompt escape codes off, while optionally setting new title\nalias sti=\"dpoff >/dev/null; ti\"\n\ntermtitle(){\n # in tmux sets the secondary title at bottom right, duplicating info\n if ! istmux; then\n printf '\\033]0;%s\\007' \"${*:- }\"\n fi\n}\n\nisscreen(){\n # $STY is only set in screen it seems so this determines if we're in screen\n [ -n \"${STY:-}\" ]\n}\n\nscreentitle(){\n if isscreen; then\n # shellcheck disable=SC1003\n printf '\\033k%s\\033\\\\' \"${*:- }\"\n # or\n # screen -X title \"$*\"\n fi\n}\n\nistmux(){\n [ -n \"${TMUX:-}\" ]\n}\n\ntmuxtitle(){\n if istmux; then\n # window name appears in bottom left as a secondary name\n #printf \"\\033]2;%s\\033\\\\\" \"${*:-}\"\n # this is actually what we want to act like screen\n tmux rename-window \"${*:-}\"\n fi\n}\n\ntitle(){\n export LAST_TITLE=\"$TITLE\"\n #if [ $# -eq 0 ]; then\n # return\n # various commands will reset the title after their commands so skip those calls if NO_SCREEN_UPDATES is set\n if [ -z \"$*\" ] &&\n [ \"$NO_SCREEN_UPDATES\" = \"1\" ]; then\n return\n fi\n export TITLE=\"$*\"\n termtitle \"$TITLE\"\n screentitle \"$TITLE\"\n tmuxtitle \"$TITLE\"\n}\n\n# .bashrc reload causes title loss if enabling this\n#title\n# so instead just reset the termtitle which we don't see anyway and get rid of that annoying Unnamed in the title bar\ntermtitle \" \"\n\n# ============================================================================ #\n\n# toggle dynamic prompt on / off\ndpstatus(){\n if grep -q '^\\\\\\[\\\\ek\\\\e\\\\\\\\\\\\]' <<< \"$PS1\"; then\n echo \"enabled\"\n return 0\n else\n echo \"disabled\"\n return 1\n fi\n}\n\n# dynamic prompt escape codes off\ndpoff(){\n if dpstatus >/dev/null; then\n title \" \"\n PS1=\"${PS1#\\\\[\\\\ek\\\\e\\\\\\\\\\\\\\]}\"\n export PS1\n export NO_SCREEN_UPDATES=1\n echo \"disabled\"\n fi\n}\n\n# dynamic prompt escape codes on\ndpon(){\n if ! dpstatus >/dev/null; then\n PS1=\"${SCREEN_ESCAPE}${PS1}\"\n export PS1\n export NO_SCREEN_UPDATES=0\n echo \"enabled\"\n fi\n}\n\n# toggle dynamic prompt on/off\ndp(){\n if dpstatus; then\n printf '\\b\\renabled => '\n dpoff\n else\n printf '\\b\\rdisabled => '\n dpon\n fi\n title\n}\n\n# ============================================================================ #\n\nman(){\n title \"man $1\"\n command man \"$@\"\n title \"$LAST_TITLE\"\n}\n\nsudo(){\n title \"sudo $1\"\n command sudo \"$@\"\n title \"$LAST_TITLE\"\n}\n\nvim(){\n local title=\"\"\n #until [ -z \"$1\" ]; do\n for x in \"$@\"; do\n case \"$x\" in\n -*) :\n ;;\n +*) :\n ;;\n *) #title=\"$title$x \"\n title=\"$x\"\n break\n ;;\n esac\n #shift\n done\n local num=10\n if [[ \"${TITLE_SHORT:-}\" =~ ^[0-9]+$ ]]; then\n num=$TITLE_SHORT\n fi\n if [ \"$num\" -lt 3 ]; then\n num=3\n fi\n title=\"${title//.txt/}\"\n if dpstatus >/dev/null; then\n if echo \"$title\" | grep -q docs/; then\n title=\"$(basename \"$title\")\"\n title \"d${title:0:$num}\"\n else\n title=\"$(basename \"$title\")\"\n title \"${title:0:$num}\"\n fi\n fi\n command vim \"$@\"\n #if dpstatus >/dev/null; then title; fi\n}\n" }, { "path": ".bash.d/travis_ci.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Wed Jan 20 15:28:12 2016 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T r a v i s C I\n# ============================================================================ #\n\n# Travis bash autocomplete\n# adapted from Travis ruby gem auto-added to end of ~/.bashrc\n# shellcheck disable=SC1090,SC1091\n#[ -f ~/.travis/travis.sh ] && source ~/.travis/travis.sh\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\ntype git_repo &>/dev/null || . \"$bash_tools/.bash.d/git.sh\"\ntype browse &>/dev/null || . \"$bash_tools/.bash.d/network.sh\"\n\nalias trav='travis_browse'\n\ntravis_browse(){\n local repo\n repo=\"$(github_repo)\"\n url=\"https://travis-ci.org/${TRAVIS_USER:-${USER:-$(whoami)}}/$repo\"\n browser \"$url\"\n}\n\n# for auto authentication using Travis CI tools like travis_last_log.py and travis_debug_session.py\n#export TRAVIS_TOKEN=...\n\ntravis_debug(){\n # code has better automatic handling, doesn't need this now\n #if grep '/' <<< \"$1\" &>/dev/null; then\n # travis_debug_session.py -r \"$1\" ${@:2}\n #else\n # travis_debug_session.py -J \"$1\" ${@:2}\n #fi\n opts=()\n if [[ \"$PWD\" =~ /github/ ]]; then\n local repo\n repo=\"$(git_repo)\"\n if [ -n \"$repo\" ]; then\n opts+=(--repo \"$repo\")\n fi\n fi\n travis_debug_session.py \"${opts[@]}\" \"$@\"\n}\n\ntravis_log(){\n local repo\n repo=\"$(git_repo)\"\n travis_last_log.py --failed \"$repo\" \"$@\"\n}\n" }, { "path": ".bash.d/trivy.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2023-05-12 06:50:49 +0100 (Fri, 12 May 2023)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T r i v y\n# ============================================================================ #\n\n#bash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#type add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n#autocomplete trivy\n" }, { "path": ".bash.d/vagrant.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Thu Mar 14 12:42:17 2013 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# V a g r a n t\n# ============================================================================ #\n\n#export VAGRANT_HOME=~/vagrant\n#export VAGRANT_BOXES=~/boxes\n\n# $bash_tools defined in adjacent shell modules\n# shellcheck disable=SC2154\nexport vagrant=\"$bash_tools/vagrant\"\n\n#alias cd_vagrant='[ \"$PWD\" = \"$VAGRANT_HOME\" ] || cd \"$VAGRANT_HOME\"'\n#alias cd_vagrant='cd \"$VAGRANT_HOME\"'\nalias cd_vagrant='cd \"$vagrant\"'\nalias cdv=cd_vagrant\nalias vhome=cd_vagrant\n#alias v='cd_vagrant; vagrant'\n# 'v' is aliased to vim now as it's used much more often\n#alias v='vagrant'\nalias vag='vagrant'\n#alias vf='cd_vagrant; vim Vagrantfile; vagrant_gen_etc_hosts; eval \"$(vagrant_gen_aliases)\"'\nalias vst='vagrant status'\nalias vrun='vst | grep running'\n# vr is aliased to vbox_running in virtualbox.sh\nalias vrr='vrun'\n#alias vssh='cd_vagrant; ssh_func vagrant ssh'\n#alias vssh='cd_vagrant; vagrant ssh'\nalias vssh='vagrant ssh'\nalias boxes='cd $VAGRANT_BOXES'\n\nwhile read -r directory; do\n # shellcheck disable=SC2139,SC2140\n alias \"v${directory##*/}\"=\"cd $directory\"\ndone < <(find \"$vagrant\" -maxdepth 1 -type d)\n\n# see ../vagrant_hosts.sh for similar parsing\n#\n#vagrant_parse_hosts(){\n# if ! [ -f \"$VAGRANT_HOME/Vagrantfile\" ]; then\n# return\n# fi\n# #grep '[^#]*config.vm.define' \"$VAGRANT_HOME/Vagrantfile\" | awk -F'\"' '{print $2}'\n# sed 's/#.*//;/^[[:space:]]*$/d' \"$VAGRANT_HOME/Vagrantfile\" |\n# grep -e host_name -e network |\n# grep -B1 -e network |\n# grep -v -e \"^--\" -e \"default_hostname\" |\n# sed 's/^.*[[:space:]]\"//;s/\"//' |\n# tr '\\n' ' ' |\n# perl -pn -e 's/(\\.\\d+)\\s/$1\\n/g'\n#}\n#\n#vagrant_gen_aliases(){\n# vagrant_parse_hosts |\n# while read -r host ip rest; do\n# if ! type \"$host\" &>/dev/null; then\n# #echo \"alias $host='ssh root@$host'\"\n# #echo \"alias $host='vups $host'\"\n# echo \"alias $host='vssh $host'\"\n# fi\n# done\n#}\n#\n# don't really use these aliases to vagrant boxes any more\n#eval \"$(vagrant_gen_aliases)\"\n\n#vagrant_gen_etc_hosts(){\n# vagrant_parse_hosts |\n# while read -r host ip rest; do\n# if [ -n \"${rest:-}\" ]; then\n# echo \"error third token '$rest' detected from pipe line '$ip $host $rest'\"\n# return 1\n# fi\n# [ \"${host}\" = \"localhost\" ] && continue\n# host_record=\"$ip $host.local $host\"\n# # sudo auto-defined in .bashrc\n# # shellcheck disable=SC2154\n# $sudo perl -pi -e \"s/^$ip\\\\s+.*/$host_record/\" /etc/hosts\n# if [ -n \"$ip\" ]; then\n# grep -q \"^$host_record\" /etc/hosts ||\n# $sudo sh -c \"echo '$host_record' >> /etc/hosts\"\n# else\n# echo \"no ip passed in pipe for host '$host'! \"\n# return 1\n# fi\n# done\n#}\n\nvagrant_usage(){\n if [ -z \"$1\" ]; then\n echo \"usage: ${FUNCNAME[1]} \"\n return 1\n fi\n}\n\nvup(){\n #vagrant_usage \"$1\" || return 1\n vagrant up \"$@\"\n}\n\nvre(){\n vagrant_usage \"$1\" || return 1\n vagrant reload \"$@\"\n}\n\nvressh(){\n vagrant_usage \"$1\" || return 1\n vagrant reload \"$1\"\n vagrant ssh \"$1\"\n}\n\nvsus(){\n #vagrant_usage \"$1\" || return 1\n vagrant suspend \"$@\"\n}\n\nvres(){\n #vagrant_usage \"$1\" || return 1\n vagrant resume \"$@\"\n}\n\n#alias vsusall=\"vsus $(vst | grep running | awk '{print $1}')\"\nvsusall(){\n local running_vms=()\n read -r -a running_vms <<< \"$(vst | grep running | awk '{print $1}')\"\n [ ${#running_vms} -gt 0 ] || return 0\n vsus \"${running_vms[@]}\"\n}\nalias vsusa=vsusall\n\nvupssh(){\n vagrant_usage \"$1\" || return 1\n local status\n status=\"$(vst \"$1\")\"\n if grep -Eq \"^$1[[:space:]]\" <<< \"$status\"; then\n grep -Eq \"^$1[[:space:]]+running\" <<< \"$status\" || vup \"$1\"\n else\n echo \"VM not found: $1\"\n return 1\n fi\n #vup $1\n vssh \"$1\"\n}\nalias vups=\"vupssh\"\n\nvhalt(){\n #vagrant_usage \"$1\" || return 1\n vagrant halt \"$@\"\n}\n\nvrhalt(){\n # want splitting\n # shellcheck disable=SC2046\n vhalt \"$@\" $(vagrant status | awk '/running/ {print $1}')\n}\n\nvrsus(){\n # want splitting\n # shellcheck disable=SC2046\n vsus $(vagrant status | awk '/running/ {print $1}')\n}\n\nvdestroy(){\n #vagrant_usage \"$1\" || return 1\n vagrant destroy --force \"$@\"\n}\n\nvdestroyup(){\n vdestroy \"$@\" || :\n vup \"$@\"\n}\n\nvdestroyups(){\n vdestroy \"$@\" || :\n vups \"$@\"\n}\n\nvprovision(){\n #vagrant_usage \"$1\" || return 1\n vagrant provision \"$@\"\n}\n\nvprov(){\n vprovision \"$@\"\n}\n\nwhenvdown(){\n vst |\n while grep \"$1.*running\"; do\n sleep 0.1\n done\n}\n" }, { "path": ".bash.d/vim.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc and later functions.sh)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# V I M\n# ============================================================================ #\n\nbash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# vim() function is in title.sh as it is tightly integrated with the functions in there and not necessary otherwise\n\nvimhome(){\n # must expand in vim, not in shell\n # shellcheck disable=SC2016\n vim -Nesc '!echo $VIMRUNTIME' -c qa |\n #tr -dc '[:alnum:]/\\r\\n'\n sed 's,[^/]*/,/,'\n}\n\ncdvimhome(){\n # shellcheck disable=SC2164\n cd \"$(vimhome)\"\n}\n\nvimfiletypes(){\n cdvimhome || return 1\n find syntax ftplugin -iname '*.vim' -exec basename -s .vim {} + | sort -u\n}\n\ngitgrepvim(){\n if [ $# -lt 2 ]; then\n echo \"usage: gitgrepvim \"\n return 3\n fi\n # want splitting\n # shellcheck disable=SC2046\n vim $(git grep -i \"$*\" | sed 's/:.*//' | sort -u)\n}\nalias ggrepv=gitgrepvim\n\ngrepvim(){\n if [ $# -lt 2 ]; then\n echo \"usage: grepvim \"\n return 3\n fi\n # want splitting\n # shellcheck disable=SC2046\n vim $(grep -l \"$1\" \"$@\" | sort -u)\n}\nalias grepv=grepvim\nalias vimgrep=grepvim\n\nvimchanged(){\n local git_root\n git_root=\"$(git_root)\"\n # want splitting\n # shellcheck disable=SC2046\n vim \"$@\" $(git status --porcelain | awk '/^.M/ {$1=\"\"; print}' | sed \"s|^[[:space:]]|$git_root/|\")\n}\n\nfilesvim(){\n local files=()\n # mapfile not available on Mac and read -a only takes first result\n # shellcheck disable=SC2207\n IFS=$'\\n' files=($(find . -iname \"$@\" | sort -u))\n if [ -n \"${files[*]}\" ]; then\n vim \"${files[@]}\"\n fi\n}\nalias fvim=filesvim\nalias vimf=fvim\n\n# vim which\nvw(){\n local path\n if [ -z \"$1\" ]; then\n echo \"usage: vw \"\n return 1\n fi\n path=\"$(which \"$1\")\"\n if [ -z \"$path\" ]; then\n echo \"File not found in \\$PATH: $1\"\n return 1\n fi\n \"$EDITOR\" \"$path\"\n}\n\nvihosts(){\n [ $EUID -eq 0 ] && sudo=\"\" || sudo=sudo\n $sudo vim /etc/hosts\n $sudo pkill -1 dnsmasq\n}\n\nvimup(){\n local arg=\"$1\"\n up_target=\"$(findup \"$arg\")\"\n [ -n \"$up_target\" ] || return 1\n vim \"$(findup \"$1\")\"\n}\n" }, { "path": ".bash.d/virtualbox.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2015-01-14 22:13:51 +0000\n# Original: circa 2011 - 2012\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# V i r t u a l B o x\n# ============================================================================ #\n\nvboxmanage_list_vms=\"VBoxManage list runningvms\"\n# shellcheck disable=SC2139\nalias vbox_running=\"echo $vboxmanage_list_vms; $vboxmanage_list_vms\"\nalias vr=vbox_running\nunset vboxmanage_list_vms\n\nalias startvm=\"VBoxManage startvm\"\nalias stopvm=\"VBoxManage controlvm acpipowerbutton\"\nalias poweroff=\"VBoxManage controlvm poweroff\"\nalias savestate=\"VBoxManage savestate\"\nalias controlvm=\"VBoxManage controlvm\"\n\n#docker(){\n# local vm='boot2docker-vm'\n# VBoxManage list runningvms | grep -q \"$vm\" || VBoxManage startvm \"$vm\"\n# command docker \"$@\"\n#}\n\n# fixvbox() in .bash.d/apple.sh restarts VirtualBox on Mac OSX only\n\nfixvboxnet(){\n sudo ifconfig vboxnet0 down\n sudo ifconfig vboxnet0 up\n}\n" }, { "path": ".bash.d/vnc.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# V N C\n# ============================================================================ #\n\n#bash_tools=\"${bash_tools:-$(dirname \"${BASH_SOURCE[0]}\")/..}\"\n\n# shellcheck disable=SC1090,SC1091\n#. \"$bash_tools/.bash.d/os_detection.sh\"\n\nif [ -d \"/Applications/VNC Viewer.app/Contents/MacOS\" ]; then\n export PATH+=\":/Applications/VNC Viewer.app/Contents/MacOS\"\nfi\n\nvncwho() {\n netstat -tW |\n grep \".*:5900 .*:.*\" |\n awk '{a=$5; split(a,b,\":\"); print b[1]}'\n}\n\nvnc(){\n local host_port=\"$1\"\n # if just a port number is given, then it's shorthand for localhost: eg. for copying and pasting Qemu's randomly generated VNC port\n if [[ \"$host_port\" =~ ^[[:digit:]]+$ ]]; then\n host_port=\"localhost:$1\"\n fi\n if test -x \"/Applications/VNC Viewer.app/Contents/MacOS/vncviewer\"; then\n \"/Applications/VNC Viewer.app/Contents/MacOS/vncviewer\" \"$host_port\" &\n elif type -P krdc &>/dev/null; then\n krdc \"vnc:/$host_port\" &\n elif type -P vncviewer &>/dev/null; then\n vncviewer \"$host_port\" &\n else\n echo \"could not find krdc or vncviewer in \\$PATH\"\n return 1\n fi\n}\n\nrevnc(){\n local host_port=\"$1\"\n local host=\"$host_port\"\n if [[ \"$host\" =~ : ]]; then\n host=\"${host%%:*}\"\n fi\n if [ -z \"$1\" ]; then\n echo \"You must supply a hostname or ip address to connect to\"\n return 1\n fi\n # $pingwait is defined in network.sh\n # shellcheck disable=SC2154\n while ! ping -c 1 \"$pingwait\" 1 \"$host\" &>/dev/null; do\n sleep 1\n done\n timestamp \"machine is up\"\n until vnc \"$host_port\"; do\n sleep 1\n timestamp \"retrying $host_port\"\n done\n}\n" }, { "path": ".bash.d/welcome.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2012-06-25 15:20:39 +0100\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# W e l c o m e\n# ============================================================================ #\n\n# Original version was in Perl many years ago, but defaulting to Python version now\n\n# Bash version further down is for interest of if you don't have the other repos\n\n# welcome should be found in $PATH from DevOps-Golang-Tools repo\n# welcome.py should be found in $PATH from DevOps-Python-Tools repo\nwelcome(){\n if type -P welcome &>/dev/null; then\n command welcome\n elif type -P welcome.py &>/dev/null; then\n welcome.py\n fi\n}\n\n# set this instead to use bash only version if you don't have the other repos\n#alias welcome=bash_welcome\n\nbash_welcome(){\n local msg\n msg=\"Welcome Hari - your last access was $(last|head -n2|tail -n1|sed 's/[^ ]\\+ \\+[^ ]\\+ \\+[^ ]\\+ \\+//;s/ *$//')\"\n #local msg=\"Welcome Hari\"\n # generated by for x in {A..z}; do printf \"%s\" $x; done\n #charmap=\"ABCDEFGHIJKLMNOPQRSTUVWXYZ[]^_\\`abcdefghijklmnopqrstuvwxyz\"\n # generated by: for x in {1..128}; do printf \\\\$(printf '%03o' $x); done\n # shellcheck disable=SC1117\n charmap=\"!\\\"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_\\`abcdefghijklmnopqrstuvwxyz{|}~ \\t\\n\"\n for ((i=0; i<\"${#msg}\"; i++)); do\n local x=\"${msg:i:1}\"\n #echo \"x == $x\"\n printf \" \"\n local j=0\n while true; do\n #for ((j=0; j<\"${#charmap}\"; j++)); do\n #while true; do\n #set -x\n if [ $j -gt 2 ]; then\n local y=$x\n else\n local y=${charmap:$((RANDOM%${#charmap})):1}\n fi\n #local y=\"${charmap:j:1}\"\n printf \"\\\\b%s\" \"$y\"\n # This does not have enough precision, re-implement in Perl\n # This is because it's an external being called, otherwise pure bash\n # is so fast that you don't see any effect...\n sleep 0.000000000001\n #perl -e 'sleep 0.0000000000000000000000000001'\n [ \"$y\" = \"$x\" ] && break\n ((j+=1))\n #set +x\n done\n done\n #printf \"\\\\n\"\n printf \"\\\\n\"\n}\n" }, { "path": ".bash.d/when.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 - 2012 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# W h e n F u n c t i o n s\n# ============================================================================ #\n\n# interactive time latch alternative to 'at' command\nwhen(){\n # should be in the format HH:MM:SS\n local time=\"$1\"\n shift || :\n if ! grep -Eq \"^[012]?[0-9]:[0-5]?[0-9]:[0-5]?[0-9]$\" <<< \"$time\"; then\n echo \"invalid time format - must be in format HH:MM:SS\"\n return 1\n fi\n while true; do\n if [ \"$(date '+%T')\" = \"$time\" ]; then\n break\n fi\n sleep 1\n done\n \"$@\"\n}\n\nwhenup(){\n local host=\"$1\"\n shift || :\n checkhost \"$host\" || return 1\n local count=0\n # defined in network.sh\n # shellcheck disable=SC2154\n while ! ping -c 1 \"$pingwait\" 1 \"$host\" &>/dev/null; do\n ((count+=1))\n timestamp \"waiting for $host to come up...\"\n if [ $count -gt 22 ]; then\n sleep 10\n else\n sleep 5\n fi\n done\n timestamp \"$host is up\"\n \"$@\"\n}\n\n# HTTP(s) version of whenup because corporate firewalls block ping\nwhenurl(){\n local url=\"$1\"\n shift || :\n local count=0\n while ! curl -s --connect-timeout 2 \"$url\" &>/dev/null; do\n ((count+=1))\n timestamp \"waiting for $url to come up...\"\n if [ $count -gt 22 ]; then\n sleep 10\n else\n sleep 5\n fi\n done\n timestamp \"$url is up\"\n \"$@\"\n}\n\nwhendown(){\n local host=\"$1\"\n shift || :\n checkhost \"$host\" || return 1\n local count=0\n while ping -c 1 \"$pingwait\" 1 \"$host\" &>/dev/null; do\n ((count+=1))\n timestamp \"waiting for machine to go down...\"\n if [ $count -gt 22 ]; then\n sleep 10\n else\n sleep 5\n fi\n done\n timestamp \"machine is down\"\n \"$@\"\n}\n\nwhenport(){\n local host=\"$1\"\n local port=\"$2\"\n shift || :\n shift || :\n checkhost \"$host\" || return 1\n local count=0\n timestamp \"checking port $port open...\"\n checkprog nc\n while ! nc -z \"${host#*@}\" \"$port\" &>/dev/null; do\n ((count+=1))\n timestamp \"waiting for port $port to open...\"\n if [ $count -gt 22 ]; then\n sleep 10\n else\n sleep 5\n fi\n done\n timestamp \"port $port is open\"\n \"$@\"\n}\n\nwhendone(){\n local search=\"$1\"\n shift || :\n if [ -z \"$search\" ]; then\n echo \"usage: when \"\n return 1\n fi\n while true; do\n if ! pgrep -qf \"$search\"; then\n echo\n break\n else\n echo -n .\n sleep 1\n fi\n done\n \"$@\"\n}\n" }, { "path": ".bash.d/z_final.sh", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC2230\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: circa 2006 (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# F i n a l i z a t i o n\n# ============================================================================ #\n\n# place to add last minute clean ups like path deduping\n\n# slows down new shells\n#dedupe_paths\n" }, { "path": ".bash_logout", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# B a s h L o g o u t\n# ============================================================================ #\n\n# read all history lines not already read from the history file and append them to the history list\nhistory -n\n\n# destroy kerberos tickets in all caches (-A), quietly don't beep (-q)\nkdestroy -A -q\n\nclear\n\n# From Ubuntu\n## when leaving the console clear the screen to increase privacy\n#\n#if [ \"$SHLVL\" = 1 ]; then\n# [ -x /usr/bin/clear_console ] && /usr/bin/clear_console -q\n#fi\n" }, { "path": ".bash_profile", "content": "#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n#\n\n# ~/.bash_profile: executed by bash(1) for login shells.\n# see /usr/share/doc/bash/examples/startup-files for examples.\n# the files are located in the bash-doc package.\n\ntrap clear EXIT\n\n# the default umask is set in /etc/login.defs\n#umask 022\n\nif [ -f ~/.bashrc ]; then\n . ~/.bashrc\nfi\n\n# not supported in the tmux terminal in GCP Cloud Shell\n#if ! is_mac &&\n# ! isGoogleCloudShell &&\n# [ \"${TERM:-}\" != \"xterm-256color\" ]; then\n# setterm -blank 0\n#fi\n\n# prints a cool spinning welcome message which shows the time of last login\n# this is available in the Python / Perl and Golang Devops Tools repos,\n# as well as a function in .bash.d/welcome.sh in the DevOps Bash Tools repo\n#if type welcome &>/dev/null; then\n# welcome\n#fi\n\n#eval \"$(rbenv init -)\"\n\n# from brew install bash-completion\n[[ -r \"/usr/local/etc/profile.d/bash_completion.sh\" ]] && . \"/usr/local/etc/profile.d/bash_completion.sh\"\n\n#sudo setmixer -V pcm 100\n\ncomplete -C /usr/local/bin/terragrunt terragrunt\n\n# ============================================================================ #\n# This should be automatically added to ~/.bash_profile when you install SDKman (install/install_sdkman.sh):\n#\n#THIS MUST BE AT THE END OF THE FILE FOR SDKMAN TO WORK!!!\nexport SDKMAN_DIR=\"$HOME/.sdkman\"\n[[ -s \"/Users//.sdkman/bin/sdkman-init.sh\" ]] && source \"/Users//.sdkman/bin/sdkman-init.sh\"\n" }, { "path": ".bashrc", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC1091\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# BASH - Heavily Customized Environment\n# ============================================================================ #\n\n# Sources thousands of lines of Bash code written over the course of ~15+ years\n# some of which is now found in this GitHub repo's .bash.d/*.sh\n\n# ============================================================================ #\n#\n# put this at the top of your ~/.bashrc to inherit the goodness here (assuming you've checked out this repo to ~/github/bash-tools):\n#\n# if [ -f ~/github/bash-tools/.bashrc ]; then\n# . ~/github/bash-tools/.bashrc\n# fi\n#\n# ============================================================================ #\n\n\n# Use with PS4 further down + profile-bash.pl (still in private repos) for performance profiling this bashrc\n#set -x\n\n# If not running interactively, don't do anything:\n[ -z \"${PS1:-}\" ] && return\n\n[ -n \"${PERLBREW_PERL:-}\" ] && return\n\n# Another alternative\n#case $- in\n# *i*) ;;\n# *) return 0;;\n#esac\n\n# Another variation\n#if [[ $- != *i* ]] ; then\n# # Shell is non-interactive. Be done now!\n# return\n#fi\n\n# ============================================================================ #\n\n# after cleanshell, not even $HOME is set, this messes up things that base off $HOME, like SDKman\nif [ -z \"${HOME:-}\" ]; then\n export HOME=~\nfi\n\nbash_tools=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n# needed to inherit by things like vim script execution from within files using libraries rooted at this location\nexport bash_tools\n\n# shellcheck disable=SC1090,SC1091\n. \"$bash_tools/.bash.d/os_detection.sh\"\n\n# enable color support for ls\nif [ \"$TERM\" != \"dumb\" ] && \\\n ! is_mac; then\n eval \"$(dircolors -b)\"\nfi\n\n# shut up Mac, Bash still rocks\nexport BASH_SILENCE_DEPRECATION_WARNING=1\n\n# ============================================================================ #\n\n# technically should get called only for new login shells\n#[ -f /etc/profile ] && . /etc/profile\n[ -f /etc/bash/bashrc ] && . /etc/bash/bashrc\n[ -f /etc/bashrc ] && . /etc/bashrc\n\n[ -f /etc/bash_completion ] && . /etc/bash_completion\n\n[ -x /usr/bin/lesspipe ] && eval \"$(SHELL=/bin/sh lesspipe)\"\n\n# shellcheck disable=SC1090,SC1091\n[ -f \"$HOME/.aliases\" ] && source \"$HOME/.aliases\"\n\n# ============================================================================ #\n\n# SECURITY TO STOP STUFF BEING WRITTEN TO DISK\n#unset HISTFILE\n#unset HISTFILESIZE\nexport HISTSIZE=50000\nexport HISTFILESIZE=50000\n\nrmhist(){ history -d \"$1\"; }\nhistrm(){ rmhist \"$1\"; }\nhistrmlast(){ history -d \"$(history | tail -n 2 | head -n 1 | awk '{print $1}')\"; }\n\n# This adds a time format of \"YYYY-mm-dd hh:mm:ss command\" to the bash history\nexport HISTTIMEFORMAT=\"%F %T \"\n\n# stop logging duplicate successive commands to history\n#HISTCONTROL=ignoredups:ignorespace\nHISTCONTROL=ignoredups\n\n# Neat trick \"[ \\t]*\" to exclude any command by just prefixing it with a space. Fast way of going stealth for pw entering on cli\n# & here means any duplicate patterns, others are simple things like built-ins and ls and stuff you don't need history for\n#export HISTIGNORE=\"[ \\t]*:&:ls:[bf]g:exit\"\n\n# append rather than overwrite history\nshopt -s histappend\n\n# check window size and update $LINES and $COLUMNS after each command\nshopt -s checkwinsize\n\nshopt -s cdspell\n\n# prevent core dumps which can leak sensitive information\nulimit -c 0\n\n# tighten permissions except for root where library installations become inaccessible to my user account\nif [ $EUID = 0 ]; then\n umask 0022\nelse\n # caused no end of problems when doing sudo command which retained 0077 and broke library access for user accounts\n #umask 0077\n umask 0022\nfi\n\n# make less more friendly for non-text input files, see lesspipe(1)\n[ -x /usr/bin/lesspipe ] && eval \"$(SHELL=/bin/sh lesspipe)\"\n\n# ============================================================================ #\n\nsudo=sudo\nif [ $EUID -eq 0 ]; then\n # used throughout .bash.d/*.sh\n # shellcheck disable=SC2034\n sudo=\"\"\nfi\n\n# shellcheck disable=SC1090,SC1091\ntype add_PATH &>/dev/null || . \"$bash_tools/.bash.d/paths.sh\"\n\n# ============================================================================ #\n\n# want this to fail is there is no match because we should always have local .bash.d/*.sh in this repo\n# shopt -s nullglob\nfor src in \"$bash_tools/.bash.d/\"*.sh; do\n # shellcheck disable=SC1090,SC1091\n . \"$src\"\ndone\n# shopt -u nullglob\n\n# added by travis gem - should be in ~/.bashrc so not needed to duplicate here\n#[ -f /Users/hari.sekhon/.travis/travis.sh ] && source /Users/hari.sekhon/.travis/travis.sh\n\n# shellcheck disable=SC1090,SC1091\n[ -f \"$HOME/.bashrc.local\" ] && . \"$HOME/.bashrc.local\"\nif [ -d \"$HOME/.bash.d\" ]; then\n shopt -s nullglob\n for src in \"$HOME/.bash.d/\"*.sh; do\n # shellcheck disable=SC1090,SC1091\n . \"$src\"\n done\n shopt -u nullglob\nfi\nif [ -d \"$HOME/.bash.autocomplete.d\" ]; then\n shopt -s nullglob\n for src in \"$HOME/.bash.autocomplete.d/\"*.sh; do\n # shellcheck disable=SC1090,SC1091\n . \"$src\"\n done\n shopt -u nullglob\nfi\n" }, { "path": ".buildkite/pipeline.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-03-13 21:10:39 +0000 (Fri, 13 Mar 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# B u i l d K i t e C I\n# ============================================================================ #\n\n# BuildKite Pipeline\n#\n# add this command to the UI and it will read the rest of the steps from here:\n#\n# - command: buildkite-agent pipeline upload\n\n# Yaml Anchors workaround to BuildKite's lack of global retries configuration - credit to Jason @ BuildKite for this workaround:\n #\n# https://forum.buildkite.community/t/reschedule-builds-on-other-agents-rather-than-fail-builds-when-agents-time-out-or-are-killed-machine-shut-down-or-put-to-sleep/1388/5\n#\nanchors:\n std_retries: &std_retries\n retry:\n automatic:\n - exit_status: -1 # Agent was lost\n limit: 2\n - exit_status: 255 # Forced agent shutdown\n limit: 2\n\nsteps:\n - command: setup/ci_bootstrap.sh\n label: ci bootstrap\n timeout: 30 # brew can take 10 mins just to do a brew update\n branches: master\n <<: [*std_retries]\n - wait\n - command: make init\n label: init\n timeout: 2\n branches: master\n <<: [*std_retries]\n - wait\n - command: make ci\n label: build\n timeout: 60\n branches: master\n <<: [*std_retries]\n - wait\n - command: make test\n label: test\n timeout: 120\n branches: master\n <<: [*std_retries]\n" }, { "path": ".circleci/config.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-23 23:30:14 +0000 (Sun, 23 Feb 2020)\n# Original: H1 2016 (Circle CI 1.x)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C i r c l e C I\n# ============================================================================ #\n\n# Master Template with more advanced config:\n#\n# https://github.com/HariSekhon/Templates/blob/master/circleci_config.yml\n\n# Reference:\n#\n# https://circleci.com/docs/2.0/configuration-reference\n\nversion: 2.1\n\nworkflows:\n version: 2\n workflow:\n jobs:\n - build\n\njobs:\n build:\n docker:\n - image: cimg/base:2024.12\n resource_class: small\n steps:\n # CLI is too old - config validate breaks in test - install new version to fix\n # doesn't work - existing version is too old to update\n #- run: circleci update\n - run: |\n curl -sSLf https://raw.githubusercontent.com/CircleCI-Public/circleci-cli/main/install.sh | sudo bash\n - checkout\n #- setup_remote_docker:\n # version: 20.10.11\n - run: setup/ci_bootstrap.sh\n - run: make init\n - run: make\n - run: make test\n" }, { "path": ".cirrus.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-24 16:55:36 +0000 (Mon, 24 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C i r r u s C I\n# ============================================================================ #\n\n# https://cirrus-ci.org/guide/writing-tasks/\n\ncontainer:\n image: ubuntu:18.04\n\ntask:\n env:\n TMPDIR: /var/tmp\n script:\n - setup/ci_bootstrap.sh\n - make init\n - make ci test\n" }, { "path": ".dockerignore", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Sep 12 13:06:25 2017 +0200\n#\n# vim: filetype=conf\n#\n\n# ============================================================================ #\n# . d o c k e r i g n o r e\n# ============================================================================ #\n\n# https://docs.docker.com/engine/reference/builder/#dockerignore-file\n\n# =================================================\n# Don't send things you don't need to Docker server and avoid uploading your secrets / keys!!\n#\n# XXX: RULES:\n# - .dockerignore must be at top-level root context from which you invoke 'docker build'\n# - unfortunately .dockerignore doesn't match basenames like .gitignore so you need to prefix **/ for recursive matching to be safe\n# - Last Match Wins - you must put more specific whitelisting matches after the general exclusion pattern\n\n# ====================================================================\n# Smaller more concise .dockerignore files are found in the builds at:\n#\n# https://github.com/HariSekhon/Dockerfiles\n\n# =========================================================\n# This is a huge list of exclusions which covers most cases\n#\n# XXX: Best Practice - enable '*' ignore and create short concise whitelist of inclusions\n#\n# *\n#\n# Second option is to rely on this pretty extensive blacklist, which excludes most known credentials files, all hidden dot files and major RCS repos like Git / Mercurial / Subversion\n#\n# Sloppy Docker builds which do 'COPY/ADD .' are a ** Security Risk ** - see Dockerfiles repo's tests/ which checks for their existence in all Dockerfile's\n#\n# https://github.com/HariSekhon/Dockerfiles\n\n# *\n\n# =========================================================================================\n# Whitelist - must come after the more general blacklist pattern * above as Last Match Wins\n#\n# always include package.json and requirements.txt for standard dependency installations on NodeJS and Python\n!package.json\n!requirements.txt\n!LICENSE\n\n# ===============\n# Docker specific\n\n# still sent to the daemon as needed to do the job but aren't included in the image by ADD/COPY . commands\n**/Dockerfile\n**/.dockerignore\n\n**/docker-compose.yml\n**/.gitignore\n**/.gcloudignore\n**/.ssh/\n# don't accidentally publish your whole code base via Docker like Twitter Vine did!!\n**/.git/\n**/.svn/\n**/.hg/\n**/git/\n**/github/\n**/gitolite*/\n**/gitroot/\n**/mercurial/\n**/hg/\n**/hgroot/\n**/svn/\n**/svnroot/\n\n**/node_modules/\n**/dist/\n**/fatpacks/\n**/logs/\n**/vendor/\n**/vagrant/\n**/venv/\n**/wordlists/\n**/pytools_checks/\n**/debs/\n**/rpms/\n**/drive/\n**/Google Drive/\n**/Dropbox/\n\n# XXX: don't include any hidden files unless we explicitly override and include them with a !.filename\n**/.*\n\n# don't include CI configs not covered by ignoring dotfiles\n**/Jenkinsfile\n**/azure-pipelines.y*ml\n**/bitbucket-pipelines.y*ml\n**/buddy.y*ml\n**/codefresh.y*ml\n**/shippable.y*ml\n**/wercker.y*ml\n**/gocd_config_repo.json\n**/jenkins-job.xml\n**/hadolint.y*ml\n**/scalastyle_config.xml\n**/yamllint/\n# contains webhook URL which should not be committed publicly\n**/buildkite-pipeline*.json\n\n# leave our README.md in case we want to include it in the image but filter out other .md files\n*.md\n!README.md\n\n# ========================================\n# Based on the massive adjacent .gitignore, modified for Docker ignore's Go filepath.Match() function\n*#*#\n**/*.a\n**/*.avi\n**/*.bak\n**/*.bak.*\n**/*.bin\n**/*.bkp\n**/*.class\n**/*.dump\n**/*.flv\n**/*.kdb\n**/*.lock\n**/*.log\n**/*.macports-saved_*\n**/*.mp3\n**/*.mp4\n**/*.mpeg\n**/*.mpg\n**/*.o\n**/*.orig\n**/*.out\n**/*.part\n**/*.pyc\n**/*.pyo\n**/*.stderr\n**/*.stdout\n**/*.swo\n**/*.swp\n**/*.tmp\n**/*.wmv\n**/*~\n**/tmp.*\n**/~*\n\n**/*.doc\n**/*.docx\n**/*.msg\n**/*.pages\n**/*.ppt\n**/*.pptx\n**/*.rtf\n**/*.wpd\n**/*.wps\n**/*.xls\n**/*.xlsx\n\n# ============================================================================ #\n#\n# regenerate all sections below in to a single arg for API call via:\n#\n# grep '[C]reated by https://' .dockerignore | sed 's,.*/,,' | tr ',' '\\n' | sort -u | tr '\\n' ',' | sed 's/,$//' | xargs echo gitignore.io_api.sh\n#\n# then pipe through perl to add recursive prefix '**/':\n#\n# gitignore.io_api.sh ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh | perl -p -e 's/^([^#\\s\\/])/**\\/$1/; s/^\\//**\\//' >> .dockerignore\n#\n# Find new or missing tags you aren't using yet:\n#\n# grep '[C]reated by https://' .dockerignore | sed 's,.*/,,' | tr ',' '\\n' | sort -u | tr '\\n' ',' | sed 's/,$//' | gitignore.io_api.sh missing\n#\n# ============================================================================ #\n\n\n# Created by https://www.toptal.com/developers/gitignore/api/ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n# Edit at https://www.toptal.com/developers/gitignore?templates=ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n\n### Ansible ###\n**/*.retry\n\n### ApacheHadoop ###\n**/*.iml\n**/*.ipr\n**/*.iws\n**/*.orig\n**/*.rej\n**/.idea\n**/.svn\n**/.classpath\n**/.project\n**/.settings\n**/target\n**/hadoop-common-project/hadoop-kms/downloads/\n**/hadoop-hdfs-project/hadoop-hdfs/downloads\n**/hadoop-hdfs-project/hadoop-hdfs-httpfs/downloads\n**/hadoop-common-project/hadoop-common/src/test/resources/contract-test-options.xml\n**/hadoop-tools/hadoop-openstack/src/test/resources/contract-test-options.xml\n\n### AppCode ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n**/.idea/**/workspace.xml\n**/.idea/**/tasks.xml\n**/.idea/**/usage.statistics.xml\n**/.idea/**/dictionaries\n**/.idea/**/shelf\n\n# Generated files\n**/.idea/**/contentModel.xml\n\n# Sensitive or high-churn files\n**/.idea/**/dataSources/\n**/.idea/**/dataSources.ids\n**/.idea/**/dataSources.local.xml\n**/.idea/**/sqlDataSources.xml\n**/.idea/**/dynamic.xml\n**/.idea/**/uiDesigner.xml\n**/.idea/**/dbnavigator.xml\n\n# Gradle\n**/.idea/**/gradle.xml\n**/.idea/**/libraries\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n**/cmake-build-*/\n\n# Mongo Explorer plugin\n**/.idea/**/mongoSettings.xml\n\n# File-based project format\n\n# IntelliJ\n**/out/\n\n# mpeltonen/sbt-idea plugin\n**/.idea_modules/\n\n# JIRA plugin\n**/atlassian-ide-plugin.xml\n\n# Cursive Clojure plugin\n**/.idea/replstate.xml\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n**/com_crashlytics_export_strings.xml\n**/crashlytics.properties\n**/crashlytics-build.properties\n**/fabric.properties\n\n# Editor-based Rest Client\n**/.idea/httpRequests\n\n# Android studio 3.1+ serialized cache file\n**/.idea/caches/build_file_checksums.ser\n\n### AppCode Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n**/.idea/**/sonarlint/\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n**/.idea/**/sonarIssues.xml\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n**/.idea/**/markdown-navigator.xml\n**/.idea/**/markdown-navigator-enh.xml\n**/.idea/**/markdown-navigator/\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n**/.idea/$CACHE_FILE$\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n**/.idea/codestream.xml\n\n### AppEngine ###\n# Google App Engine generated folder\n**/appengine-generated/\n\n### Archive ###\n\n### Mostly from https://en.wikipedia.org/wiki/List_of_archive_formats\n\n## Archiving only\n# The traditional archive format on Unix-like systems, now used mainly for the creation of static libraries.\n**/*.a\n**/*.ar\n# RPM files consist of metadata concatenated with (usually) a cpio archive. Newer RPM systems also support other archives, as cpio is becoming obsolete. cpio is also used with initramfs.\n**/*.cpio\n\n# A self-extracting archive that uses the Bourne shell (sh).\n**/*.shar\n# A system for storing multiple files. LBR archives typically contained files processed by SQ, or the archive itself was compressed with SQ. LBR archives that were compressed with SQ ended with the extension .LQR\n**/*.LBR\n# An archive format originally used mainly for archiving and distribution of the exact, nearly-exact, or custom-modified contents of an optical storage medium such as a CD-ROM or DVD-ROM. However, it can be used to archive the contents of other storage media, selected partitions, folders, and/or files. The resulting archive is typically optimized for convenient rendering to (re-)writable CD or DVD media.\n**/*.iso\n# A library format used primarily on the Commodore 64 and 128 lines of computers. This bears no resemblance to the DOS LBR format. While library files were quick to implement (a number of programs exist to work with them) they are crippled in that they cannot grow with use: once a file has been created it cannot be amended (files added, changed or deleted) without recreating the entire file.\n**/*.lbr\n# An archive format used by Mozilla for storing binary diffs. Used in conjunction with bzip2.\n**/*.mar\n# A common archive format used on Unix-like systems. Generally used in conjunction with compressors such as gzip, bzip2, compress or xz to create .tar.gz, .tar.bz2, .tar.Z or tar.xz files.\n**/*.tar\n\n# Package managers\n# Red Hat Package Manager\n**/*.rpm\n# Debian package\n**/*.deb\n# MicroSoft Installer\n**/*.msi\n**/*.msm\n**/*.msp\n# Mozilla package installer\n**/*.xpi\n# Ruby Package\n**/*.gem\n\n\n### Archives ###\n# It's better to unpack these files and commit the raw source because\n# git has its own built in compression methods.\n**/*.7z\n**/*.jar\n**/*.rar\n**/*.zip\n**/*.gz\n**/*.gzip\n**/*.tgz\n**/*.bzip\n**/*.bzip2\n**/*.bz2\n**/*.xz\n**/*.lzma\n**/*.cab\n**/*.xar\n\n# Packing-only formats\n\n# Package management formats\n**/*.dmg\n**/*.egg\n**/*.txz\n\n### ArchLinuxPackages ###\n**/*.tar.*\n**/*.exe\n**/*.log\n**/*.log.*\n**/*.sig\n\n**/pkg/\n**/src/\n\n### Audio ###\n**/*.aif\n**/*.iff\n**/*.m3u\n**/*.m4a\n**/*.mid\n**/*.mp3\n**/*.mpa\n**/*.ra\n**/*.wav\n**/*.wma\n**/*.ogg\n**/*.flac\n\n### Autotools ###\n# http://www.gnu.org/software/automake\n\n**/Makefile.in\n**/ar-lib\n**/mdate-sh\n**/py-compile\n**/test-driver\n**/ylwrap\n**/.deps/\n\n# http://www.gnu.org/software/autoconf\n\n**/autom4te.cache\n**/autoscan.log\n**/autoscan-*.log\n**/aclocal.m4\n**/compile\n**/config.guess\n**/config.h.in\n**/config.log\n**/config.status\n**/config.sub\n**/configure\n**/configure.scan\n**/depcomp\n**/install-sh\n**/missing\n**/stamp-h1\n\n# https://www.gnu.org/software/libtool/\n\n**/ltmain.sh\n\n# http://www.gnu.org/software/texinfo\n\n**/texinfo.tex\n\n# http://www.gnu.org/software/m4/\n\n**/m4/libtool.m4\n**/m4/ltoptions.m4\n**/m4/ltsugar.m4\n**/m4/ltversion.m4\n**/m4/lt~obsolete.m4\n\n# Generated Makefile\n# (meta build system like autotools,\n# can automatically generate from config.status script\n# (which is called by configure script))\n**/Makefile\n\n### Autotools Patch ###\n\n### Backup ###\n**/*.bak\n**/*.gho\n**/*.ori\n**/*.tmp\n\n### Basic ###\n# Apples Build\n**/*.build\n**/*.apples\n\n# Initialized files\n**/*.ini\n**/*.basic\n\n### BitTorrent ###\n**/*.torrent\n\n### C ###\n# Prerequisites\n**/*.d\n\n# Object files\n**/*.o\n**/*.ko\n**/*.obj\n**/*.elf\n\n# Linker output\n**/*.ilk\n**/*.map\n**/*.exp\n\n# Precompiled Headers\n**/*.gch\n**/*.pch\n\n# Libraries\n**/*.lib\n**/*.la\n**/*.lo\n\n# Shared objects (inc. Windows DLLs)\n**/*.dll\n**/*.so\n**/*.so.*\n**/*.dylib\n\n# Executables\n**/*.out\n**/*.app\n**/*.i*86\n**/*.x86_64\n**/*.hex\n\n# Debug files\n**/*.dSYM/\n**/*.su\n**/*.idb\n**/*.pdb\n\n# Kernel Module Compile Results\n**/*.mod*\n**/*.cmd\n**/.tmp_versions/\n**/modules.order\n**/Module.symvers\n**/Mkfile.old\n**/dkms.conf\n\n### C++ ###\n# Prerequisites\n\n# Compiled Object files\n**/*.slo\n\n# Precompiled Headers\n\n# Compiled Dynamic libraries\n\n# Fortran module files\n**/*.mod\n**/*.smod\n\n# Compiled Static libraries\n**/*.lai\n\n# Executables\n\n### Zsh ###\n# Zsh compiled script + zrecompile backup\n**/*.zwc\n**/*.zwc.old\n\n# Zsh completion-optimization dumpfile\n**/*zcompdump*\n\n# Zsh zcalc history\n**/.zcalc_history\n\n# A popular plugin manager's files\n**/._zplugin\n**/.zplugin_lstupd\n\n# zdharma/zshelldoc tool's files\n**/zsdoc/data\n\n# robbyrussell/oh-my-zsh/plugins/per-directory-history plugin's files\n# (when set-up to store the history in the local directory)\n**/.directory_history\n\n# MichaelAquilina/zsh-autoswitch-virtualenv plugin's files\n# (for Zsh plugins using Python)\n**/.venv\n\n# Zunit tests' output\n**/tests/_output/*\n**/!/tests/_output/.gitkeep\n\n### certificates ###\n**/*.pem\n**/*.key\n**/*.crt\n**/*.cer\n**/*.priv\n\n### ChefCookbook ###\n**/.vagrant\n**/cookbooks\n\n# Bundler\n**/bin/*\n**/.bundle/*\n\n**/.kitchen/\n**/.kitchen.local.yml\n**/.kitchen.*.local.yml\n**/kitchen.local.yml\n**/kitchen.*.local.yml\n\n### CMake ###\n**/CMakeLists.txt.user\n**/CMakeCache.txt\n**/CMakeFiles\n**/CMakeScripts\n**/Testing\n**/cmake_install.cmake\n**/install_manifest.txt\n**/compile_commands.json\n**/CTestTestfile.cmake\n**/_deps\n\n### CMake Patch ###\n# External projects\n**/*-prefix/\n\n### Clojure ###\n**/pom.xml\n**/pom.xml.asc\n**/*.class\n**/lib/\n**/classes/\n**/target/\n**/checkouts/\n**/.lein-deps-sum\n**/.lein-repl-history\n**/.lein-plugins/\n**/.lein-failures\n**/.nrepl-port\n**/.cpcache/\n\n### Code-Java ###\n# Language Support for Java(TM) by Red Hat extension for Visual Studio Code - https://marketplace.visualstudio.com/items?itemName=redhat.java\n\n**/factoryConfiguration.json\n\n### Cloud9 ###\n# Cloud9 IDE - http://c9.io\n**/.c9revisions\n**/.c9\n\n### Compressed ###\n**/*.pkg\n**/*.sit\n**/*.sitx\n**/*.zipx\n\n### CompressedArchive ###\n\n\n## Archiving and compression\n# Open source file format. Used by 7-Zip.\n# Mac OS X, restoration on different platforms is possible although not immediate \tYes \tBased on 7z. Preserves Spotlight metadata, resource forks, owner/group information, dates and other data which would be otherwise lost with compression.\n**/*.s7z\n# Old archive versions only \tProprietary format\n**/*.ace\n# A format that compresses and doubly encrypt the data (AES256 and CAS256) avoiding brute force attacks, also hide files in an AFA file. It has two ways to safeguard data integrity and subsequent repair of the file if has an error (repair with AstroA2P (online) or Astrotite (offline)).\n**/*.afa\n# A mainly Korean format designed for very large archives.\n**/*.alz\n# Android application package (variant of JAR file format).\n**/*.apk\n# ??\n**/*.arc\n# Originally DOS, now multiple\n**/*.arj\n# Open archive format, used by B1 Free Archiver (http://dev.b1.org/standard/archive-format.html)\n**/*.b1\n# Binary Archive with external header\n**/*.ba\n# Proprietary format from the ZipTV Compression Components\n**/*.bh\n# The Microsoft Windows native archive format, which is also used by many commercial installers such as InstallShield and WISE.\n# Originally DOS, now DOS and Windows \tCreated by Yaakov Gringeler; released last in 2003 (Compressia 1.0.0.1 beta), now apparently defunct. Free trial of 30 days lets user create and extract archives; after that it is possible to extract, but not to create.\n**/*.car\n# Open source file format.\n**/*.cfs\n# Compact Pro archive, a common archiver used on Mac platforms until about Mac OS 7.5.x. Competed with StuffIt; now obsolete.\n**/*.cpt\n# Windows, Unix-like, Mac OS X Open source file format. Files are compressed individually with either gzip, bzip2 or lzo.\n**/*.dar\n# DiskDoubler \tMac OS \t\t\tobsolete\n**/*.dd\n# ??\n**/*.dgc\n# Apple Disk Image upports \"Internet-enabled\" disk images, which, once downloaded, are automatically decompressed, mounted, have the contents extracted, and thrown away. Currently, Safari is the only browser that supports this form of extraction; however, the images can be manually extracted as well. This format can also be password-protected or encrypted with 128-bit or 256-bit AES encryption.\n# Enterprise Java Archive archive\n**/*.ear\n# ETSoft compressed archive\n# The predecessor of DGCA.\n**/*.gca\n# Originally DOS \tYes, but may be covered by patents \tDOS era format; uses arithmetic/Markov coding\n**/*.ha\n# MS Windows \tHKI\n**/*.hki\n# Produced by ICEOWS program. Excels at text file compression.\n**/*.ice\n# Java archive, compatible with ZIP files\n# Open sourced archiver with compression using the PAQ family of algorithms and optional encryption.\n**/*.kgb\n# Originally DOS, now multiple \tMultiple \tYes \tThe standard format on Amiga.\n**/*.lzh\n**/*.lha\n# Archiver originally used on The Amiga. Now copied by Microsoft to use in their .cab and .chm files.\n**/*.lzx\n# file format from NoGate Consultings, a rival from ARC-Compressor.\n**/*.pak\n# A disk image archive format that supports several compression methods as well as splitting the archive into smaller pieces.\n**/*.partimg\n# An experimental open source packager (http://mattmahoney.net/dc)\n**/*.paq*\n# Open source archiver supporting authenticated encryption, volume spanning, customizable object level and volume level integrity checks (form CRCs to SHA-512 and Whirlpool hashes), fast deflate based compression\n**/*.pea\n# The format from the PIM - a freeware compression tool by Ilia Muraviev. It uses an LZP-based compression algorithm with set of filters for executable, image and audio files.\n**/*.pim\n# PackIt \tMac OS \t\t\tobsolete\n**/*.pit\n# Used for data in games written using the Quadruple D library for Delphi. Uses byte pair compression.\n**/*.qda\n# A proprietary archive format, second in popularity to .zip files.\n# The format from a commercial archiving package. Odd among commercial packages in that they focus on incorporating experimental algorithms with the highest possible compression (at the expense of speed and memory), such as PAQ, PPMD and PPMZ (PPMD with unlimited-length strings), as well as a proprietary algorithms.\n**/*.rk\n# Self Dissolving ARChive \tCommodore 64, Commodore 128 \tCommodore 64, Commodore 128 \tYes \tSDAs refer to Self Dissolving ARC files, and are based on the Commodore 64 and Commodore 128 versions of ARC, originally written by Chris Smeets. While the files share the same extension, they are not compatible between platforms. That is, an SDA created on a Commodore 64 but run on a Commodore 128 in Commodore 128 mode will crash the machine, and vice versa. The intended successor to SDA is SFX.\n**/*.sda\n# A pre-Mac OS X Self-Extracting Archive format. StuffIt, Compact Pro, Disk Doubler and others could create .sea files, though the StuffIt versions were the most common.\n**/*.sea\n# Scifer Archive with internal header\n**/*.sen\n# Commodore 64, Commodore 128 \tSFX is a Self Extracting Archive which uses the LHArc compression algorithm. It was originally developed by Chris Smeets on the Commodore platform, and runs primarily using the CS-DOS extension for the Commodore 128. Unlike its predecessor SDA, SFX files will run on both the Commodore 64 and Commodore 128 regardless of which machine they were created on.\n**/*.sfx\n# An archive format designed for the Apple II series of computers. The canonical implementation is ShrinkIt, which can operate on disk images as well as files. Preferred compression algorithm is a combination of RLE and 12-bit LZW. Archives can be manipulated with the command-line NuLib tool, or the Windows-based CiderPress.\n**/*.shk\n# A compression format common on Apple Macintosh computers. The free StuffIt Expander is available for Windows and OS X.\n# The replacement for the .sit format that supports more compression methods, UNIX file permissions, long file names, very large files, more encryption options, data specific compressors (JPEG, Zip, PDF, 24-bit image, MP3). The free StuffIt Expander is available for Windows and OS X.\n# A royalty-free compressing format\n**/*.sqx\n# The \"tarball\" format combines tar archives with a file-based compression scheme (usually gzip). Commonly used for source and binary distribution on Unix-like platforms, widely available elsewhere.\n**/*.tar.gz\n**/*.tar.Z\n**/*.tar.bz2\n**/*.tbz2\n**/*.tar.lzma\n**/*.tlz\n# UltraCompressor 2.3 was developed to act as an alternative to the then popular PKZIP application. The main feature of the application is its ability to create large archives. This means that compressed archives with the UC2 file extension can hold almost 1 million files.\n**/*.uc\n**/*.uc0\n**/*.uc2\n**/*.ucn\n**/*.ur2\n**/*.ue2\n# Based on PAQ, RZM, CSC, CCM, and 7zip. The format consists of a PAQ, RZM, CSC, or CCM compressed file and a manifest with compression settings stored in a 7z archive.\n**/*.uca\n# A high compression rate archive format originally for DOS.\n**/*.uha\n# Web Application archive (Java-based web app)\n**/*.war\n# File-based disk image format developed to deploy Microsoft Windows.\n**/*.wim\n# XAR\n# Native format of the Open Source KiriKiri Visual Novel engine. Uses combination of block splitting and zlib compression. The filenames and pathes are stored in UTF-16 format. For integrity check, the Adler-32 hashsum is used. For many commercial games, the files are encrypted (and decoded on runtime) via so-called \"cxdec\" module, which implements xor-based encryption.\n**/*.xp3\n# Yamazaki zipper archive. Compression format used in DeepFreezer archiver utility created by Yamazaki Satoshi. Read and write support exists in TUGZip, IZArc and ZipZag\n**/*.yz1\n# The most widely used compression format on Microsoft Windows. Commonly used on Macintosh and Unix systems as well.\n# application/x-zoo \tzoo \tMultiple \tMultiple \tYes\n**/*.zoo\n# Journaling (append-only) archive format with rollback capability. Supports deduplication and incremental update based on last-modified dates. Multi-threaded. Compresses in LZ77, BWT, and context mixing formats. Open source.\n**/*.zpaq\n# Archiver with a compression algorithm based on the Burrows-Wheeler transform method.\n**/*.zz\n\n\n### Compression ###\n\n### From https://en.wikipedia.org/wiki/List_of_archive_formats\n\n## Compression only\n# An open source, patent- and royalty-free compression format. The compression algorithm is a Burrows-Wheeler transform followed by a move-to-front transform and finally Huffman coding\n# Old compressor for QNX4 OS. The compression algorithm is a modified LZSS, with an adaptive Huffman coding.\n**/*.F\n# GNU Zip, the primary compression format used by Unix-like systems. The compression algorithm is DEFLATE.\n# An alternate LZMA algorithm implementation, with support for checksums and ident bytes.\n**/*.lz\n# The LZMA compression algorithm as used by 7-Zip\n# An implementation of the LZO data compression algorithm\n**/*.lzo\n# A compression program designed to do particularly well on very large files containing long distance redundancy.\n**/*.rz\n# Windows compress/decompress- Linux and Mac OS X decompress only \tA compression program designed to do high compression on SF2 files (SoundFont)\n**/*.sfark\n# A compression format invented by Google and open-sourced in 2011. Snappy aims for very high speeds, reasonable compression, and maximum stability rather than maximum compression or compatibility with any other compression library.\n**/*.sz\n# Squeeze: A program which compressed files. A file which was \"squeezed\" had the middle initial of the name changed to \"Q\", so that a squeezed text file would end with .TQT, a squeezed executable would end with .CQM or .EQE. Typically used with .LBR archives, either by storing the squeezed files in the archive, or by storing the files decompressed and then compressing the archive, which would have a name ending in \".LQR\".\n**/*.?Q?\n# A compression program written by Steven Greenberg implementing the LZW algorithm. For several years in the CP/M world when no implementation was available of ARC, CRUNCHed files stored in .LBR archives were very popular. CRUNCH's implementation of LZW had a somewhat unique feature of modifying and occasionally clearing the code table in memory when it became full, resulting in a few percent better compression on many files.\n**/*.?Z?\n# A compression format using LZMA2 to yield very high compression ratios.\n# The traditional Huffman coding compression format.\n**/*.z\n# The traditional LZW compression format.\n**/*.Z\n# Joke compression program, actually increasing file size\n**/*.infl\n# Compression format(s) used by some DOS and Windows install programs. MS-DOS includes expand.exe to decompress its install files. The compressed files are created with a matching compress.exe command. The compression algorithm is LZSS.\n**/*.??_\n\n\n### Data ###\n**/*.csv\n**/*.dat\n**/*.efx\n**/*.gbr\n**/*.pps\n**/*.ppt\n**/*.pptx\n**/*.sdf\n**/*.tax2010\n**/*.vcf\n**/*.xml\n\n### Code ###\n**/.vscode/*\n**/!.vscode/settings.json\n**/!.vscode/tasks.json\n**/!.vscode/launch.json\n**/!.vscode/extensions.json\n**/*.code-workspace\n\n### DataRecovery ###\n\n\n## Data recovery\n# File format used by dvdisaster to be used for data recovery when discs become damaged or partially unreadable.\n**/*.ecc\n# File format used in conjunction with any archive format to provide redundancy and data recovery, most often in newsgroup distribution of binary files.\n**/*.par\n**/*.par2\n\n\n### Diff ###\n**/*.patch\n**/*.diff\n\n### direnv ###\n**/.direnv\n**/.envrc\n\n### CodeBlocks ###\n# specific to CodeBlocks IDE\n**/*.layout\n**/*.depend\n# generated directories\n**/bin/\n**/obj/\n\n### DocFx ###\n**/.cache\n**/**/_site/\n\n### Docpress ###\n# docpress documentation generator: https://docpress.github.io/index.html\n\n**/_docpress/\n\n### Docz ###\n**/.docz\n\n\n### dotenv ###\n**/.env\n\n### DotfilesSh ###\n**/local-patch\n**/patched-src\n\n### DotSettings ###\n**/*.DotSettings\n\n### Dropbox ###\n# Dropbox settings and caches\n**/.dropbox\n**/.dropbox.attr\n**/.dropbox.cache\n\n### Eclipse ###\n**/.metadata\n**/tmp/\n**/*.swp\n**/*~.nib\n**/local.properties\n**/.settings/\n**/.loadpath\n**/.recommenders\n\n# External tool builders\n**/.externalToolBuilders/\n\n# Locally stored \"Eclipse launch configurations\"\n**/*.launch\n\n# PyDev specific (Python IDE for Eclipse)\n**/*.pydevproject\n\n# CDT-specific (C/C++ Development Tooling)\n**/.cproject\n\n# CDT- autotools\n**/.autotools\n\n# Java annotation processor (APT)\n**/.factorypath\n\n# PDT-specific (PHP Development Tools)\n**/.buildpath\n\n# sbteclipse plugin\n**/.target\n\n# Tern plugin\n**/.tern-project\n\n# TeXlipse plugin\n**/.texlipse\n\n# STS (Spring Tool Suite)\n**/.springBeans\n\n# Code Recommenders\n**/.recommenders/\n\n# Annotation Processing\n**/.apt_generated/\n**/.apt_generated_test/\n\n# Scala IDE specific (Scala & Java development for Eclipse)\n**/.cache-main\n**/.scala_dependencies\n**/.worksheet\n\n# Uncomment this line if you wish to ignore the project description file.\n# Typically, this file would be tracked if it contains build/dependency configurations:\n#.project\n\n### Eclipse Patch ###\n# Spring Boot Tooling\n**/.sts4-cache/\n\n### Emacs ###\n# -*- mode: gitignore; -*-\n**/*~\n**/\\#*\\#\n**/.emacs.desktop\n**/.emacs.desktop.lock\n**/*.elc\n**/auto-save-list\n**/tramp\n**/.\\#*\n\n# Org-mode\n**/.org-id-locations\n**/*_archive\n\n# flymake-mode\n**/*_flymake.*\n\n# eshell files\n**/eshell/history\n**/eshell/lastdir\n\n# elpa packages\n**/elpa/\n\n# reftex files\n**/*.rel\n\n# AUCTeX auto folder\n**/auto/\n\n# cask packages\n**/.cask/\n**/dist/\n\n# Flycheck\n**/flycheck_*.el\n\n# server auth directory\n**/server/\n\n# projectiles files\n**/.projectile\n\n# directory configuration\n**/.dir-locals.el\n\n# network security\n**/network-security.data\n\n\n### Database ###\n**/*.accdb\n**/*.db\n**/*.dbf\n**/*.mdb\n**/*.sqlite3\n\n### Executable ###\n**/*.bat\n**/*.cgi\n**/*.com\n**/*.gadget\n**/*.pif\n**/*.vb\n**/*.wsf\n\n### Firebase ###\n**/**/node_modules/*\n**/**/.firebaserc\n\n### Firebase Patch ###\n**/.runtimeconfig.json\n**/.firebase/\n\n### Flask ###\n**/instance/*\n**/!instance/.gitignore\n**/.webassets-cache\n\n### Flask.Python Stack ###\n# Byte-compiled / optimized / DLL files\n**/__pycache__/\n**/*.py[cod]\n**/*$py.class\n\n# C extensions\n\n# Distribution / packaging\n**/.Python\n**/build/\n**/develop-eggs/\n**/downloads/\n**/eggs/\n**/.eggs/\n**/lib/\n**/lib64/\n**/parts/\n**/sdist/\n**/var/\n**/wheels/\n**/pip-wheel-metadata/\n**/share/python-wheels/\n**/*.egg-info/\n**/.installed.cfg\n**/MANIFEST\n\n# PyInstaller\n# Usually these files are written by a python script from a template\n# before PyInstaller builds the exe, so as to inject date/other infos into it.\n**/*.manifest\n**/*.spec\n\n# Installer logs\n**/pip-log.txt\n**/pip-delete-this-directory.txt\n\n# Unit test / coverage reports\n**/htmlcov/\n**/.tox/\n**/.nox/\n**/.coverage\n**/.coverage.*\n**/nosetests.xml\n**/coverage.xml\n**/*.cover\n**/*.py,cover\n**/.hypothesis/\n**/.pytest_cache/\n**/pytestdebug.log\n\n# Translations\n**/*.mo\n**/*.pot\n\n# Django stuff:\n**/local_settings.py\n**/db.sqlite3\n**/db.sqlite3-journal\n\n# Flask stuff:\n**/instance/\n\n# Scrapy stuff:\n**/.scrapy\n\n# Sphinx documentation\n**/docs/_build/\n**/doc/_build/\n\n# PyBuilder\n**/target/\n\n# Jupyter Notebook\n**/.ipynb_checkpoints\n\n# IPython\n**/profile_default/\n**/ipython_config.py\n\n# pyenv\n**/.python-version\n\n# pipenv\n# According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.\n# However, in case of collaboration, if having platform-specific dependencies or dependencies\n# having no cross-platform support, pipenv may install dependencies that don't work, or not\n# install all needed dependencies.\n#Pipfile.lock\n\n# PEP 582; used by e.g. github.com/David-OConnor/pyflow\n**/__pypackages__/\n\n# Celery stuff\n**/celerybeat-schedule\n**/celerybeat.pid\n\n# SageMath parsed files\n**/*.sage.py\n\n# Environments\n**/env/\n**/venv/\n**/ENV/\n**/env.bak/\n**/venv.bak/\n**/pythonenv*\n\n# Spyder project settings\n**/.spyderproject\n**/.spyproject\n\n# Rope project settings\n**/.ropeproject\n\n# mkdocs documentation\n**/site\n\n# mypy\n**/.mypy_cache/\n**/.dmypy.json\n**/dmypy.json\n\n# Pyre type checker\n**/.pyre/\n\n# pytype static type analyzer\n**/.pytype/\n\n# profiling data\n**/.prof\n\n### Git ###\n# Created by git for backups. To disable backups in Git:\n# $ git config --global mergetool.keepBackup false\n\n# Created by git when using merge tools for conflicts\n**/*.BACKUP.*\n**/*.BASE.*\n**/*.LOCAL.*\n**/*.REMOTE.*\n**/*_BACKUP_*.txt\n**/*_BASE_*.txt\n**/*_LOCAL_*.txt\n**/*_REMOTE_*.txt\n\n### GitBook ###\n# Node rules:\n## Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)\n**/.grunt\n\n## Dependency directory\n## Commenting this out is preferred by some people, see\n## https://docs.npmjs.com/misc/faq#should-i-check-my-node_modules-folder-into-git\n**/node_modules\n\n# Book build output\n**/_book\n\n# eBook build output\n**/*.epub\n**/*.mobi\n**/*.pdf\n\n### Go ###\n# Binaries for programs and plugins\n**/*.exe~\n\n# Test binary, built with `go test -c`\n**/*.test\n\n# Output of the go coverage tool, specifically when used with LiteIDE\n\n# Dependency directories (remove the comment below to include it)\n# vendor/\n\n### Go Patch ###\n**/vendor/\n**/Godeps/\n\n### GPG ###\n**/secring.*\n\n\n### DiskImage ###\n**/*.toast\n**/*.vcd\n\n### Grails ###\n# .gitignore for Grails 1.2 and 1.3\n# Although this should work for most versions of grails, it is\n# suggested that you use the \"grails integrate-with --git\" command\n# to generate your .gitignore file.\n\n# web application files\n**/web-app/WEB-INF/classes\n\n# default HSQL database files for production mode\n**/prodDb.*\n\n# general HSQL database files\n**/*Db.properties\n**/*Db.script\n\n# logs\n**/stacktrace.log\n**/test/reports\n**/logs\n\n# project release file\n**/*.war\n\n# plugin release files\n**/*.zip\n**/plugin.xml\n\n# older plugin install locations\n**/plugins\n**/web-app/plugins\n\n# \"temporary\" build files\n**/target\n\n### Groovy ###\n# .gitignore created from Groovy contributors in https://github.com/apache/groovy/blob/master/.gitignore\n\n**/user.gradle\n**/.gradle/\n\n**/*.DS_Store\n\n**/.shelf\n\n\n\n### grunt ###\n# Grunt usually compiles files inside this directory\n\n# Grunt usually preprocesses files such as coffeescript, compass... inside the .tmp directory\n**/.tmp/\n\n### Haskell ###\n**/dist\n**/dist-*\n**/cabal-dev\n**/*.hi\n**/*.hie\n**/*.chi\n**/*.chs.h\n**/*.dyn_o\n**/*.dyn_hi\n**/.hpc\n**/.hsenv\n**/.cabal-sandbox/\n**/cabal.sandbox.config\n**/*.prof\n**/*.aux\n**/*.hp\n**/*.eventlog\n**/.stack-work/\n**/cabal.project.local\n**/cabal.project.local~\n**/.HTF/\n**/.ghc.environment.*\n\n### Helm ###\n# Chart dependencies\n**/**/charts/*.tgz\n\n### Homebrew ###\n**/Brewfile.lock.json\n\n### Hugo ###\n# Generated files by hugo\n**/public/\n**/resources/_gen/\n**/hugo_stats.json\n\n# Executable may be added to repository\n**/hugo.exe\n**/hugo.darwin\n**/hugo.linux\n\n### Images ###\n# JPEG\n**/*.jpg\n**/*.jpeg\n**/*.jpe\n**/*.jif\n**/*.jfif\n**/*.jfi\n\n# JPEG 2000\n**/*.jp2\n**/*.j2k\n**/*.jpf\n**/*.jpx\n**/*.jpm\n**/*.mj2\n\n# JPEG XR\n**/*.jxr\n**/*.hdp\n**/*.wdp\n\n# Graphics Interchange Format\n**/*.gif\n\n# RAW\n**/*.raw\n\n# Web P\n**/*.webp\n\n# Portable Network Graphics\n**/*.png\n\n# Animated Portable Network Graphics\n**/*.apng\n\n# Multiple-image Network Graphics\n**/*.mng\n\n# Tagged Image File Format\n**/*.tiff\n**/*.tif\n\n# Scalable Vector Graphics\n**/*.svg\n**/*.svgz\n\n# Portable Document Format\n\n# X BitMap\n**/*.xbm\n\n# BMP\n**/*.bmp\n**/*.dib\n\n# ICO\n**/*.ico\n\n# 3D Images\n**/*.3dm\n**/*.max\n\n### Intellij ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### Intellij+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n**/.idea/\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n**/modules.xml\n**/.idea/misc.xml\n\n# Sonarlint plugin\n**/.idea/sonarlint\n\n### Intellij+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### Java ###\n# Compiled class file\n\n# Log file\n\n# BlueJ files\n**/*.ctxt\n\n# Mobile Tools for Java (J2ME)\n**/.mtj.tmp/\n\n# Package Files #\n**/*.nar\n\n# virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml\n**/hs_err_pid*\n\n### Java-Web ###\n## ignoring target file\n\n### JEnv ###\n# JEnv local Java version configuration file\n**/.java-version\n\n# Used by previous versions of JEnv\n**/.jenv-version\n\n### JetBrains ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### JetBrains+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n# Sonarlint plugin\n\n### JetBrains+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### JMeter ###\n# JMeter common ignore files\n# http://jmeter.apache.org/\n\n# Ignore Summary/Aggregrate reports\n**/*.jtl\n\n# Ignore log files\n\n# Ignore customized user.properties\n**/user.properties\n\n### Erlang ###\n**/.eunit\n**/*.beam\n**/*.plt\n**/erl_crash.dump\n**/.concrete/DEV_MODE\n\n# rebar 2.x\n**/.rebar\n**/rel/example_project\n**/ebin/*.beam\n**/deps\n\n# rebar 3\n**/.rebar3\n**/_build/\n**/_checkouts/\n\n### JupyterNotebooks ###\n# gitignore template for Jupyter Notebooks\n# website: http://jupyter.org/\n\n**/*/.ipynb_checkpoints/*\n\n# IPython\n\n# Remove previous ipynb_checkpoints\n# git rm -r .ipynb_checkpoints/\n\n### Kotlin ###\n# Compiled class file\n\n# Log file\n\n# BlueJ files\n\n# Mobile Tools for Java (J2ME)\n\n# Package Files #\n\n# virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml\n\n### LAMP ###\n# LAMP Stack Base\n\n### LAMP.Linux Stack ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n**/.fuse_hidden*\n\n# KDE directory preferences\n**/.directory\n\n# Linux trash folder which might appear on any partition or disk\n**/.Trash-*\n\n# .nfs files are created when an open file is removed but is still being accessed\n**/.nfs*\n\n### LAMP.PHP Stack ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### LaTeX ###\n## Core latex/pdflatex auxiliary files:\n**/*.lof\n**/*.lot\n**/*.fls\n**/*.toc\n**/*.fmt\n**/*.fot\n**/*.cb\n**/*.cb2\n**/.*.lb\n\n## Intermediate documents:\n**/*.dvi\n**/*.xdv\n**/*-converted-to.*\n# these rules might exclude image files for figures etc.\n# *.ps\n# *.eps\n# *.pdf\n\n## Generated if empty string is given at \"Please type another file name for output:\"\n**/.pdf\n\n## Bibliography auxiliary files (bibtex/biblatex/biber):\n**/*.bbl\n**/*.bcf\n**/*.blg\n**/*-blx.aux\n**/*-blx.bib\n**/*.run.xml\n\n## Build tool auxiliary files:\n**/*.fdb_latexmk\n**/*.synctex\n**/*.synctex(busy)\n**/*.synctex.gz\n**/*.synctex.gz(busy)\n**/*.pdfsync\n\n## Build tool directories for auxiliary files\n# latexrun\n**/latex.out/\n\n## Auxiliary and intermediate files from other packages:\n# algorithms\n**/*.alg\n**/*.loa\n\n# achemso\n**/acs-*.bib\n\n# amsthm\n**/*.thm\n\n# beamer\n**/*.nav\n**/*.pre\n**/*.snm\n**/*.vrb\n\n# changes\n**/*.soc\n\n# comment\n**/*.cut\n\n# cprotect\n\n# elsarticle (documentclass of Elsevier journals)\n**/*.spl\n\n# endnotes\n**/*.ent\n\n# fixme\n**/*.lox\n\n# feynmf/feynmp\n**/*.mf\n**/*.mp\n**/*.t[1-9]\n**/*.t[1-9][0-9]\n**/*.tfm\n\n#(r)(e)ledmac/(r)(e)ledpar\n**/*.end\n**/*.?end\n**/*.[1-9]\n**/*.[1-9][0-9]\n**/*.[1-9][0-9][0-9]\n**/*.[1-9]R\n**/*.[1-9][0-9]R\n**/*.[1-9][0-9][0-9]R\n**/*.eledsec[1-9]\n**/*.eledsec[1-9]R\n**/*.eledsec[1-9][0-9]\n**/*.eledsec[1-9][0-9]R\n**/*.eledsec[1-9][0-9][0-9]\n**/*.eledsec[1-9][0-9][0-9]R\n\n# glossaries\n**/*.acn\n**/*.acr\n**/*.glg\n**/*.glo\n**/*.gls\n**/*.glsdefs\n**/*.lzs\n\n# uncomment this for glossaries-extra (will ignore makeindex's style files!)\n# *.ist\n\n# gnuplottex\n**/*-gnuplottex-*\n\n# gregoriotex\n**/*.gaux\n**/*.gtex\n\n# htlatex\n**/*.4ct\n**/*.4tc\n**/*.idv\n**/*.lg\n**/*.trc\n**/*.xref\n\n# hyperref\n**/*.brf\n\n# knitr\n**/*-concordance.tex\n# TODO Comment the next line if you want to keep your tikz graphics files\n**/*.tikz\n**/*-tikzDictionary\n\n# listings\n**/*.lol\n\n# luatexja-ruby\n**/*.ltjruby\n\n# makeidx\n**/*.idx\n**/*.ilg\n**/*.ind\n\n# minitoc\n**/*.maf\n**/*.mlf\n**/*.mlt\n**/*.mtc\n**/*.mtc[0-9]*\n**/*.slf[0-9]*\n**/*.slt[0-9]*\n**/*.stc[0-9]*\n\n# minted\n**/_minted*\n**/*.pyg\n\n# morewrites\n**/*.mw\n\n# nomencl\n**/*.nlg\n**/*.nlo\n**/*.nls\n\n# pax\n**/*.pax\n\n# pdfpcnotes\n**/*.pdfpc\n\n# sagetex\n**/*.sagetex.sage\n**/*.sagetex.py\n**/*.sagetex.scmd\n\n# scrwfile\n**/*.wrt\n\n# sympy\n**/*.sout\n**/*.sympy\n**/sympy-plots-for-*.tex/\n\n# pdfcomment\n**/*.upa\n**/*.upb\n\n# pythontex\n**/*.pytxcode\n**/pythontex-files-*/\n\n# tcolorbox\n**/*.listing\n\n# thmtools\n**/*.loe\n\n# TikZ & PGF\n**/*.dpth\n**/*.md5\n**/*.auxlock\n\n# todonotes\n**/*.tdo\n\n# vhistory\n**/*.hst\n**/*.ver\n\n# easy-todo\n**/*.lod\n\n# xcolor\n**/*.xcp\n\n# xmpincl\n**/*.xmpi\n\n# xindy\n**/*.xdy\n\n# xypic precompiled matrices and outlines\n**/*.xyc\n**/*.xyd\n\n# endfloat\n**/*.ttt\n**/*.fff\n\n# Latexian\n**/TSWLatexianTemp*\n\n## Editors:\n# WinEdt\n**/*.sav\n\n# Texpad\n**/.texpadtmp\n\n# LyX\n**/*.lyx~\n\n# Kile\n**/*.backup\n\n# gummi\n**/.*.swp\n\n# KBibTeX\n**/*~[0-9]*\n\n# TeXnicCenter\n**/*.tps\n\n# auto folder when using emacs and auctex\n**/./auto/*\n**/*.el\n\n# expex forward references with \\gathertags\n**/*-tags.tex\n\n# standalone packages\n**/*.sta\n\n# Makeindex log files\n**/*.lpz\n\n# REVTeX puts footnotes in the bibliography by default, unless the nofootinbib\n# option is specified. Footnotes are the stored in a file with suffix Notes.bib.\n# Uncomment the next line to have this generated file ignored.\n#*Notes.bib\n\n### LaTeX Patch ###\n# LIPIcs / OASIcs\n**/*.vtc\n\n# glossaries\n**/*.glstex\n\n### Less ###\n**/*.less\n\n### Linux ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n\n# KDE directory preferences\n\n# Linux trash folder which might appear on any partition or disk\n\n# .nfs files are created when an open file is removed but is still being accessed\n\n### Lua ###\n# Compiled Lua sources\n**/luac.out\n\n# luarocks build files\n**/*.src.rock\n\n# Object files\n**/*.os\n\n# Precompiled Headers\n\n# Libraries\n**/*.def\n\n# Shared objects (inc. Windows DLLs)\n\n# Executables\n\n\n### macOS ###\n# General\n**/.DS_Store\n**/.AppleDouble\n**/.LSOverride\n\n# Icon must end with two \\r\n**/Icon\r\n\n# Thumbnails\n**/._*\n\n# Files that might appear in the root of a volume\n**/.DocumentRevisions-V100\n**/.fseventsd\n**/.Spotlight-V100\n**/.TemporaryItems\n**/.Trashes\n**/.VolumeIcon.icns\n**/.com.apple.timemachine.donotpresent\n\n# Directories potentially created on remote AFP share\n**/.AppleDB\n**/.AppleDesktop\n**/Network Trash Folder\n**/Temporary Items\n**/.apdisk\n\n### MATLAB ###\n# Windows default autosave extension\n**/*.asv\n\n# OSX / *nix default autosave extension\n**/*.m~\n\n# Compiled MEX binaries (all platforms)\n**/*.mex*\n\n# Packaged app and toolbox files\n**/*.mlappinstall\n**/*.mltbx\n\n# Generated helpsearch folders\n**/helpsearch*/\n\n# Simulink code generation folders\n**/slprj/\n**/sccprj/\n\n# Matlab code generation folders\n**/codegen/\n\n# Simulink autosave extension\n**/*.autosave\n\n# Simulink cache files\n**/*.slxc\n\n# Octave session info\n**/octave-workspace\n\n### Maven ###\n**/pom.xml.tag\n**/pom.xml.releaseBackup\n**/pom.xml.versionsBackup\n**/pom.xml.next\n**/release.properties\n**/dependency-reduced-pom.xml\n**/buildNumber.properties\n**/.mvn/timing.properties\n# https://github.com/takari/maven-wrapper#usage-without-binary-jar\n**/.mvn/wrapper/maven-wrapper.jar\n\n### Mercurial ###\n**/.hg/\n**/.hgignore\n**/.hgsigs\n**/.hgsub\n**/.hgsubstate\n**/.hgtags\n\n### MicrosoftOffice ###\n\n# Word temporary\n**/~$*.doc*\n\n# Word Auto Backup File\n**/Backup of *.doc*\n\n# Excel temporary\n**/~$*.xls*\n\n# Excel Backup File\n**/*.xlk\n\n# PowerPoint temporary\n**/~$*.ppt*\n\n# Visio autosave temporary files\n**/*.~vsd*\n\n### Node ###\n# Logs\n**/logs\n**/npm-debug.log*\n**/yarn-debug.log*\n**/yarn-error.log*\n**/lerna-debug.log*\n\n# Diagnostic reports (https://nodejs.org/api/report.html)\n**/report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json\n\n# Runtime data\n**/pids\n**/*.pid\n**/*.seed\n**/*.pid.lock\n\n# Directory for instrumented libs generated by jscoverage/JSCover\n**/lib-cov\n\n# Coverage directory used by tools like istanbul\n**/coverage\n**/*.lcov\n\n# nyc test coverage\n**/.nyc_output\n\n# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)\n\n# Bower dependency directory (https://bower.io/)\n**/bower_components\n\n# node-waf configuration\n**/.lock-wscript\n\n# Compiled binary addons (https://nodejs.org/api/addons.html)\n**/build/Release\n\n# Dependency directories\n**/node_modules/\n**/jspm_packages/\n\n# TypeScript v1 declaration files\n**/typings/\n\n# TypeScript cache\n**/*.tsbuildinfo\n\n# Optional npm cache directory\n**/.npm\n\n# Optional eslint cache\n**/.eslintcache\n\n# Microbundle cache\n**/.rpt2_cache/\n**/.rts2_cache_cjs/\n**/.rts2_cache_es/\n**/.rts2_cache_umd/\n\n# Optional REPL history\n**/.node_repl_history\n\n# Output of 'npm pack'\n\n# Yarn Integrity file\n**/.yarn-integrity\n\n# dotenv environment variables file\n**/.env.test\n**/.env*.local\n\n# parcel-bundler cache (https://parceljs.org/)\n**/.parcel-cache\n\n# Next.js build output\n**/.next\n\n# Nuxt.js build / generate output\n**/.nuxt\n\n# Gatsby files\n**/.cache/\n# Comment in the public line in if your project uses Gatsby and not Next.js\n# https://nextjs.org/blog/next-9-1#public-directory-support\n# public\n\n# vuepress build output\n**/.vuepress/dist\n\n# Serverless directories\n**/.serverless/\n\n# FuseBox cache\n**/.fusebox/\n\n# DynamoDB Local files\n**/.dynamodb/\n\n# TernJS port file\n**/.tern-port\n\n# Stores VSCode versions used for testing VSCode extensions\n**/.vscode-test\n\n### Octave ###\n# Windows default autosave extension\n\n# OSX / *nix default autosave extension\n\n# Compiled MEX binaries (all platforms)\n\n# Packaged app and toolbox files\n\n# Generated helpsearch folders\n\n# Simulink code generation folders\n\n# Matlab code generation folders\n\n# Simulink autosave extension\n\n# Simulink cache files\n\n# Octave session info\n\n### OSX ###\n# General\n\n# Icon must end with two \\r\n\n# Thumbnails\n\n# Files that might appear in the root of a volume\n\n# Directories potentially created on remote AFP share\n\n### Packer ###\n# Cache objects\n**/packer_cache/\n\n# Crash log\n**/crash.log\n\n# For built boxes\n**/*.box\n\n### Patch ###\n\n### Perl ###\n**/!Build/\n**/.last_cover_stats\n**/META.yml\n**/META.json\n**/MYMETA.*\n**/*.pm.tdy\n**/*.bs\n\n# Devel::Cover\n**/cover_db/\n\n# Devel::NYTProf\n**/nytprof.out\n\n# Dizt::Zilla\n**/.build/\n\n# Module::Build\n**/Build\n**/Build.bat\n\n# Module::Install\n**/inc/\n\n# ExtUtils::MakeMaker\n**/blib/\n**/_eumm/\n**/*.gz\n**/Makefile\n**/Makefile.old\n**/MANIFEST.bak\n**/pm_to_blib\n\n### Perl6 ###\n# Gitignore for Perl 6 (http://www.perl6.org)\n# As part of https://github.com/github/gitignore\n\n# precompiled files\n**/.precomp\n**/lib/.precomp\n\n\n### PHPUnit ###\n# Covers PHPUnit\n# Reference: https://phpunit.de/\n\n# Generated files\n**/.phpunit.result.cache\n\n# PHPUnit\n**/app/phpunit.xml\n**/phpunit.xml\n\n# Build data\n**/build/\n\n### PowerShell ###\n# Exclude packaged modules\n\n# Exclude .NET assemblies from source\n\n### Puppet ###\n# gitignore template for Puppet modules\n# website: https://forge.puppet.com/\n\n# Built packages\n**/pkg/*\n\n# Should run on multiple platforms so don't check in\n**/Gemfile.lock\n\n# Tests\n**/spec/fixtures/*\n**/coverage/*\n\n# Third-party\n**/vendor/*\n\n### PuTTY ###\n# Private key\n**/*.ppk\n\n### PyCharm ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### PyCharm+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n# Sonarlint plugin\n\n### PyCharm+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### pydev ###\n**/.pydevproject\n\n### Python ###\n# Byte-compiled / optimized / DLL files\n\n# C extensions\n\n# Distribution / packaging\n\n# PyInstaller\n# Usually these files are written by a python script from a template\n# before PyInstaller builds the exe, so as to inject date/other infos into it.\n\n# Installer logs\n\n# Unit test / coverage reports\n\n# Translations\n\n# Django stuff:\n\n# Flask stuff:\n\n# Scrapy stuff:\n\n# Sphinx documentation\n\n# PyBuilder\n\n# Jupyter Notebook\n\n# IPython\n\n# pyenv\n\n# pipenv\n# According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.\n# However, in case of collaboration, if having platform-specific dependencies or dependencies\n# having no cross-platform support, pipenv may install dependencies that don't work, or not\n# install all needed dependencies.\n\n# PEP 582; used by e.g. github.com/David-OConnor/pyflow\n\n# Celery stuff\n\n# SageMath parsed files\n\n# Environments\n\n# Spyder project settings\n\n# Rope project settings\n\n# mkdocs documentation\n\n# mypy\n\n# Pyre type checker\n\n# pytype static type analyzer\n\n# profiling data\n\n### R ###\n# History files\n**/.Rhistory\n**/.Rapp.history\n\n# Session Data files\n**/.RData\n\n# User-specific files\n**/.Ruserdata\n\n# Example code in package build process\n**/*-Ex.R\n\n# Output files from R CMD build\n**/*.tar.gz\n\n# Output files from R CMD check\n**/*.Rcheck/\n\n# RStudio files\n**/.Rproj.user/\n\n# produced vignettes\n**/vignettes/*.html\n**/vignettes/*.pdf\n\n# OAuth2 token, see https://github.com/hadley/httr/releases/tag/v0.3\n**/.httr-oauth\n\n# knitr and R markdown default cache directories\n**/*_cache/\n**/cache/\n\n# Temporary files created by R markdown\n**/*.utf8.md\n**/*.knit.md\n\n# R Environment Variables\n**/.Renviron\n\n### R.Bookdown Stack ###\n# R package: bookdown caching files\n**/*_files/\n\n### Rails ###\n**/*.rbc\n**/capybara-*.html\n**/.rspec\n**/db/*.sqlite3\n**/db/*.sqlite3-journal\n**/db/*.sqlite3-[0-9]*\n**/public/system\n**/coverage/\n**/spec/tmp\n**/rerun.txt\n**/pickle-email-*.html\n\n# Ignore all logfiles and tempfiles.\n**/log/*\n**/tmp/*\n**/!/log/.keep\n**/!/tmp/.keep\n\n# TODO Comment out this rule if you are OK with secrets being uploaded to the repo\n**/config/initializers/secret_token.rb\n**/config/master.key\n\n# Only include if you have production secrets in this file, which is no longer a Rails default\n# config/secrets.yml\n\n# dotenv, dotenv-rails\n# TODO Comment out these rules if environment variables can be committed\n**/.env.*\n\n## Environment normalization:\n**/.bundle\n**/vendor/bundle\n\n# these should all be checked in to normalize the environment:\n# Gemfile.lock, .ruby-version, .ruby-gemset\n\n# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:\n**/.rvmrc\n\n# if using bower-rails ignore default bower_components path bower.json files\n**/vendor/assets/bower_components\n**/*.bowerrc\n**/bower.json\n\n# Ignore pow environment settings\n**/.powenv\n\n# Ignore Byebug command history file.\n**/.byebug_history\n\n# Ignore node_modules\n\n# Ignore precompiled javascript packs\n**/public/packs\n**/public/packs-test\n**/public/assets\n\n# Ignore yarn files\n**/yarn-error.log\n\n# Ignore uploaded files in development\n**/storage/*\n**/!/storage/.keep\n\n### react ###\n**/.DS_*\n**/**/*.backup.*\n**/**/*.back.*\n\n\n**/*.sublime*\n\n**/psd\n**/thumb\n**/sketch\n\n### ReactNative ###\n# React Native Stack Base\n\n**/.expo\n**/__generated__\n\n### ReactNative.Android Stack ###\n# Built application files\n**/*.aar\n**/*.ap_\n**/*.aab\n\n# Files for the ART/Dalvik VM\n**/*.dex\n\n# Java class files\n\n# Generated files\n**/gen/\n# Uncomment the following line in case you need and you don't have the release build type files in your app\n# release/\n\n# Gradle files\n\n# Local configuration file (sdk path, etc)\n\n# Proguard folder generated by Eclipse\n**/proguard/\n\n# Log Files\n\n# Android Studio Navigation editor temp files\n**/.navigation/\n\n# Android Studio captures folder\n**/captures/\n\n# IntelliJ\n**/.idea/workspace.xml\n**/.idea/tasks.xml\n**/.idea/gradle.xml\n**/.idea/assetWizardSettings.xml\n**/.idea/dictionaries\n**/.idea/libraries\n# Android Studio 3 in .gitignore file.\n**/.idea/caches\n**/.idea/modules.xml\n# Comment next line if keeping position of elements in Navigation Editor is relevant for you\n**/.idea/navEditor.xml\n\n# Keystore files\n# Uncomment the following lines if you do not want to check your keystore files in.\n#*.jks\n#*.keystore\n\n# External native build folder generated in Android Studio 2.2 and later\n**/.externalNativeBuild\n**/.cxx/\n\n# Google Services (e.g. APIs or Firebase)\n# google-services.json\n\n# Freeline\n**/freeline.py\n**/freeline/\n**/freeline_project_description.json\n\n# fastlane\n**/fastlane/report.xml\n**/fastlane/Preview.html\n**/fastlane/screenshots\n**/fastlane/test_output\n**/fastlane/readme.md\n\n# Version control\n**/vcs.xml\n\n# lint\n**/lint/intermediates/\n**/lint/generated/\n**/lint/outputs/\n**/lint/tmp/\n# lint/reports/\n\n### ReactNative.Buck Stack ###\n**/buck-out/\n**/.buckconfig.local\n**/.buckd/\n**/.buckversion\n**/.fakebuckversion\n\n### ReactNative.Gradle Stack ###\n**/.gradle\n\n# Ignore Gradle GUI config\n**/gradle-app.setting\n\n# Avoid ignoring Gradle wrapper jar file (.jar files are usually ignored)\n**/!gradle-wrapper.jar\n\n# Cache of project\n**/.gradletasknamecache\n\n# # Work around https://youtrack.jetbrains.com/issue/IDEA-116898\n# gradle/wrapper/gradle-wrapper.properties\n\n### ReactNative.Linux Stack ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n\n# KDE directory preferences\n\n# Linux trash folder which might appear on any partition or disk\n\n# .nfs files are created when an open file is removed but is still being accessed\n\n### ReactNative.Node Stack ###\n# Logs\n\n# Diagnostic reports (https://nodejs.org/api/report.html)\n\n# Runtime data\n\n# Directory for instrumented libs generated by jscoverage/JSCover\n\n# Coverage directory used by tools like istanbul\n\n# nyc test coverage\n\n# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)\n\n# Bower dependency directory (https://bower.io/)\n\n# node-waf configuration\n\n# Compiled binary addons (https://nodejs.org/api/addons.html)\n\n# Dependency directories\n\n# TypeScript v1 declaration files\n\n# TypeScript cache\n\n# Optional npm cache directory\n\n# Optional eslint cache\n\n# Microbundle cache\n\n# Optional REPL history\n\n# Output of 'npm pack'\n\n# Yarn Integrity file\n\n# dotenv environment variables file\n\n# parcel-bundler cache (https://parceljs.org/)\n\n# Next.js build output\n\n# Nuxt.js build / generate output\n\n# Gatsby files\n# Comment in the public line in if your project uses Gatsby and not Next.js\n# https://nextjs.org/blog/next-9-1#public-directory-support\n# public\n\n# vuepress build output\n\n# Serverless directories\n\n# FuseBox cache\n\n# DynamoDB Local files\n\n# TernJS port file\n\n# Stores VSCode versions used for testing VSCode extensions\n\n### ReactNative.Xcode Stack ###\n# Xcode\n#\n# gitignore contributors: remember to update Global/Xcode.gitignore, Objective-C.gitignore & Swift.gitignore\n\n## User settings\n**/xcuserdata/\n\n## compatibility with Xcode 8 and earlier (ignoring not required starting Xcode 9)\n**/*.xcscmblueprint\n**/*.xccheckout\n\n## compatibility with Xcode 3 and earlier (ignoring not required starting Xcode 4)\n**/DerivedData/\n**/*.moved-aside\n**/*.pbxuser\n**/!default.pbxuser\n**/*.mode1v3\n**/!default.mode1v3\n**/*.mode2v3\n**/!default.mode2v3\n**/*.perspectivev3\n**/!default.perspectivev3\n\n## Gcc Patch\n**/*.gcno\n\n### ReactNative.macOS Stack ###\n# General\n\n# Icon must end with two \\r\n**/Icon\r\r\n\n# Thumbnails\n\n# Files that might appear in the root of a volume\n\n# Directories potentially created on remote AFP share\n\n### Redis ###\n# Ignore redis binary dump (dump.rdb) files\n\n**/*.rdb\n\n### ROOT ###\n# ROOT Home Page : https://root.cern.ch/\n# ROOT Used by Experimental Physicists, not necessarily HEP\n# ROOT based on C++\n\n# Files generated by ROOT, observed with v6.xy\n\n**/*.pcm\n\n\n\n### Ruby ###\n**/.config\n**/InstalledFiles\n**/pkg/\n**/spec/reports/\n**/spec/examples.txt\n**/test/tmp/\n**/test/version_tmp/\n**/tmp/\n\n# Used by dotenv library to load environment variables.\n# .env\n\n# Ignore Byebug command history file.\n\n## Specific to RubyMotion:\n**/.dat*\n**/.repl_history\n**/*.bridgesupport\n**/build-iPhoneOS/\n**/build-iPhoneSimulator/\n\n## Specific to RubyMotion (use of CocoaPods):\n# We recommend against adding the Pods directory to your .gitignore. However\n# you should judge for yourself, the pros and cons are mentioned at:\n# https://guides.cocoapods.org/using/using-cocoapods.html#should-i-check-the-pods-directory-into-source-control\n# vendor/Pods/\n\n## Documentation cache and generated files:\n**/.yardoc/\n**/_yardoc/\n**/doc/\n**/rdoc/\n\n**/.bundle/\n**/lib/bundler/man/\n\n# for a library or gem, you might want to ignore these files since the code is\n# intended to run in multiple environments; otherwise, check them in:\n# Gemfile.lock\n# .ruby-version\n# .ruby-gemset\n\n# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:\n\n# Used by RuboCop. Remote config files pulled in from inherit_from directive.\n# .rubocop-https?--*\n\n### Ruby Patch ###\n# Used by RuboCop. Remote config files pulled in from inherit_from directive.\n# .rubocop-https?--*\n\n### Rust ###\n# Generated by Cargo\n# will have compiled files and executables\n\n# Remove Cargo.lock from gitignore if creating an executable, leave it for libraries\n# More information here https://doc.rust-lang.org/cargo/guide/cargo-toml-vs-cargo-lock.html\n**/Cargo.lock\n\n### SBT ###\n# Simple Build Tool\n# http://www.scala-sbt.org/release/docs/Getting-Started/Directories.html#configuring-version-control\n\n**/dist/*\n**/lib_managed/\n**/src_managed/\n**/project/boot/\n**/project/plugins/project/\n**/.history\n**/.lib/\n\n### Scala ###\n\n### Serverless ###\n# Ignore build directory\n**/.serverless\n\n### Sonar ###\n#Sonar generated dir\n**/.sonar/\n\n### SonarQube ###\n# SonarQube ignore files.\n# https://docs.sonarqube.org/display/SCAN/Analyzing+with+SonarQube+Scanner\n# Sonar Scanner working directories\n**/.sonar/\n**/.scannerwork/\n\n# http://www.sonarlint.org/commandline/\n# SonarLint working directories, configuration files (including credentials)\n**/.sonarlint/\n\n### Spark ###\n**/*#*#\n**/*.#*\n**/*.pyc\n**/*.pyo\n**/.ensime\n**/.ensime_cache/\n**/.ensime_lucene\n**/.generated-mima*\n**/R-unit-tests.log\n**/R/unit-tests.out\n**/R/cran-check.out\n**/R/pkg/vignettes/sparkr-vignettes.html\n**/R/pkg/tests/fulltests/Rplots.pdf\n**/build/*.jar\n**/build/apache-maven*\n**/build/scala*\n**/build/zinc*\n**/cache\n**/checkpoint\n**/conf/*.cmd\n**/conf/*.conf\n**/conf/*.properties\n**/conf/*.sh\n**/conf/*.xml\n**/conf/java-opts\n**/conf/slaves\n**/derby.log\n**/dev/create-release/*final\n**/dev/create-release/*txt\n**/dev/pr-deps/\n**/docs/_site\n**/docs/api\n**/sql/docs\n**/sql/site\n**/lint-r-report.log\n**/log/\n**/logs/\n**/project/build/target/\n**/project/plugins/lib_managed/\n**/project/plugins/project/build.properties\n**/project/plugins/src_managed/\n**/project/plugins/target/\n**/python/lib/pyspark.zip\n**/python/deps\n**/python/test_coverage/coverage_data\n**/python/test_coverage/htmlcov\n**/python/pyspark/python\n**/reports/\n**/scalastyle-on-compile.generated.xml\n**/scalastyle-output.xml\n**/scalastyle.txt\n**/spark-*-bin-*.tgz\n**/spark-tests.log\n**/streaming-tests.log\n**/unit-tests.log\n**/work/\n**/docs/.jekyll-metadata\n\n# For Hive\n**/TempStatsStore/\n**/metastore/\n**/metastore_db/\n**/sql/hive-thriftserver/test_warehouses\n**/warehouse/\n**/spark-warehouse/\n\n# For R session data\n**/.RHistory\n**/*.Rproj\n**/*.Rproj.*\n\n**/.Rproj.user\n\n# For SBT\n**/.jvmopts\n\n\n### Splunk ###\n# gitignore template for Splunk apps\n# documentation: http://docs.splunk.com/Documentation/Splunk/6.2.3/admin/Defaultmetaconf\n\n# Splunk local meta file\n**/local.meta\n\n# Splunk local folder\n**/local\n\n### Spreadsheet ###\n**/*.xlr\n**/*.xls\n**/*.xlsx\n\n### SSH ###\n**/**/.ssh/id_*\n**/**/.ssh/*_id_*\n**/**/.ssh/known_hosts\n\n### SublimeText ###\n# Cache files for Sublime Text\n**/*.tmlanguage.cache\n**/*.tmPreferences.cache\n**/*.stTheme.cache\n\n# Workspace files are user-specific\n**/*.sublime-workspace\n\n# Project files should be checked into the repository, unless a significant\n# proportion of contributors will probably not be using Sublime Text\n# *.sublime-project\n\n# SFTP configuration file\n**/sftp-config.json\n\n# Package control specific files\n**/Package Control.last-run\n**/Package Control.ca-list\n**/Package Control.ca-bundle\n**/Package Control.system-ca-bundle\n**/Package Control.cache/\n**/Package Control.ca-certs/\n**/Package Control.merged-ca-bundle\n**/Package Control.user-ca-bundle\n**/oscrypto-ca-bundle.crt\n**/bh_unicode_properties.cache\n\n# Sublime-github package stores a github token in this file\n# https://packagecontrol.io/packages/sublime-github\n**/GitHub.sublime-settings\n\n### SVN ###\n**/.svn/\n\n### Terraform ###\n# Local .terraform directories\n**/**/.terraform/*\n\n# .tfstate files\n**/*.tfstate\n**/*.tfstate.*\n\n# Crash log files\n\n# Ignore any .tfvars files that are generated automatically for each Terraform run. Most\n# .tfvars files are managed as part of configuration and so should be included in\n# version control.\n# example.tfvars\n\n# Ignore override files as they are usually used to override resources locally and so\n# are not checked in\n**/override.tf\n**/override.tf.json\n**/*_override.tf\n**/*_override.tf.json\n\n# Include override files you do wish to add to version control using negated pattern\n# !example_override.tf\n\n# Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan\n# example: *tfplan*\n\n### Terragrunt ###\n# terragrunt cache directories\n**/**/.terragrunt-cache/*\n\n### TortoiseGit ###\n# Project-level settings\n**/.tgitconfig\n\n### Vagrant ###\n# General\n**/.vagrant/\n\n# Log files (if you are creating logs in debug mode, uncomment this)\n# *.log\n\n### Vagrant Patch ###\n\n### venv ###\n# Virtualenv\n# http://iamzed.com/2009/05/07/a-primer-on-virtualenv/\n**/[Bb]in\n**/[Ii]nclude\n**/[Ll]ib\n**/[Ll]ib64\n**/[Ll]ocal\n**/[Ss]cripts\n**/pyvenv.cfg\n**/pip-selfcheck.json\n\n### VirtualEnv ###\n# Virtualenv\n# http://iamzed.com/2009/05/07/a-primer-on-virtualenv/\n\n### Julia ###\n# Files generated by invoking Julia with --code-coverage\n**/*.jl.cov\n**/*.jl.*.cov\n\n# Files generated by invoking Julia with --track-allocation\n**/*.jl.mem\n\n# System-specific files and directories generated by the BinaryProvider and BinDeps packages\n# They contain absolute paths specific to the host computer, and so should not be committed\n**/deps/deps.jl\n**/deps/build.log\n**/deps/downloads/\n**/deps/usr/\n**/deps/src/\n\n# Build artifacts for creating documentation generated by the Documenter package\n**/docs/build/\n**/docs/site/\n\n# File generated by Pkg, the package manager, based on a corresponding Project.toml\n# It records a fixed state of all packages used by the project. As such, it should not be\n# committed for packages, but should be committed for applications that require a static\n# environment.\n**/Manifest.toml\n\n### VisualStudioCode ###\n\n### VisualStudioCode Patch ###\n# Ignore all local history of files\n**/.ionide\n\n### vs ###\n## Ignore Visual Studio temporary files, build results, and\n## files generated by popular Visual Studio add-ons.\n##\n## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore\n\n# User-specific files\n**/*.rsuser\n**/*.suo\n**/*.user\n**/*.userosscache\n**/*.sln.docstates\n\n# User-specific files (MonoDevelop/Xamarin Studio)\n**/*.userprefs\n\n# Mono auto generated files\n**/mono_crash.*\n\n# Build results\n**/[Dd]ebug/\n**/[Dd]ebugPublic/\n**/[Rr]elease/\n**/[Rr]eleases/\n**/x64/\n**/x86/\n**/[Aa][Rr][Mm]/\n**/[Aa][Rr][Mm]64/\n**/bld/\n**/[Bb]in/\n**/[Oo]bj/\n**/[Ll]og/\n**/[Ll]ogs/\n\n# Visual Studio 2015/2017 cache/options directory\n**/.vs/\n# Uncomment if you have tasks that create the project's static files in wwwroot\n#wwwroot/\n\n# Visual Studio 2017 auto generated files\n**/Generated\\ Files/\n\n# MSTest test Results\n**/[Tt]est[Rr]esult*/\n**/[Bb]uild[Ll]og.*\n\n# NUnit\n**/*.VisualState.xml\n**/TestResult.xml\n**/nunit-*.xml\n\n# Build Results of an ATL Project\n**/[Dd]ebugPS/\n**/[Rr]eleasePS/\n**/dlldata.c\n\n# Benchmark Results\n**/BenchmarkDotNet.Artifacts/\n\n# .NET Core\n**/project.lock.json\n**/project.fragment.lock.json\n**/artifacts/\n\n# StyleCop\n**/StyleCopReport.xml\n\n# Files built by Visual Studio\n**/*_i.c\n**/*_p.c\n**/*_h.h\n**/*.meta\n**/*.iobj\n**/*.ipdb\n**/*.pgc\n**/*.pgd\n**/*.rsp\n**/*.sbr\n**/*.tlb\n**/*.tli\n**/*.tlh\n**/*.tmp_proj\n**/*_wpftmp.csproj\n**/*.vspscc\n**/*.vssscc\n**/.builds\n**/*.pidb\n**/*.svclog\n**/*.scc\n\n# Chutzpah Test files\n**/_Chutzpah*\n\n# Visual C++ cache files\n**/ipch/\n**/*.aps\n**/*.ncb\n**/*.opendb\n**/*.opensdf\n**/*.cachefile\n**/*.VC.db\n**/*.VC.VC.opendb\n\n# Visual Studio profiler\n**/*.psess\n**/*.vsp\n**/*.vspx\n**/*.sap\n\n# Visual Studio Trace Files\n**/*.e2e\n\n# TFS 2012 Local Workspace\n**/$tf/\n\n# Guidance Automation Toolkit\n**/*.gpState\n\n# ReSharper is a .NET coding add-in\n**/_ReSharper*/\n**/*.[Rr]e[Ss]harper\n**/*.DotSettings.user\n\n# TeamCity is a build add-in\n**/_TeamCity*\n\n# DotCover is a Code Coverage Tool\n**/*.dotCover\n\n# AxoCover is a Code Coverage Tool\n**/.axoCover/*\n**/!.axoCover/settings.json\n\n# Coverlet is a free, cross platform Code Coverage Tool\n**/coverage*[.json, .xml, .info]\n\n# Visual Studio code coverage results\n**/*.coverage\n**/*.coveragexml\n\n# NCrunch\n**/_NCrunch_*\n**/.*crunch*.local.xml\n**/nCrunchTemp_*\n\n# MightyMoose\n**/*.mm.*\n**/AutoTest.Net/\n\n# Web workbench (sass)\n**/.sass-cache/\n\n# Installshield output folder\n**/[Ee]xpress/\n\n# DocProject is a documentation generator add-in\n**/DocProject/buildhelp/\n**/DocProject/Help/*.HxT\n**/DocProject/Help/*.HxC\n**/DocProject/Help/*.hhc\n**/DocProject/Help/*.hhk\n**/DocProject/Help/*.hhp\n**/DocProject/Help/Html2\n**/DocProject/Help/html\n\n# Click-Once directory\n**/publish/\n\n# Publish Web Output\n**/*.[Pp]ublish.xml\n**/*.azurePubxml\n# Note: Comment the next line if you want to checkin your web deploy settings,\n# but database connection strings (with potential passwords) will be unencrypted\n**/*.pubxml\n**/*.publishproj\n\n# Microsoft Azure Web App publish settings. Comment the next line if you want to\n# checkin your Azure Web App publish settings, but sensitive information contained\n# in these scripts will be unencrypted\n**/PublishScripts/\n\n# NuGet Packages\n**/*.nupkg\n# NuGet Symbol Packages\n**/*.snupkg\n# The packages folder can be ignored because of Package Restore\n**/**/[Pp]ackages/*\n# except build/, which is used as an MSBuild target.\n**/!**/[Pp]ackages/build/\n# Uncomment if necessary however generally it will be regenerated when needed\n#!**/[Pp]ackages/repositories.config\n# NuGet v3's project.json files produces more ignorable files\n**/*.nuget.props\n**/*.nuget.targets\n\n# Microsoft Azure Build Output\n**/csx/\n**/*.build.csdef\n\n# Microsoft Azure Emulator\n**/ecf/\n**/rcf/\n\n# Windows Store app package directories and files\n**/AppPackages/\n**/BundleArtifacts/\n**/Package.StoreAssociation.xml\n**/_pkginfo.txt\n**/*.appx\n**/*.appxbundle\n**/*.appxupload\n\n# Visual Studio cache files\n# files ending in .cache can be ignored\n**/*.[Cc]ache\n# but keep track of directories ending in .cache\n**/!?*.[Cc]ache/\n\n# Others\n**/ClientBin/\n**/~$*\n**/*.dbmdl\n**/*.dbproj.schemaview\n**/*.jfm\n**/*.pfx\n**/*.publishsettings\n**/orleans.codegen.cs\n\n# Including strong name files can present a security risk\n# (https://github.com/github/gitignore/pull/2483#issue-259490424)\n#*.snk\n\n# Since there are multiple workflows, uncomment next line to ignore bower_components\n# (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)\n#bower_components/\n\n# RIA/Silverlight projects\n**/Generated_Code/\n\n# Backup & report files from converting an old project file\n# to a newer Visual Studio version. Backup files are not needed,\n# because we have git ;-)\n**/_UpgradeReport_Files/\n**/Backup*/\n**/UpgradeLog*.XML\n**/UpgradeLog*.htm\n**/ServiceFabricBackup/\n**/*.rptproj.bak\n\n# SQL Server files\n**/*.mdf\n**/*.ldf\n**/*.ndf\n\n# Business Intelligence projects\n**/*.rdl.data\n**/*.bim.layout\n**/*.bim_*.settings\n**/*.rptproj.rsuser\n**/*- [Bb]ackup.rdl\n**/*- [Bb]ackup ([0-9]).rdl\n**/*- [Bb]ackup ([0-9][0-9]).rdl\n\n# Microsoft Fakes\n**/FakesAssemblies/\n\n# GhostDoc plugin setting file\n**/*.GhostDoc.xml\n\n# Node.js Tools for Visual Studio\n**/.ntvs_analysis.dat\n\n# Visual Studio 6 build log\n**/*.plg\n\n# Visual Studio 6 workspace options file\n**/*.opt\n\n# Visual Studio 6 auto-generated workspace file (contains which files were open etc.)\n**/*.vbw\n\n# Visual Studio LightSwitch build output\n**/**/*.HTMLClient/GeneratedArtifacts\n**/**/*.DesktopClient/GeneratedArtifacts\n**/**/*.DesktopClient/ModelManifest.xml\n**/**/*.Server/GeneratedArtifacts\n**/**/*.Server/ModelManifest.xml\n**/_Pvt_Extensions\n\n# Paket dependency manager\n**/.paket/paket.exe\n**/paket-files/\n\n# FAKE - F# Make\n**/.fake/\n\n# CodeRush personal settings\n**/.cr/personal\n\n# Python Tools for Visual Studio (PTVS)\n\n# Cake - Uncomment if you are using it\n# tools/**\n# !tools/packages.config\n\n# Tabs Studio\n**/*.tss\n\n# Telerik's JustMock configuration file\n**/*.jmconfig\n\n# BizTalk build output\n**/*.btp.cs\n**/*.btm.cs\n**/*.odx.cs\n**/*.xsd.cs\n\n# OpenCover UI analysis results\n**/OpenCover/\n\n# Azure Stream Analytics local run output\n**/ASALocalRun/\n\n# MSBuild Binary and Structured Log\n**/*.binlog\n\n# NVidia Nsight GPU debugger configuration file\n**/*.nvuser\n\n# MFractors (Xamarin productivity tool) working folder\n**/.mfractor/\n\n# Local History for Visual Studio\n**/.localhistory/\n\n# BeatPulse healthcheck temp database\n**/healthchecksdb\n\n# Backup folder for Package Reference Convert tool in Visual Studio 2017\n**/MigrationBackup/\n\n# Ionide (cross platform F# VS Code tools) working folder\n**/.ionide/\n\n### vscode ###\n\n### Vue ###\n# gitignore template for Vue.js projects\n# Recommended template: Node.gitignore\n\n# TODO: where does this rule come from?\n**/docs/_book\n\n# TODO: where does this rule come from?\n**/test/\n\n### Vuejs ###\n# Recommended template: Node.gitignore\n\n**/npm-debug.log\n**/yarn-error.log\n\n### Waf ###\n# For projects that use the Waf build system: https://waf.io/\n# Dot-hidden on Unix-like systems\n**/.waf-*-*/\n**/.waf3-*-*/\n# Hidden directory on Windows (no dot)\n**/waf-*-*/\n**/waf3-*-*/\n# Lockfile\n**/.lock-waf_*_build\n\n### Windows ###\n# Windows thumbnail cache files\n**/Thumbs.db\n**/Thumbs.db:encryptable\n**/ehthumbs.db\n**/ehthumbs_vista.db\n\n# Dump file\n**/*.stackdump\n\n# Folder config file\n**/[Dd]esktop.ini\n\n# Recycle Bin used on file shares\n**/$RECYCLE.BIN/\n\n# Windows Installer files\n**/*.msix\n\n# Windows shortcuts\n**/*.lnk\n\n### Xcode ###\n# Xcode\n# gitignore contributors: remember to update Global/Xcode.gitignore, Objective-C.gitignore & Swift.gitignore\n\n\n\n\n\n### Xcode Patch ###\n**/*.xcodeproj/*\n**/!*.xcodeproj/project.pbxproj\n**/!*.xcodeproj/xcshareddata/\n**/!*.xcworkspace/contents.xcworkspacedata\n**/**/xcshareddata/WorkspaceSettings.xcsettings\n\n### XcodeInjection ###\n# Code Injection\n# After new code Injection tools there's a generated folder /iOSInjectionProject\n# https://github.com/johnno1962/injectionforxcode\n\n**/iOSInjectionProject/\n\n### Gradle ###\n\n# Ignore Gradle GUI config\n\n# Avoid ignoring Gradle wrapper jar file (.jar files are usually ignored)\n\n# Cache of project\n\n# # Work around https://youtrack.jetbrains.com/issue/IDEA-116898\n# gradle/wrapper/gradle-wrapper.properties\n\n### Gradle Patch ###\n**/**/build/\n\n### VisualStudio ###\n\n# User-specific files\n\n# User-specific files (MonoDevelop/Xamarin Studio)\n\n# Mono auto generated files\n\n# Build results\n\n# Visual Studio 2015/2017 cache/options directory\n# Uncomment if you have tasks that create the project's static files in wwwroot\n\n# Visual Studio 2017 auto generated files\n\n# MSTest test Results\n\n# NUnit\n\n# Build Results of an ATL Project\n\n# Benchmark Results\n\n# .NET Core\n\n# StyleCop\n\n# Files built by Visual Studio\n\n# Chutzpah Test files\n\n# Visual C++ cache files\n\n# Visual Studio profiler\n\n# Visual Studio Trace Files\n\n# TFS 2012 Local Workspace\n\n# Guidance Automation Toolkit\n\n# ReSharper is a .NET coding add-in\n\n# TeamCity is a build add-in\n\n# DotCover is a Code Coverage Tool\n\n# AxoCover is a Code Coverage Tool\n\n# Coverlet is a free, cross platform Code Coverage Tool\n\n# Visual Studio code coverage results\n\n# NCrunch\n\n# MightyMoose\n\n# Web workbench (sass)\n\n# Installshield output folder\n\n# DocProject is a documentation generator add-in\n\n# Click-Once directory\n\n# Publish Web Output\n# Note: Comment the next line if you want to checkin your web deploy settings,\n# but database connection strings (with potential passwords) will be unencrypted\n\n# Microsoft Azure Web App publish settings. Comment the next line if you want to\n# checkin your Azure Web App publish settings, but sensitive information contained\n# in these scripts will be unencrypted\n\n# NuGet Packages\n# NuGet Symbol Packages\n# The packages folder can be ignored because of Package Restore\n# except build/, which is used as an MSBuild target.\n# Uncomment if necessary however generally it will be regenerated when needed\n# NuGet v3's project.json files produces more ignorable files\n\n# Microsoft Azure Build Output\n\n# Microsoft Azure Emulator\n\n# Windows Store app package directories and files\n\n# Visual Studio cache files\n# files ending in .cache can be ignored\n# but keep track of directories ending in .cache\n\n# Others\n\n# Including strong name files can present a security risk\n# (https://github.com/github/gitignore/pull/2483#issue-259490424)\n\n# Since there are multiple workflows, uncomment next line to ignore bower_components\n# (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)\n\n# RIA/Silverlight projects\n\n# Backup & report files from converting an old project file\n# to a newer Visual Studio version. Backup files are not needed,\n# because we have git ;-)\n\n# SQL Server files\n\n# Business Intelligence projects\n\n# Microsoft Fakes\n\n# GhostDoc plugin setting file\n\n# Node.js Tools for Visual Studio\n\n# Visual Studio 6 build log\n\n# Visual Studio 6 workspace options file\n\n# Visual Studio 6 auto-generated workspace file (contains which files were open etc.)\n\n# Visual Studio LightSwitch build output\n\n# Paket dependency manager\n\n# FAKE - F# Make\n\n# CodeRush personal settings\n\n# Python Tools for Visual Studio (PTVS)\n\n# Cake - Uncomment if you are using it\n# tools/**\n# !tools/packages.config\n\n# Tabs Studio\n\n# Telerik's JustMock configuration file\n\n# BizTalk build output\n\n# OpenCover UI analysis results\n\n# Azure Stream Analytics local run output\n\n# MSBuild Binary and Structured Log\n\n# NVidia Nsight GPU debugger configuration file\n\n# MFractors (Xamarin productivity tool) working folder\n\n# Local History for Visual Studio\n\n# BeatPulse healthcheck temp database\n\n# Backup folder for Package Reference Convert tool in Visual Studio 2017\n\n# Ionide (cross platform F# VS Code tools) working folder\n\n# End of https://www.toptal.com/developers/gitignore/api/ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n" }, { "path": ".drone.yml", "content": "---\n# XXX: putting this separator further down with code causes a parsing bug in drone lint\n#\n# Author: Hari Sekhon\n# Date: 2020-02-29 12:05:52 +0000 (Sat, 29 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# D r o n e C I\n# ============================================================================ #\n\n# https://docs.drone.io/quickstart/cli/\n#\n# https://docs.drone.io/cli/install/\n#\n# brew install drone-cli\n#\n# cd to this directory\n#\n# drone exec [--pipeline default] [--include=thisstep] [--exclude=thatstep]\n\nkind: pipeline\ntype: docker\nname: default\n\nsteps:\n - name: build\n image: ubuntu:18.04\n #environment:\n # DEBUG: 1\n commands:\n - setup/ci_bootstrap.sh\n - make init\n - make ci\n - make test\n\ntrigger:\n branch:\n - master\n" }, { "path": ".editorconfig", "content": "# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2015-10-31 19:04:34 +0000 (Sat, 31 Oct 2015)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n# to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# http://EditorConfig.org\n\n# stop recursing upwards for other .editorconfig files\nroot = true\n\n# Unix-style newlines with a newline ending every file\n[*]\nindent_size = 4\nindent_style = space\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[*.go]\nindent_size = 4\nindent_style = tab\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[Makefile]\nindent_size = 4\nindent_style = tab\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[{*.md,*.hcl,*.tf,*.tfvars}]\nindent_size = 2\nindent_style = space\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[*.yml,*.yaml]\nindent_size = 2\nindent_style = space\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[.*]\nindent_size = 4\nindent_style = space\nend_of_line = lf\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n# ============================================================================ #\n# Older Stuff, don't think I use this any more\n# ============================================================================ #\n\n# Matches multiple files with brace expansion notation\n# Set default charset\n#[*.{js,py}]\n#charset = utf-8\n\n# Indentation override for all JS under lib directory\n#[lib/**.js]\n#indent_style = space\n#indent_size = 2\n\n# Matches the exact files either package.json or .travis.yml\n#[{package.json,.travis.yml}]\n#indent_style = space\n#indent_size = 2\n\n#[*.xml]\n#indent_style = space\n#indent_size = 2\n" }, { "path": ".envrc", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Mon Feb 22 17:42:01 2021 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# D i r E n v\n# ============================================================================ #\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\n# See Also:\n#\n# .envrc-aws\n# .envrc-gcp\n# .envrc-kubernetes\n\n# direnv stdlib - loads .envrc from parent dir up to /\n#\n# useful to accumulate parent and child directory .envrc settings eg. adding Kubernetes namespace, ArgoCD app etc.\n#\n# bypasses security authorization though - use with care\n#source_up\n#\n# source_up must be loaded before set -u otherwise gets this error:\n#\n# direnv: loading .envrc\n# /bin/bash: line 226: $1: unbound variable\n#\n# source_up causes this error is up .envrc is found in parent directories:\n#\n# direnv: No ancestor .envrc found\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrc=\"$(readlink -f \"${BASH_SOURCE[0]}\")\"\nsrcdir=\"$(cd \"$(dirname \"$src\")\" && pwd)\"\n\n# ============================================================================ #\n# P r e - C o m m i t\n# ============================================================================ #\n\n# Automatically install Pre-Commit Git hooks if not already present\n\nif ! type -P pre-commit &>/dev/null; then\n if uname -s | grep -q Darwin &&\n type -P brew &>/dev/null; then\n echo\n echo \"Pre-commit is not installed - installing now using Homebrew...\"\n echo\n brew install pre-commit\n echo\n elif type -P pip &>/dev/null; then\n echo\n echo \"Pre-commit is not installed - installing now using Pip...\"\n echo\n pip install pre-commit\n fi\nfi\n\nif [ -f .pre-commit-config.yaml ] &&\n type -P pre-commit &>/dev/null &&\n git rev-parse --is-inside-work-tree &>/dev/null; then\n hook=\"$(git rev-parse --show-toplevel)/.git/hooks/pre-commit\"\n if [ -L \"$hook\" ]; then\n echo \"Detected symlink hook: \"\n echo\n ls -l \"$hook\"\n echo\n echo \"Removing\"\n rm -f \"$hook\"\n fi\n if ! [ -f \"$hook\" ]; then\n echo\n echo \"Pre-commit hook is not installed in local Git repo checkout - installing now...\"\n echo\n pre-commit install\n fi\nfi\n\n# ============================================================================ #\n# D o c k e r C o m p o s e\n# ============================================================================ #\n\nexport COMPOSE_PROJECT_NAME=\"bash-tools\"\n\n# ============================================================================ #\n# G i t H u b\n# ============================================================================ #\n\n#export GITHUB_ORGANIZATION=HariSekhon\n\n# ============================================================================ #\n# A n s i b l e\n# ============================================================================ #\n\n# use the local repo's ansible.cfg rather than:\n#\n# $PWD/ansible.cfg\n# ~/.ansible.cfg\n# /etc/ansible/ansible.cfg\n#\n# set this in project repos to ensure user environment ANSIBLE_CONFIG doesn't get used\n#export ANSIBLE_CONFIG=\"/path/to/ansible.cfg\"\n\n# ============================================================================ #\n# C l o u d f l a r e\n# ============================================================================ #\n\n#export CLOUDFLARE_EMAIL=hari@...\n#export CLOUDFLARE_API_KEY=... # generate here: https://dash.cloudflare.com/profile/api-tokens\n#export CLOUDFLARE_TOKEN=... # used by cloudflare_api.sh but not by terraform module\n\n# export the variables for terraform\n#export TF_VAR_cloudflare_email=\"$CLOUDFLARE_EMAIL\"\n#export TF_VAR_cloudflare_api_key=\"$CLOUDFLARE_API_KEY\" # must be a key, not a token using the link above\n\n# ============================================================================ #\n# Load External Envrc Files If Present\n# ============================================================================ #\n\n# XXX: safer to bring all these external .envrc inline if you're worried about changes\n# to it bypassing 'direnv allow' authorization\nload_if_exists(){\n # first arg is a path to a .envrc\n # all other args are passed to the sourcing of .envrc - used by .envrc-kubernetes\n # to pass the context name 'docker-desktop' to switch to\n local envrc=\"$1\"\n shift\n if ! [[ \"$envrc\" =~ ^/ ]]; then\n envrc=\"$srcdir/$envrc\"\n fi\n if [ -f \"$envrc\" ]; then\n # prevent looping on symlinks to this .envrc if given\n if [ \"$(readlink \"$envrc\")\" = \"$src\" ]; then\n return\n fi\n echo\n echo \"Loading $envrc\"\n # shellcheck disable=SC1090,SC1091\n . \"$envrc\" \"$@\"\n fi\n}\n\n# don't do this it may lead to an infinite loop if 'make link' symlinking ~/.envrc to this repo's .envrc\n# (which I do to keep Python virtual automatically loaded at all times because recent pip on Python refuses\n# to install to system Python)\n#load_if_exists ~/.envrc\n\n# ============================================================================ #\n# P y t h o n\n# ============================================================================ #\n\n#for envrc in \\\n# .envrc-aws \\\n# .envrc-gcp \\\n# .envrc-terraform \\\n# .envrc-python \\\n# ; do\n# load_if_exists \"$envrc\"\n#done\n\nload_if_exists .envrc-python\n\n# ============================================================================ #\n# J a v a\n# ============================================================================ #\n\nload_if_exists .envrc-java\n\n# ============================================================================ #\n# A W S\n# ============================================================================ #\n\n#if [[ \"$PWD\" =~ /aws/ ]]; then\n load_if_exists .envrc-aws\n#fi\n\n# ============================================================================ #\n# G C P\n# ============================================================================ #\n\n#if [[ \"$PWD\" =~ /gcp/ ]]; then\n load_if_exists .envrc-gcp\n#fi\n\n# ============================================================================ #\n# T e r r a f o r m\n# ============================================================================ #\n\n#if [[ \"$PWD\" =~ /(terra(form)?|tf)(/|$) ]]; then\n load_if_exists .envrc-terraform\n#fi\n\n# ============================================================================ #\n# K u b e r n e t e s\n# ============================================================================ #\n\n#if [ -f \"$srcdir/.envrc-kubernetes\" ]; then\n load_if_exists .envrc-kubernetes docker-desktop\n#fi\n\n# ============================================================================ #\n# . E n v\n# ============================================================================ #\n\necho\n# read .env too\n#dotenv\n\nload_if_exists .envrc.local\n" }, { "path": ".envrc-aws", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-07-27 12:42:32 +0100 (Tue, 27 Jul 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# A W S D i r E n v\n# ============================================================================ #\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\n# See Also:\n#\n# .envrc\n# .envrc-gcp\n# .envrc-kubernetes\n\n# direnv stdlib - loads .envrc from parent dir up to /\n#\n# useful to accumulate parent and child directory .envrc settings eg. adding Kubernetes namespace, ArgoCD app etc.\n#\n# bypasses security authorization though - use with care\n#source_up\n#\n# source_up must be loaded before set -u otherwise gets this error:\n#\n# direnv: loading .envrc\n# /bin/bash: line 226: $1: unbound variable\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\nif [ -n \"${CI:-}\" ]; then\n exit 0\nfi\n\n# XXX: Edit - crucial to set to the right environment, the rest of the inferred settings below depend on this\nif [ -z \"${AWS_PROFILE:-}\" ]; then\n exit 0\nfi\n\naws configure list 2>/dev/null || :\necho\n\n# If not logged in:\n#\n# - and we know the AWS_PROFILE\n# - and AWS_NO_AUTOLOGIN is not set\n# - check for SSO key in config section for this profile\n# - if found then do an automatic 'aws sso login'\n#\nif ! aws sts get-caller-identity --output table; then\n if [ -n \"${AWS_PROFILE:-}\" ] &&\n [ -z \"${AWS_NO_AUTOLOGIN:-}\" ]; then\n # assumes you're not putting a blank line until the next section block\n #if sed -n \"/profile.*$AWS_PROFILE/,/^[[:space:]]*$/p\" ~/.aws/config | grep -q sso_start_url; then\n # goes until the next [profile ...] section instead, should be more reliable\n if sed -n \"/profile.*$AWS_PROFILE/,/^[[:space:]]*\\[.+\\]/p\" ~/.aws/config | grep -q sso_start_url; then\n echo\n aws sso login\n fi\n fi\nfi\necho\n\n# 'aws sts get-caller-identity --query Account' succeeds in returning the account id\n# from the ~/.aws/config even if 'aws sso login' has expired\nAWS_ACCOUNT_ID=\"$(\n aws sts get-caller-identity --query Account --output text ||\n aws configure get sso_account_id ||\n :\n)\"\necho \"AWS Account ID: $AWS_ACCOUNT_ID\"\nexport AWS_ACCOUNT_ID\necho\n\n# might not have permissions to the Organizations in which case this will error instead of return\nAWS_ACCOUNT=\"$(aws organizations describe-account --account-id \"$AWS_ACCOUNT_ID\" 2>/dev/null)\"\nif [ -n \"$AWS_ACCOUNT\" ]; then\n echo \"AWS Account: $AWS_ACCOUNT\"\n export AWS_ACCOUNT\n echo\nfi\n\nAWS_DEFAULT_REGION=\"$(aws configure get region || :)\" # use region configured in profile by default\nAWS_DEFAULT_REGION=\"${AWS_DEFAULT_REGION:-eu-west-1}\" # XXX: Edit default fallback region\nexport AWS_DEFAULT_REGION\necho \"AWS Region: $AWS_DEFAULT_REGION\"\necho\n\nexport AWS_DEFAULT_OUTPUT=json\n\n# XXX: Edit, or remove if only have 1 cluster in account, will auto-determine below\nexport EKS_CLUSTER=\"mycluster\"\n\n# safer but slower\n#eks_clusters=()\n#while IFS='' read -r line; do\n# eks_clusters+=(\"$line\")\n##done < <(aws eks list-clusters --output=json | jq -r '.clusters[]')\n#done < <(aws eks list-clusters --query 'clusters[]' --output text)\n#if [ \"${#eks_clusters[@]}\" -eq 1 ]; then\n# export EKS_CLUSTER=\"${eks_clusters[*]}\"\n#fi\n\neks_clusters=\"$(\n aws eks list-clusters --query 'clusters' --output text |\n tr '[:space:]' '\\n' |\n sed '/^[[:space:]]*$/d'\n)\"\n\nif [ -n \"$eks_clusters\" ]; then\n num_eks_clusters=\"$(grep -c . <<< \"$eks_clusters\")\"\n echo \"EKS Clusters ($num_eks_clusters):\"\n echo\n echo \"$eks_clusters\"\n echo\n # If EKS_CLUSTER isn't set and there is only one EKS cluster in this account and region, then use it\n if [ -z \"${EKS_CLUSTER:-}\" ]; then\n if [ \"$num_eks_clusters\" = 1 ]; then\n EKS_CLUSTER=\"$eks_clusters\"\n fi\n fi\nelse\n num_eks_clusters=0\nfi\n\nif [ -n \"${EKS_CLUSTER:-}\" ]; then\n # kubectl context is easily created by running adjacent aws_kube_creds.sh script first\n export EKS_CONTEXT=\"arn:aws:eks:$AWS_DEFAULT_REGION:$AWS_ACCOUNT_ID:cluster/$EKS_CLUSTER\"\n\n if command -v kubectl &>/dev/null; then\n if ! kubectl config get-clusters | grep -Fxq \"$EKS_CONTEXT\"; then\n echo \"EKS Cluster '$EKS_CLUSTER' not configured, configuring now\"\n aws eks update-kubeconfig --name \"$EKS_CLUSTER\"\n echo\n fi\n fi\n\n # XXX: safer to inline .envrc-kubernetes if you're worried about changes to it bypassing 'direnv allow' authorization\n # shellcheck disable=SC1090,SC1091\n . \"$srcdir/.envrc-kubernetes\" \"$EKS_CONTEXT\" ${EKS_NAMESPACE:+\"$EKS_NAMESPACE\"}\nfi\n\nif [ \"$num_eks_clusters\" = 1 ]; then\n if grep -q '^[[:space:]]*export[[:space:]]*EKS_CLUSTER' .envrc &&\n ! grep -q \"^export EKS_CLUSTER=$eks_clusters$\" .envrc; then\n echo\n echo \"Updating EKS_CLUSTER in .envrc from:\"\n echo\n grep '^[[:space:]]*export[[:space:]]*EKS_CLUSTER' .envrc\n echo\n echo \"to\"\n echo\n echo \"export EKS_CLUSTER=$eks_clusters\"\n echo\n perl -pi -e \"s/^\\\\s*export\\s+EKS_CLUSTER=.*/export EKS_CLUSTER=$eks_clusters/\" .envrc\n echo\n fi\nfi\n\n# better to load this dynamically from credentials, using functions in .bash.d/aws.sh\n#export AWS_ACCESS_KEY_ID=...\n#export AWS_SECRET_ACCESS_KEY=...\n#export AWS_SESSION_TOKEN=...\n\n#export AWS_CONFIG_FILE=~/.aws/config\n#export AWS_SHARED_CREDENTIALS_FILE=~/.aws/credentials\n#export AWS_MAX_ATTEMPTS=3\n\n# to quickly export prefixed AWS environment keys if they exist for simple overrides, see examples below\naws_access_key_env(){\n env=\"$1\"\n for key in AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY; do\n varname=\"${env}_${key}\"\n if [ -n \"${!varname:-}\" ]; then\n export \"$key\"=\"${!varname}\"\n fi\n done\n}\n\n#aws_access_key_env \"DEV\"\n#aws_access_key_env \"STAGING\"\n#aws_access_key_env \"PROD\"\n#aws_access_key_env \"MGMT\"\n\n# pull the secret using this command whenever you need it:\n#\n# aws_secret_get.sh \"$JENKINS_ADMIN_PASSWORD_AWS_SECRET\" | copy_to_clipboard.sh\n#\nexport JENKINS_ADMIN_PASSWORD_AWS_SECRET=\"jenkins-admin-password\"\n" }, { "path": ".envrc-gcp", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Mon Feb 22 17:42:01 2021 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G C P D i r E n v\n# ============================================================================ #\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\n# See Also:\n#\n# .envrc\n# .envrc-aws\n# .envrc-kubernetes\n\n# direnv stdlib - loads .envrc from parent dir up to /\n#\n# useful to accumulate parent and child directory .envrc settings eg. adding Kubernetes namespace, ArgoCD app etc.\n#\n# bypasses security authorization though - use with care\n#source_up\n#\n# source_up must be loaded before set -u otherwise gets this error:\n#\n# direnv: loading .envrc\n# /bin/bash: line 226: $1: unbound variable\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\nif [ -n \"${CI:-}\" ]; then\n exit 0\nfi\n\n# https://cloud.google.com/sdk/gcloud/reference/config\n\n# If using other services, infer the environment variables to put below by reading:\n#\n# gcloud topic configurations\n# or\n# gcloud config set --help\n\ngcloud_config(){\n local config=\"${1:-}\"\n if [ -z \"$config\" ]; then\n echo \"no config passed to gcloud_config() function\" >&2\n return 1\n fi\n if [ -z \"${CI:-}\" ]; then\n return\n fi\n # don't waste time if not using GCloud SDK, ie. not found in $PATH\n if type -P gcloud; then\n # protect from setting this if the config does exist as this can cause auth problems by unsetting the core.account\n if gcloud config configurations list --format='get(name)' | grep -q \"^$config$\"; then\n export CLOUDSDK_ACTIVE_CONFIG_NAME=\"$config\"\n fi\n fi\n}\n\n#gcloud_config dev\n#gcloud_config staging\n#gcloud_config production\n\n# XXX: Edit\nexport CLOUDSDK_CORE_PROJECT=myproject\n\necho \"CLOUDSDK_CORE_PROJECT=$CLOUDSDK_CORE_PROJECT\"\necho\n\n# XXX: Edit\nexport CLOUDSDK_COMPUTE_REGION=\"${CLOUDSDK_COMPUTE_REGION:-eu-west-2}\"\n\necho \"CLOUDSDK_COMPUTE_REGION=$CLOUDSDK_COMPUTE_REGION\"\necho\n\nREGION=\"$CLOUDSDK_COMPUTE_REGION\"\n\n# you should probably not set CLOUDSDK_COMPUTE_ZONE\n#\n# 'gcloud compute ssh' will auto-determine the zone\n#\n# setting CLOUDSDK_COMPUTE_ZONE explicitly breaks the above command in 2/3 cases due to a VM being in a different zone:\n#\n# ERROR: (gcloud.compute.ssh) Could not fetch resource:\n# - The resource 'projects//zones//instances/' was not found\n#\n# gcp/gce_ssh.sh script in this repo can work around that if you do set this\n#\n#export CLOUDSDK_COMPUTE_ZONE=\"${REGION}-a\" # or b or c\n\nexport CLOUDSDK_AI_REGION=\"$REGION\"\nexport CLOUDSDK_AI_PLATFORM_REGION=\"$REGION\"\nexport CLOUDSDK_DATAPROC_REGION=\"$REGION\"\nexport CLOUDSDK_DEPLOY_REGION=\"$REGION\"\nexport CLOUDSDK_FILESTORE_REGION=\"$REGION\"\nexport CLOUDSDK_FUNCTIONS_REGION=\"$REGION\"\nexport CLOUDSDK_MEMCACHE_REGION=\"$REGION\"\nexport CLOUDSDK_REDIS_REGION=\"$REGION\"\nexport CLOUDSDK_RUN_REGION=\"$REGION\"\nexport CLOUDSDK_RUN_CLUSTER_LOCATION=\"$REGION\"\nexport CLOUDSDK_VMWARE_REGION=\"$REGION\"\n\n# XXX: Edit\nexport CLOUDSDK_RUN_PLATFORM=managed\n#export CLOUDSDK_RUN_PLATFORM=gke\n#export CLOUDSDK_RUN_PLATFORM=kubernetes\n#export CLOUDSDK_RUN_CLUSTER=mycluster\n\nexport CLOUDSDK_GCLOUDIGNORE_ENABLED=True\n#export CLOUDSDK_BUILDS_USE_KANIKO=True\n\n# XXX: Edit, or remove if only have 1 cluster in project, will auto-determine below\nexport CLOUDSDK_CONTAINER_CLUSTER=mycluster # GKE cluster name\n\n# safer but slower\n#gke_clusters=()\n#while IFS='' read -r line; do\n# gke_clusters+=(\"$line\")\n#done < <(gcloud container clusters list --format='get(name)')\n#if [ \"${#gke_clusters[@]}\" -eq 1 ]; then\n# export CLOUDSDK_CONTAINER_CLUSTER=\"${gke_clusters[*]}\"\n#fi\n\ngke_clusters=\"$(\n gcloud container clusters list --format='get(name)' |\n sed '/^[[:space:]]*$/d'\n)\"\n\nif [ -n \"$gke_clusters\" ]; then\n num_gke_clusters=\"$(grep -c . <<< \"$gke_clusters\")\"\n echo \"GKE Clusters ($num_gke_clusters):\"\n echo\n echo \"$gke_clusters\"\n echo\n # If GKE_CLUSTER isn't set and there is only one GKE cluster in this account and region, then use it\n if [ -z \"${GKE_CLUSTER:-}\" ]; then\n if [ \"$num_gke_clusters\" = 1 ]; then\n GKE_CLUSTER=\"$gke_clusters\"\n fi\n fi\nelse\n num_gke_clusters=0\nfi\n\n# alternatively call gke_kube_context() function in .envrc-kubernetes which will do this\n# and comment out auto-running kube_context() on sourcing .envrc-kubernetes\nif [ -n \"${CLOUDSDK_CONTAINER_CLUSTER:-}\" ]; then\n echo \"CLOUDSDK_CONTAINER_CLUSTER=$CLOUDSDK_CONTAINER_CLUSTER\"\n echo\n # kubectl context is easily created by running adjacent aws_kube_creds.sh script first\n\n export GKE_CONTEXT=\"gke_${CLOUDSDK_CORE_PROJECT}_${CLOUDSDK_COMPUTE_REGION}_${CLOUDSDK_CONTAINER_CLUSTER}\"\n\n # XXX: safer to inline .envrc-kubernetes if you're worried about changes to it bypassing 'direnv allow' authorization\n # shellcheck disable=SC1090,SC1091\n . \"$srcdir/.envrc-kubernetes\" \"$GKE_CONTEXT\" ${GKE_NAMESPACE:+\"$GKE_NAMESPACE\"}\nfi\n\n# pull the secret using this command whenever you need it:\n#\n# gcp_secret_get.sh \"$JENKINS_ADMIN_PASSWORD_GCP_SECRET\" | copy_to_clipboard.sh\n#\nexport JENKINS_ADMIN_PASSWORD_GCP_SECRET=\"jenkins-admin-password\"\n" }, { "path": ".envrc-java", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-03-20 01:55:20 +0800 (Thu, 20 Mar 2025)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# J a v a D i r E n v\n# ============================================================================ #\n\n# .envrc to auto-load the virtualenv inside the 'venv' directory if present\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n#srcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\nif [ -f .sdkmanrc ]; then\n if ! [ -f ~/.sdkman/etc/config ] ||\n ! grep -q '^[[:space:]]*sdkman_auto_env[[:space:]]*=[[:space:]]*true' ~/.sdkman/etc/config; then\n if [ -f ~/.sdkman/bin/sdkman-init.sh ]; then\n # shellcheck disable=SC1090\n . ~/.sdkman/bin/sdkman-init.sh\n fi\n # it's not a binary but a function, so no type -P\n if type sdk &>/dev/null; then\n sdk env install\n fi\n fi\nfi\n\n# read .env too\n#dotenv\n" }, { "path": ".envrc-kubernetes", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-02-25 10:10:53 +0000 (Thu, 25 Feb 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# K u b e r n e t e s D i r E n v\n# ============================================================================ #\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\n# See Also:\n#\n# .envrc\n# .envrc-aws\n# .envrc-gcp\n\n# direnv stdlib - loads .envrc from parent dir up to /\n#\n# useful to accumulate parent and child directory .envrc settings eg. adding Kubernetes namespace, ArgoCD app etc.\n#\n# bypasses security authorization though - use with care\n#source_up\n#\n# source_up must be loaded before set -u otherwise gets this error:\n#\n# direnv: loading .envrc\n# /bin/bash: line 226: $1: unbound variable\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n\narg=\"${1:-}\"\nif [ \"${arg##*/}\" = \"${BASH_SOURCE[0]##*/}\" ]; then\n shift\nfi\n\n# XXX: Edit this - hardcode for localized convenience\nCONTEXT=\"${1:-docker-desktop}\"\n# if set will also set the namespace for extra convenience\nNAMESPACE=\"${2:-}\"\n#NAMESPACE=\"jenkins\"\n\n# function so can place in topdir .envrc and have subdirs 'source_up' or simply . ../.envrc to reuse this code among many .envrc environments\nkube_context(){\n local context=\"$1\"\n local namespace=\"${2:-}\"\n if command -v kubectl &>/dev/null; then\n local tmpdir=\"/tmp/.kube\"\n\n mkdir -pv \"$tmpdir\"\n\n local default_kubeconfig=\"${HOME:-$(cd ~ && pwd)}/.kube/config\"\n local original_kubeconfig=\"${KUBECONFIG:-$default_kubeconfig}\"\n\n # reload safety - do not source from new tmpdir - not necessary for direnv but useful for local sourcing tests\n #if [[ \"$original_kubeconfig\" =~ $tmpdir ]]; then\n # echo \"ignoring \\$KUBECONFIG=$original_kubeconfig, using default home location $default_kubeconfig\"\n # original_kubeconfig=\"$default_kubeconfig\"\n #fi\n\n # isolate the kubernetes context to avoid a race condition affecting any other shells or scripts\n # epoch is added because $$ and $PPID are direnv sub-processes and may be reused later, so using epoch to add uniqueness\n local epoch\n epoch=\"$(date +%s)\"\n export KUBECONFIG=\"$tmpdir/config.${EUID:-${UID:-$(id -u)}}.$$.$epoch\"\n\n # load your real kube config to isolated staging area to source the context info\n local src_kubeconfig=\"\"\n local kubeconfig_source_locations=\"\n $original_kubeconfig\n $default_kubeconfig\n $PWD/.kube/config\n /etc/rancher/k3s/k3s.yaml\"\n for kubeconfig in $kubeconfig_source_locations; do\n if [ -f \"$kubeconfig\" ]; then\n src_kubeconfig=\"$kubeconfig\"\n break\n fi\n done\n if [ -n \"$src_kubeconfig\" ]; then\n if [ \"$src_kubeconfig\" != \"$KUBECONFIG\" ]; then\n cp -f -- \"$src_kubeconfig\" \"$KUBECONFIG\"\n fi\n else\n if [[ \"$PWD\" =~ k8|kube ]]; then\n echo \"WARNING: failed to find one of:\" >&2\n echo \"$kubeconfig_source_locations\" | sort -u >&2\n echo >&2\n fi\n fi\n\n # race condition - 'kubectl config get-contexts' fails to find the context and switch in many runs without this sleep\n context_found=0\n local i\n for ((i=0; i < 5; i++)); do\n # surprisingly unreliable - if kubectl config get-contexts -o name | grep -Fxq \"$context\" can miss even after these succeed\n #if [ -s \"$KUBECONFIG\" ]; then\n #if cmp --quiet \"$from_kubeconfig\" \"$KUBECONFIG\"; then\n if kubectl config get-contexts -o name | grep -Fxq \"$context\"; then\n context_found=1\n break\n fi\n sleep 0.1\n done\n\n # this randomly misses the context, and not even 'sync; sync; sleep 1' is reliable to stop that happening in testing\n #if kubectl config get-contexts -o name 2>/dev/null | grep -Fxq \"$context\"; then\n if [ \"$context_found\" = 1 ]; then\n kubectl config use-context \"$CONTEXT\"\n echo\n\n if [ -n \"${namespace:-}\" ]; then\n kubectl config set-context \"$context\" --namespace \"$namespace\"\n echo\n fi\n fi\n fi\n}\n\ngke_kube_context(){\n local CONTEXT\n for _ in CLOUDSDK_CORE_PROJECT CLOUDSDK_COMPUTE_REGION CLOUDSDK_CONTAINER_CLUSTER; do\n if [ -z \"${!_}\" ]; then\n echo \"WARNING: \\$$_ is not set\" >&2\n fi\n done\n # if CLOUDSDK_CONTAINER_CLUSTER and it's generated as a naming convention such as \"${CLOUDSDK_CORE_PROJECT}-${CLOUDSDK_COMPUTE_REGION}\"\n #export CLOUDSDK_CONTAINER_CLUSTER=\"${CLOUDSDK_CONTAINER_CLUSTER:-${CLOUDSDK_CORE_PROJECT}-${CLOUDSDK_COMPUTE_REGION}}\"\n\n # the context naming convention for GKE clusters imported via:\n #\n # gcloud container clusters get-credentials \"$cluster\" --zone \"$zone\"\n #\n # use gke_kube_creds.sh to auto-populate this for all GKE clusters in the current project\n # and gcp_foreach_project.sh to do this for all GCP projects. Both scripts are found here:\n #\n # https://github.com/HariSekhon/DevOps-Bash-tools\n #\n # should be using a regional cluster\n CONTEXT=\"gke_${CLOUDSDK_CORE_PROJECT}_${CLOUDSDK_COMPUTE_REGION}_${CLOUDSDK_CONTAINER_CLUSTER}\"\n # not a zonal cluster\n #CONTEXT=\"gke_${CLOUDSDK_CORE_PROJECT}_${CLOUDSDK_COMPUTE_ZONE}_${CLOUDSDK_CONTAINER_CLUSTER}\"\n kube_context \"$CONTEXT\" \"${NAMESPACE:-}\"\n}\n\nkube_context \"$CONTEXT\" \"$NAMESPACE\"\n\n#export ARGOCD_SERVER=\"argocd.mycompany.com\"\n#export ARGOCD_OPTS=\"${ARGOCD_OPTS:-} --grpc-web\"\n#if [ -n \"${ARGOCD_AUTH_TOKEN_MYCOMPANY_OR_ENV:-}\" ]; then\n# export ARGOCD_AUTH_TOKEN=\"$ARGOCD_AUTH_TOKEN_MYCOMPANY_OR_ENV\"\n#fi\n#export ARGOCD_APP=\"myapp\"\n" }, { "path": ".envrc-python", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Mon Feb 22 17:42:01 2021 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P y t h o n D i r E n v\n# ============================================================================ #\n\n# .envrc to auto-load the virtualenv inside the 'venv' directory if present\n\n# https://direnv.net/man/direnv-stdlib.1.html\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n#srcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# this is necessary because newer versions of pip no longer allow you to install PyPI packages in system-packages by default\nfor venv in \"$PWD/venv\" \"$HOME/venv\"; do\n if [ -f \"$venv/bin/activate\" ]; then\n echo\n echo \"Virtualenv directory found in: $venv\"\n echo\n echo \"Activating Virtualenv inside the directory: $venv\"\n\n # shellcheck disable=SC1091\n source \"$venv/bin/activate\"\n break\n fi\ndone\n\n# read .env too\n#dotenv\n" }, { "path": ".envrc-terraform", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: Mon Feb 22 17:42:01 2021 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T e r r a f o r m D i r E n v\n# ============================================================================ #\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n#srcdir=\"$(dirname \"${BASH_SOURCE[0]}\")\"\n\n# set this to the local repo's config instead of $HOME/.terraformrc\n#export TF_CLI_CONFIG_FILE=\"$PWD/configs/.terraformrc\"\n\n# if not already set in $HOME/.terraformrc\n#export TF_PLUGIN_CACHE_DIR=\"$HOME/.terraform.d/plugin-cache\"\n\n# XXX: beware that tfenv and tgswitch replace the terraform / terragrunt in the path and this is a race condition between different shells\n#\t it is not as good as the KUBECONFIG trick done in the .envrc-kubernetes\n\n# would auto-determine the version from the state file, but this commands seems to always return the version of your local binary pulling the state file, not the version from the actual terraform_version field in state file if you see when opening it up in the cloud bucket\n# terraform state pull | jq -r .terraform_version\nexport TERRAFORM_VERSION=1.1.9\n\n# overrides .terraform-version file to make this single source of truth\nexport TFENV_TERRAFORM_VERSION=\"$TERRAFORM_VERSION\"\nexport TFENV_AUTO_INSTALL=true\n\n# Terragrunt\nexport TG_VERSION=0.39.2\n\n# Terragrunt Provide Cache prevents wasting tonnes of space &time re-downloading duplicate 600MB\n# Provider plugins for every Terragrunt module resulting in massive duplication see:\n#\n# https://terragrunt.gruntwork.io/docs/features/provider-cache-server/\n#\n# Stores plugins in:\n#\n# $HOME/.cache/terragrunt/providers\n# or on Mac\n# $HOME/Library/Caches/terragrunt/providers\n#\nexport TG_PROVIDER_CACHE=1\nexport TG_PROVIDER_CACHE_HOST=127.0.0.1\n#\n#export TG_PROVIDER_CACHE_DIR=\"/new/path/to/cache/dir\"\n#\n# to cache from registries other than registry.terraform.io, registry.opentofu.org\n# eg. if you have your own private registry\n#export TG_PROVIDER_CACHE_REGISTRY_NAMES=\"example1.com,example2.com\"\n\n# if tgswitch is installed, trigger it to use the above TF_VERSION environment variable and switch to the correct version of Terragrunt\n# better than adding the ugly shell hook from the docs - https://github.com/warrensbox/tgswitch?tab=readme-ov-file#get-the-version-from-a-subdirectory\nif type -P tgswitch &>/dev/null; then\n tgswitch\nfi\n\n# XXX: set these or other variables for Terraform code to find\nexport CLOUDFLARE_EMAIL=hari@...\nexport CLOUDFLARE_API_KEY=... # generate here: https://dash.cloudflare.com/profile/api-tokens\n#export CLOUDFLARE_TOKEN=... # used by cloudflare_api.sh but not by terraform module\n\n# export the variables for terraform\nexport TF_VAR_cloudflare_email=\"$CLOUDFLARE_EMAIL\"\nexport TF_VAR_cloudflare_api_key=\"$CLOUDFLARE_API_KEY\" # must be a key, not a token using the link above\n\n# GITHUB_* environment variables may interfere with GitHub provider, so unset them\nfor env_var in $(env | awk -F= '$1 ~ /GITHUB/ {print $1}'); do\n unset \"$env_var\"\ndone\n" }, { "path": ".git-templates/git-secrets/hooks/commit-msg", "content": "#!/usr/bin/env bash\ngit secrets --commit_msg_hook -- \"$@\"\n" }, { "path": ".git-templates/git-secrets/hooks/pre-commit", "content": "#!/usr/bin/env bash\ngit secrets --pre_commit_hook -- \"$@\"\n" }, { "path": ".git-templates/git-secrets/hooks/prepare-commit-msg", "content": "#!/usr/bin/env bash\ngit secrets --prepare_commit_msg_hook -- \"$@\"\n" }, { "path": ".gitconfig", "content": "#\n# Author: Hari Sekhon\n# Date: 2012-01-31 14:08:42 +0000 (Tue, 31 Jan 2012)\n#\n# vim:ts=4:sts=4:sw=4:et\n\n# configure your user name and email in ~/.gitconfig.local\n#[user]\n# name = Hari Sekhon\n# email = harisekhon@gmail.com\n\n[include]\n # XXX: put your [user] section in $HOME/.gitconfig.local eg.\n #\n # [user]\n # name = Hari Sekhon\n # email = harisekhon@gmail.com\n #\n path = .gitconfig.local\n\n[core]\n # detects filemode changes\n filemode = true\n # defaults to $VISUAL or $EDITOR which is set in .bash.d/env.sh\n #editor = vim\n # global .gitignore\n excludesfile = ~/.gitignore\n # stops unicode chars coming out as \\xxx and double quoted filenames in git status (used in .bash.d/git.sh git_rm_untracked function)\n quotePath = false\n\n #whitespace = trailing-space,space-before-tab\n\n[pull]\n rebase = false\n\n[push]\n# default = current\n default = simple\n\n[alias]\n name = config --get user.name\n email = config --get user.email\n who = !git config -l | grep -E '^user\\\\.(name|email)'\n whoami = who\n co = checkout\n ci = commit\n p = push\n st = status\n stq = !git_foreach_repo.sh git status | grep --color=no -e \"=======\" -e branch -e GitHub\n br = branch\n ba = branch -a\n bav = branch -a -vvv\n cp = cherry-pick\n ls = ls-files\n root = rev-parse --show-toplevel\n\n rem = remote -v\n remotes = remote -v\n tags = tag -l\n branches = branch -a\n prune-branches = ! git remote prune origin && git branch -vv | cut -c 3- | awk '$4 ~ /gone\\\\]/ {print $1}' | xargs git branch -d\n\n # the results with multi-origin remotes are not reliable without a git pull first, even when only pulling from the primary GitHub origin\n in = ! git pull && git log HEAD..FETCH_HEAD\n out = ! git pull && git log FETCH_HEAD..HEAD\n inp = ! git pull && git log -p HEAD..FETCH_HEAD\n outp = ! git pull && git log -p FETCH_HEAD..HEAD\n ind = ! git pull && git diff HEAD..FETCH_HEAD\n outd = ! git pull && git diff FETCH_HEAD..HEAD\n age = for-each-ref --format '%(authordate:iso) %(refname:short)' --sort=-authordate refs/remotes refs/heads\n\n unstage = reset HEAD --\n last = log -1 HEAD\n\n # Show files ignored by git:\n ign = ls-files -o -i --exclude-standard\n ignored = !git clean -ndX | sed -e 's/^Would remove //' | sed 's/^Would skip repository //'\n untracked = ls-files --others --exclude-standard\n\n # how to use commands inside git aliases\n visual = !gitk\n\n df = diff\n dc = diff --cached\n lg = log -p\n lol = log --graph --decorate --pretty=oneline --abbrev-commit\n lola = log --graph --decorate --pretty=oneline --abbrev-commit --all\n\n # avoid diff-so-fancy so we can create patches\n patch = !git --no-pager diff --no-color\n\n #ffm = merge --ff-only\n #ffp = pull --ff-only\n #fp = fetch --prune\n\n #mp = merge --no-commit --no-ff\n #ma = merge --abort\n #dno = diff --name-only\n #gone = !git branch -vv | grep ': gone'\n #gd = !git branch -vv | awk '/: gone/ {print $1}' | xargs --no-run-if-empty -n1 git branch -D\n\n[help]\n # autocorrects git commands and executes the inferred command\n # dangerous this just autocorrected my git rename to git rebase, lucky it errored out...\n autocorrect = 0\n\n[homebrew]\n donationmessage = false\n\n# ============================================================================ #\n# G i t C o l o r\n# ============================================================================ #\n\n# colors: normal, black, red, green, yellow, blue, magenta, cyan, white\n# effects: bold, dim, ul, blink and reverse\n\n# if 2 colours given - 1st is foreground, 2nd is background\n\n[color]\n ui = auto\n diff = auto\n grep = auto\n # do not set always here, use:\n # -c color.status=always\n # for specific overrides, otherwise may break gitci and related functions\n status = auto\n branch = auto\n\n[color \"branch\"]\n current = green ul\n local = yellow\n remote = red # default\n plain = white\n\n[color \"diff\"]\n new = green\n old = red # default\n plain = white\n whitespace = yellow reverse\n func = yellow\n #frag = cyan # default\n #meta = green bold # default\n # from diff-so-fancy\n meta = 11\n frag = magenta bold\n\n[color \"grep\"]\n context = white\n filename = cyan\n function = yellow\n linenumber = white\n match = white magenta\n selected = green\n separator = white\n\n[color \"status\"]\n added = white blue\n changed = magenta\n untracked = cyan\n branch = magenta blink\n nobranch = red blink\n\n# ============================================================================ #\n# D i f f - s o - f a n c y\n# ============================================================================ #\n\n# detected if installed and set via $GIT_PAGER in .bash.d/git.sh\n#[core]\n# pager = diff-so-fancy | less --tabs=4 -RFX\n#[pager]\n # don't set --pattern, overrides -F and doesn't quit less automatically for short diffs\n #diff = diff-so-fancy | less --tabs=4 -RFX --pattern '^(Date|added|deleted|modified): '\n #diff = diff-so-fancy | less --tabs=4 -RFX\n\n # truncate lines in less, only for 'git blame'\n #blame = less -S\n\n\n[color \"diff-highlight\"]\n #oldNormal = red bold\n oldHighlight = white red # black doesn't contrast well with red bg, use white\n #newNormal = green bold\n newHighlight = white magenta\n\n[diff-so-fancy]\n stripLeadingSymbols = false\n\n# diff-so-fancy but I prefer most of my old preferences\n#[color \"diff\"]\n# meta = 11\n# frag = magenta bold\n# commit = yellow bold\n# old = red bold\n# new = green bold\n# whitespace = red reverse\n\n# ============================================================================ #\n\n#[difftool \"sourcetree\"]\n# cmd = opendiff \\\"$LOCAL\\\" \\\"$REMOTE\\\"\n# path =\n#\n#[mergetool \"sourcetree\"]\n# cmd = /Applications/SourceTree.app/Contents/Resources/opendiff-w.sh \\\"$LOCAL\\\" \\\"$REMOTE\\\" -ancestor \\\"$BASE\\\" -merge \\\"$MERGED\\\"\n# trustExitCode = true\n\n#[filter \"media\"]\n# clean = git media clean %f\n# smudge = git media smudge %f\n# required = true\n\n# ============================================================================ #\n# C r e d e n t i a l s H e l p e r s\n# ============================================================================ #\n\n# more specific credential addresses below take priority, so if you want to paste in a GitHub token\n# you will need to comment out the GitHub credential help sections below\n#[credential]\n# helper = store\n\n# When prompted, enter your username and PAT token, not password, otherwise you'll get this error:\n#\n# remote: Support for password authentication was removed on August 13, 2021.\n# remote: Please see https://docs.github.com/get-started/getting-started-with-git/about-remote-repositories#cloning-with-https-urls for information on currently recommended modes of authentication.\n\n# See credential helpers:\n#\n# git config --list --show-origin | grep credential\n\n# generated by git/git_remotes_set_https_creds_helpers.sh\n\n[credential \"https://github.com\"]\n # without the \"sleep 1\" the Git command may miss catching the output and hang instead\n helper = \"!f() { sleep 1; echo \\\"username=${GITHUB_USER}\\\"; echo \\\"password=${GH_TOKEN:-${GITHUB_TOKEN}}\\\"; }; f\"\n\n[credential \"https://gist.github.com\"]\n helper = \"!f() { sleep 1; echo \\\"username=${GITHUB_USER}\\\"; echo \\\"password=${GH_TOKEN:-${GITHUB_TOKEN}}\\\"; }; f\"\n\n[credential \"https://gitlab.com\"]\n helper = \"!f() { sleep 1; echo \\\"password=${GITLAB_TOKEN}\\\"; }; f\"\n\n# XXX: Bitbucket actually needs https://@ regardless otherwise results in 403 errors\n[credential \"https://bitbucket.org\"]\n #helper = \"!f() { sleep 1; echo \\\"password=${BITBUCKET_TOKEN}\\\"; }; f\"\n helper = \"!f() { sleep 1; echo \\\"username=${BITBUCKET_USER}\\\"; echo \\\"password=${BITBUCKET_APP_PASSWORD:-${BITBUCKET_TOKEN}}\\\"; }; f\"\n\n[credential \"https://dev.azure.com\"]\n helper = \"!f() { sleep 1; echo \\\"username=${AZURE_DEVOPS_USER}\\\"; echo \\\"password=${AZURE_DEVOPS_TOKEN}\\\"; }; f\"\n\n# ============================================================================ #\n# A W S S e c r e t s\n# ============================================================================ #\n\n# AWS Secrets prevents committing secrets in to Git\n\n# install git-secrets hooks in any repo initialized or cloned to prevent credential leak\n[init]\n templateDir = ~/.git-templates/git-secrets\n\n[secrets]\n providers = git secrets --aws-provider\n patterns = (A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}\n patterns = (\\\"|')?(AWS|aws|Aws)?_?(SECRET|secret|Secret)?_?(ACCESS|access|Access)?_?(KEY|key|Key)(\\\"|')?\\\\s*(:|=>|=)\\\\s*(\\\"|')?[A-Za-z0-9/\\\\+=]{40}(\\\"|')?\n patterns = (\\\"|')?(AWS|aws|Aws)?_?(ACCOUNT|account|Account)_?(ID|id|Id)?(\\\"|')?\\\\s*(:|=>|=)\\\\s*(\\\"|')?[0-9]{4}\\\\-?[0-9]{4}\\\\-?[0-9]{4}(\\\"|')?\n # doesn't work, doesn't support (?! ) negative lookahead regex\n #patterns = (\\bhari|sekhon\\b)(!.*@gmail.com)\n # only applies to contents, not metadata to prevent wrong author commits\n #patterns = hari|sekhon\n # These are sample keys so ignore false positives from scanning tools\n # trivy:ignore:aws-access-key-id\n allowed = AKIAIOSFODNN7EXAMPLE\n # trivy:ignore:aws-access-key-id\n allowed = wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY\n # better to add to private repos .git/config only\n #allowed = AWS_ACCOUNT_ID\n\n# ============================================================================ #\n# G C P S o u r c e R e p o s i t o r i e s\n# ============================================================================ #\n\n# GCloud SDK command clone and sets up the repo auth:\n#\n# gcloud source repos clone \"$repo\" --project=\"$project\"\n#\n# Remote origin:\n#\n# https://source.developers.google.com/p/$project/r/$repo\n#\n# GCloud SDK adds this to .git/config in a repo cloned via:\n#\n# # having a blank helper before the real help prevents this error when pushing:\n# # bad input: ..........\n#[credential \"https://source.developers.google.com/\"]\n# helper =\n# helper = !gcloud auth git-helper --account=hari@.iam.gserviceaccount.com --ignore-unknown $@\n[filter \"lfs\"]\n clean = git-lfs clean -- %f\n smudge = git-lfs smudge -- %f\n process = git-lfs filter-process\n required = true\n" }, { "path": ".gitconfig.local", "content": "#\n# Author: Hari Sekhon\n# Date: 2012-01-31 14:08:42 +0000 (Tue, 31 Jan 2012)\n#\n\n[user]\n name = Hari Sekhon\n email = harisekhon@gmail.com\n" }, { "path": ".github/CODEOWNERS", "content": "#\n# Author: Hari Sekhon\n# Date: 2021-11-09 15:14:59 +0000 (Tue, 09 Nov 2021)\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners\n\n# Good in theory, to alert on PR changes to these code paths, but for public repos which may be forked and run .github/workflows/fork-update.yaml, this will result in a lot of spam\n\n# Tips:\n#\n# * includes changes under .github/\n# dir/* only matches first level file changes but doesn't recurse\n# dir/ recurses\n#\n# - CODEOWNERS in base branch of PR determines review request\n# - paths are case sensitive\n# - last match wins, use * at top for overall owner then override with more specific teams\n\n#* @harisekhon # username or email address\n#* @myorg/platform-engineering # team based is the way to go - team must have Write access to the repo regardless of if individuals have access\n#* @myorg/devops\n#k8s @myorg/devops @myorg/sre-team\n#apps/ @myorg/developers\n#apps/dir2 # ignores dir2 as no owner/team specified on this line\n#src/ @myorg/developers\n#docs/ docs@example.com\n#.github/workflows @ci-cd-team\n" }, { "path": ".github/ISSUE_TEMPLATE.md", "content": "Please be specific about your issue and include debug output from running after setting `export DEBUG=1` in your shell.\n\nYou can anonymize hostnames / FQDNs, IP / MAC addresses, Kerberos principals, email addresses and almost anything else using `anonymize.pl` or the newer `anonymize.py` available in the [DevOps Perl Tools](https://github.com/HariSekhon/DevOps-Perl-tools) and [DevOps Python Tools](https://github.com/HariSekhon/DevOps-Python-tools) respectively.\n" }, { "path": ".github/workflows/actions-allowed.txt", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-26 19:04:03 +0000 (Wed, 26 Jan 2022)\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# 3rd Party GitHub Actions Allow List\n# ============================================================================ #\n\n# technically should fix to a SHA, but I trust these authors, if I didn't, I wouldn't run their actions at all\n\ncheckmarx/kics-action@*\nfairwindsops/pluto/github-action@*\nmegalinter/megalinter@v5\nreturntocorp/semgrep-action@v1\n" }, { "path": ".github/workflows/alpine.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Alpine\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/alpine.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: alpine:latest\n caches: apk pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/alpine_3.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Alpine 3\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/alpine_3.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: alpine:3\n caches: apk pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/centos.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: CentOS\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/centos.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: centos:latest\n caches: yum pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/centos7.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: CentOS 7\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/centos7.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: centos:7\n caches: yum pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/centos8.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: CentOS 8\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/centos8.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: centos:8\n caches: yum pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/checkov.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C h e c k o v G i t H u b W o r k f l o w\n# ============================================================================ #\n\n# Static analysis of Terraform code - publishes report to GitHub Security tab\n\n# https://github.com/bridgecrewio/checkov-action\n\n---\nname: Checkov\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\njobs:\n checkov:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Checkov\n uses: HariSekhon/GitHub-Actions/.github/workflows/checkov.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/codeowners.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# C o d e O w n e r s\n# ============================================================================ #\n\n---\nname: CodeOwners\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - CODEOWNERS\n - .github/CODEOWNERS\n pull_request:\n branches:\n - master\n - main\n paths:\n - CODEOWNERS\n - .github/CODEOWNERS\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n validate:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Validate CODEOWNERS\n uses: HariSekhon/GitHub-Actions/.github/workflows/codeowners.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/commit_adjacent_repos.sh", "content": "#!/usr/bin/env bash\n\ngit_foreach_repo.sh 'gitu .github/workflows ||:'\n" }, { "path": ".github/workflows/debian.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:latest\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_10.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 10\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_10.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:10\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_11.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 11\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_11.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:11\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_12.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 12\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_12.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:12\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_6.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 6\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_6.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:6\n # causes nodejs errors\n #caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_7.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 7\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_7.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:7\n # causes nodejs errors\n #caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_8.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 8\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_8.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:8\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/debian_9.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Debian 9\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/debian_9.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: debian:9\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/docker_bash_alpine.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-27 18:55:16 +0000 (Thu, 27 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Docker Build (Alpine)\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n # github.event.repository context not available in scheduled workflows\n if: |\n github.repository_owner == 'HariSekhon' &&\n github.ref_type == 'branch' &&\n ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build.yaml@master\n with:\n # GitHub Actions doesn't yet support referencing env context in uses\n repo_tags: |\n harisekhon/bash-tools:alpine\n ghcr.io/harisekhon/bash-tools:alpine\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-alpine\n debug: ${{ github.event.inputs.debug }}\n secrets:\n DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}\n DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}\n" }, { "path": ".github/workflows/docker_bash_centos.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-27 18:55:16 +0000 (Thu, 27 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Docker Build (CentOS)\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n # github.event.repository context not available in scheduled workflows\n if: |\n github.repository_owner == 'HariSekhon' &&\n github.ref_type == 'branch' &&\n ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build.yaml@master\n with:\n # GitHub Actions doesn't yet support referencing env context in uses\n repo_tags: |\n harisekhon/bash-tools:centos\n ghcr.io/harisekhon/bash-tools:centos\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-centos\n debug: ${{ github.event.inputs.debug }}\n secrets:\n DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}\n DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}\n" }, { "path": ".github/workflows/docker_bash_debian.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-27 18:55:16 +0000 (Thu, 27 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Docker Build (Debian)\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n # github.event.repository context not available in scheduled workflows\n if: |\n github.repository_owner == 'HariSekhon' &&\n github.ref_type == 'branch' &&\n ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build.yaml@master\n with:\n # GitHub Actions doesn't yet support referencing env context in uses\n repo_tags: |\n harisekhon/bash-tools:debian\n ghcr.io/harisekhon/bash-tools:debian\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-debian\n debug: ${{ github.event.inputs.debug }}\n secrets:\n DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}\n DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}\n" }, { "path": ".github/workflows/docker_bash_fedora.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-27 18:55:16 +0000 (Thu, 27 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Docker Build (Fedora)\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n # github.event.repository context not available in scheduled workflows\n if: |\n github.repository_owner == 'HariSekhon' &&\n github.ref_type == 'branch' &&\n ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build.yaml@master\n with:\n # GitHub Actions doesn't yet support referencing env context in uses\n repo_tags: |\n harisekhon/bash-tools:fedora\n ghcr.io/harisekhon/bash-tools:fedora\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-fedora\n debug: ${{ github.event.inputs.debug }}\n secrets:\n DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}\n DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}\n" }, { "path": ".github/workflows/docker_bash_ubuntu.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-27 18:55:16 +0000 (Thu, 27 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Docker Build (Ubuntu)\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n - .github/\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n # github.event.repository context not available in scheduled workflows\n if: |\n github.repository_owner == 'HariSekhon' &&\n github.ref_type == 'branch' &&\n ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build.yaml@master\n with:\n # GitHub Actions doesn't yet support referencing env context in uses\n repo_tags: |\n harisekhon/bash-tools:latest\n harisekhon/bash-tools:ubuntu\n ghcr.io/harisekhon/bash-tools:latest\n ghcr.io/harisekhon/bash-tools:ubuntu\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-ubuntu\n debug: ${{ github.event.inputs.debug }}\n secrets:\n DOCKERHUB_USER: ${{ secrets.DOCKERHUB_USER }}\n DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}\n" }, { "path": ".github/workflows/dockerhub_status_alpine.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: DockerHub Alpine\n\n#env:\n# DEBUG: 1\n\non:\n push:\n branches:\n - master\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\njobs:\n bash_tools_alpine:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/bash-tools --tag alpine\n tools_alpine:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/tools --tag alpine\n alpine-github:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/alpine-github\n github_alpine:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/github --tag alpine\n" }, { "path": ".github/workflows/dockerhub_status_centos.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: DockerHub CentOS\n\n#env:\n# DEBUG: 1\n\non:\n push:\n branches:\n - master\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\njobs:\n bash_tools_centos:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/bash-tools --tag centos\n tools_centos:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/tools --tag centos\n centos-github:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/centos-github\n github_centos:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/github --tag centos\n" }, { "path": ".github/workflows/dockerhub_status_debian.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: DockerHub Debian\n\n#env:\n# DEBUG: 1\n\non:\n push:\n branches:\n - master\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\njobs:\n bash_tools_debian:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/bash-tools --tag debian\n tools_debian:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/tools --tag debian\n debian-github:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/debian-github\n github_debian:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/github --tag debian\n" }, { "path": ".github/workflows/dockerhub_status_fedora.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: DockerHub Fedora\n\n#env:\n# DEBUG: 1\n\non:\n push:\n branches:\n - master\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\njobs:\n bash_tools_fedora:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/bash-tools --tag fedora\n tools_fedora:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/tools --tag fedora\n fedora-github:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/fedora-github\n github_fedora:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/github --tag fedora\n" }, { "path": ".github/workflows/dockerhub_status_ubuntu.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: DockerHub Ubuntu\n\n#env:\n# DEBUG: 1\n\non:\n push:\n branches:\n - master\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\njobs:\n bash_tools_ubuntu:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/bash-tools --tag ubuntu\n tools_ubuntu:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/tools --tag ubuntu\n ubuntu-github:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/ubuntu-github\n github_ubuntu:\n name: check\n timeout-minutes: 1\n runs-on: ubuntu-latest\n container: harisekhon/nagios-plugins\n steps:\n - name: check\n run: check_dockerhub_repo_build_status.py --repo harisekhon/github --tag ubuntu\n" }, { "path": ".github/workflows/fedora.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Fedora\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/fedora.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: fedora\n caches: yum pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/fork-sync.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# F o r k S y n c\n# ============================================================================ #\n\n# For a fork of the original repo, activate to keep it up to date via straight GitHub sync to the default branch\n\n---\nname: Fork Sync\n\non: # yamllint disable-line rule:truthy\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 */3 * * *'\n\npermissions:\n contents: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: false\n\njobs:\n fork_sync:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == true\n if: github.repository_owner != 'HariSekhon'\n name: Fork Sync\n uses: HariSekhon/GitHub-Actions/.github/workflows/fork-sync.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/fork-update-pr.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# F o r k U p d a t e P R\n# ============================================================================ #\n\n# For a fork of the original repo, activate to keep its branches up to date via Pull Requests\n#\n# To be used in conjunction with the adjacent fork-sync.yaml which keeps the default branch up to date\n\n---\nname: Fork Update PR\n\non: # yamllint disable-line rule:truthy\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 10 * * 1'\n\npermissions:\n contents: write\n pull-requests: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: false\n\njobs:\n fork_update_pr:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == true\n if: github.repository_owner != 'HariSekhon'\n name: Fork Update PR\n uses: HariSekhon/GitHub-Actions/.github/workflows/fork-update-pr.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ghcr_bash_ubuntu.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-02-09 18:07:10 +0000 (Wed, 09 Feb 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: GHCR Build (Ubuntu)\n\non:\n push:\n branches:\n - master\n - main\n paths-ignore:\n - **/*.md\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n packages: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n docker_build:\n if: github.event.repository.fork == false && github.ref_type == 'branch' && ( github.ref_name == github.event.repository.default_branch || github.ref_name == 'docker' )\n name: Docker Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/docker_build_ghcr.yaml@master\n with:\n image: bash-tools\n tags: ubuntu latest\n dockerfile-repo: HariSekhon/Dockerfiles\n context: Dockerfiles/devops-bash-tools-ubuntu\n" }, { "path": ".github/workflows/grype.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2023-05-13 01:07:56 +0100 (Sat, 13 May 2023)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G r y p e\n# ============================================================================ #\n\n---\nname: Grype\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n Grype:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Grype\n uses: HariSekhon/GitHub-Actions/.github/workflows/grype.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/json.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# J S O N\n# ============================================================================ #\n\n# Validate any JSON files found in the repo\n\n---\nname: JSON\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.json'\n - .github/workflows/json.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.json'\n - .github/workflows/json.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\njobs:\n check_json:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Check JSON\n uses: HariSekhon/GitHub-Actions/.github/workflows/json.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/kics.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-02-01 19:36:08 +0000 (Tue, 01 Feb 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# K i c s\n# ============================================================================ #\n\n---\nname: Kics\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n kics:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Kics\n uses: HariSekhon/GitHub-Actions/.github/workflows/kics.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/mac.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Mac\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/alpine.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n runs-on: macos-latest\n caches: brew pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/mac_11.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Mac 11\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/alpine.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n runs-on: macos-11\n caches: brew pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/mac_12.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Mac 12\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/alpine.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n runs-on: macos-12\n caches: brew pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/markdown.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2023-04-14 23:53:43 +0100 (Fri, 14 Apr 2023)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# M a r k D o w n\n# ============================================================================ #\n\n---\nname: Markdown\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.md'\n - .mdlrc\n - .mdl.rb\n - .markdownlint.rb\n - .github/workflows/markdown.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.md'\n - .mdlrc\n - .mdl.rb\n - .markdownlint.rb\n - .github/workflows/markdown.yaml\n workflow_dispatch:\n\npermissions:\n contents: read\n pull-requests: read\n\njobs:\n Markdown:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Markdown\n uses: HariSekhon/GitHub-Actions/.github/workflows/markdown.yaml@master\n" }, { "path": ".github/workflows/push_all_repos.sh", "content": "#!/usr/bin/env bash\n\ngit_foreach_repo.sh 'push'\n" }, { "path": ".github/workflows/pypy2.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: PyPy 2\n\non:\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: PyPy2\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: pypy2\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/pypy3.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: PyPy 3\n\non:\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: PyPy3\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: pypy3\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python2.7.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 2.7\n\non:\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python2.7.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python2.7.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 2.7\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: 2.7\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.10.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.10\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.10.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.10.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.10\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: \"3.10\"\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.11.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.11\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.11.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.11.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.11\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: \"3.11\"\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.6.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.6\n\non:\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.6.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.6.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.6\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: 3.6\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.7.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.7\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.7.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.7.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.7\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: 3.7\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.8.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.8\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.8.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.8.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.8\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: 3.8\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/python3.9.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-02-04 21:40:04 +0000 (Tue, 04 Feb 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Python 3.9\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.9.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.py'\n - pylib\n - requirements.txt\n - .github/workflows/python3.9.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Python 3.9\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n python-version: 3.9\n caches: apt pip\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/self_hosted.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-04-10 13:31:46 +0100 (Fri, 10 Apr 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nname: Self Hosted\n\n#env:\n# DEBUG: 1\n\non: # [push]\n push:\n branches:\n - master\n paths-ignore:\n - *.md\n schedule:\n # * is a special character in YAML so you have to quote this string\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\njobs:\n build:\n #name: build\n timeout-minutes: 60\n runs-on: self-hosted\n steps:\n - uses: actions/checkout@v2\n - uses: actions/cache@v4\n with:\n path: ~/.cache/pip\n key: pip-${{ runner.os }}-${{ runner.arch }} # -${{ hashFiles('**/requirements.txt') }}\n restore-keys: |\n pip-${{ runner.os }}-${{ runner.arch }}\n - uses: actions/cache@v4\n with:\n path: ~/.cpanm\n key: cpanm-${{ runner.os }}-${{ runner.arch }} # -${{ hashFiles('**/cpan-requirements.txt') }}\n restore-keys: |\n cpanm-${{ runner.os }}-${{ runner.arch }}\n - name: init\n run: make init\n - name: build\n run: make ci\n - name: test\n run: make test\n" }, { "path": ".github/workflows/semgrep-cloud.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S e m g r e p C l o u d W o r k f l o w\n# ============================================================================ #\n\n# Logs results to https://semgrep.dev/\n\n---\nname: Semgrep Cloud\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n semgrep:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Semgrep Cloud\n uses: HariSekhon/GitHub-Actions/.github/workflows/semgrep-cloud.yaml@master\n secrets:\n SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/semgrep.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S e m g r e p G i t H u b W o r k f l o w\n# ============================================================================ #\n\n# Generates code scanning alerts in GitHub's Security tab -> Code scanning alerts\n\n# https://semgrep.dev/docs/semgrep-ci/sample-ci-configs/#github-actions\n\n---\nname: Semgrep\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n semgrep:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Semgrep GitHub Security Tab\n uses: HariSekhon/GitHub-Actions/.github/workflows/semgrep.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/shellcheck.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S h e l l C h e c k\n# ============================================================================ #\n\n# Validate any shell scripts found in the repo\n\n---\nname: ShellCheck\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.sh'\n - .github/workflows/shellcheck.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.sh'\n - .github/workflows/shellcheck.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n shellcheck:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: ShellCheck\n uses: HariSekhon/GitHub-Actions/.github/workflows/shellcheck.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/sonarcloud.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2023-04-14 23:53:43 +0100 (Fri, 14 Apr 2023)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S o n a r C l o u d\n# ============================================================================ #\n\n---\nname: SonarCloud\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n\npermissions:\n contents: read\n pull-requests: read\n\njobs:\n SonarCloud:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: SonarCloud\n uses: HariSekhon/GitHub-Actions/.github/workflows/sonarcloud.yaml@master\n secrets:\n SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}\n" }, { "path": ".github/workflows/sync_to_adjacent_repos.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-02-13 15:36:35 +0000 (Thu, 13 Feb 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\ncd \"$srcdir\"\n\nsync_file(){\n local filename=\"$1\"\n local repo=\"$2\"\n local dir=\"${3:-}\"\n if [ -z \"$dir\" ]; then\n dir=\"$repo\"\n fi\n dir=\"$(tr '[:upper:]' '[:lower:]' <<< \"$dir\")\"\n if ! [ -d \"../../../$dir\" ]; then\n echo \"WARNING: repo dir $dir not found, skipping...\"\n return 0\n fi\n target=\"../../../$dir/.github/workflows/$filename\"\n if [ -f \"$target.disabled\" ]; then\n target=\"$target.disabled\"\n fi\n if [ -f \"$target\" ] || [ -n \"${NEW:-}\" ]; then\n targetdir=\"${target%/*}\"\n mkdir -p -v \"$targetdir\"\n echo \"syncing $filename -> $target\"\n perl -p -e \"s/(DevOps-)?Bash-tools/$repo/i\" \"$filename\" > \"$target\"\n #if [[ \"$repo\" =~ nagios-plugins ]]; then\n # timeout=240\n # perl -pi -e \"s/(^\\\\s*timeout-minutes:).*/\\\\1 $timeout/\" \"$target\"\n # perl -pi -e 's/(^[[:space:]]+make$)/\\1 build zookeeper/' \"$target\"\n #fi\n fi\n}\n\nsed 's/#.*//; s/:/ /' ../../setup/repos.txt |\ngrep -v -e bash-tools \\\n -e github-actions \\\n -e actions \\\n -e '^[[:space:]]*$' |\nwhile read -r repo dir; do\n if [ $# -gt 0 ]; then\n for filename in \"$@\"; do\n sync_file \"$filename\" \"$repo\" \"$dir\"\n done\n else\n for filename in *.yaml; do\n sync_file \"$filename\" \"$repo\" \"$dir\"\n done\n fi\ndone\n" }, { "path": ".github/workflows/trivy.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-02-02 11:27:37 +0000 (Wed, 02 Feb 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T r i v y\n# ============================================================================ #\n\n# Scan files in the local repo\n\n---\nname: Trivy\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n trivy:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Trivy\n uses: HariSekhon/GitHub-Actions/.github/workflows/trivy.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/trivy_image.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-02-02 11:27:37 +0000 (Wed, 02 Feb 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# T r i v y D o c k e r I m a g e S c a n\n# ============================================================================ #\n\n# Scan the docker image for this repo\n\n---\nname: Trivy Docker Image Scan\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n actions: read\n contents: read\n security-events: write\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n trivy:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Trivy Docker Image Scan\n uses: HariSekhon/GitHub-Actions/.github/workflows/trivy_image.yaml@master\n with:\n image: harisekhon/bash-tools\n severity: ''\n" }, { "path": ".github/workflows/ubuntu.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:latest\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_14.04.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu 14.04\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_14.04.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:14.04\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_16.04.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu 16.04\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_16.04.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:16.04\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_18.04.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu 18.04\n\non:\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_18.04.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:18.04\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_20.04.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu 20.04\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_20.04.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:20.04\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_22.04.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: Ubuntu 22.04\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_22.04.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n container: ubuntu:22.04\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/ubuntu_github.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: GitHub Actions Ubuntu\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n paths-ignore:\n - '**/*.md'\n - '.github/workflows/*'\n - '!.github/workflows/ubuntu_github.yaml'\n - '**/Dockerfile'\n - '**/Jenkinsfile'\n - '**/.envrc*'\n - .checkov.yaml\n - .dockerignore\n - .gcloudignore\n - .editorconfig\n - '.gitconfig*'\n - .gitignore\n - .grype.yaml\n - .hound.yml\n - .terraformignore\n - Jenkinsfile\n - .appveyor.yml\n - .buildkite/pipeline.yml\n - .circleci/config.yml\n - .cirrus.yml\n - .concourse.yml\n - .drone.yml\n - .gitlab-ci.yml\n - .gocd.yml\n - .scrutinizer.yml\n - .semaphore/semaphore.yml\n - .travis.yml\n - .werckerignore\n - azure-pipelines.yml\n - bitbucket-pipelines.yml\n - buddy.yml\n - buildspec.yml\n - cloudbuild.yaml\n - codefresh.yml\n - codeship.yml\n - shippable.yml\n - wercker.yml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 7 * * *'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n build:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Build\n uses: HariSekhon/GitHub-Actions/.github/workflows/make.yaml@master\n with:\n caches: apt pip cpanm\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/url_links.yaml.disabled", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-01-26 14:10:12 +0000 (Wed, 26 Jan 2022)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\nname: URL Links\n\non:\n push:\n branches:\n - master\n - main\n pull_request:\n branches:\n - master\n - main\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n url_links:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: URL Links\n uses: HariSekhon/GitHub-Actions/.github/workflows/url_links.yaml@master\n with:\n ignore_urls_without_dots: 'true' # any value enables this\n url_links_ignored: |\n https://github.com/kubernetes-sigs/kustomize/releases/download/kustomize%2Fv\n somerepository.com\n mycompany\n https://hooks.slack.com/services/YOUR/SLACK/WEBHOOK\n" }, { "path": ".github/workflows/validate.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# V a l i d a t i o n\n# ============================================================================ #\n\n# Run all custom validations against files in the repo\n\n---\nname: Validation\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n pull_request:\n branches:\n - master\n - main\n paths-ignore:\n - '**/*.md'\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n #schedule:\n # - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n validate:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Validate\n uses: HariSekhon/GitHub-Actions/.github/workflows/validate.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".github/workflows/xml.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# X M L\n# ============================================================================ #\n\n# Validate any XML files found in the repo\n\n---\nname: XML\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.xml'\n - .github/workflows/xml.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.xml'\n - .github/workflows/xml.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\njobs:\n check_xml:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Check XML\n uses: HariSekhon/GitHub-Actions/.github/workflows/xml.yaml@master\n" }, { "path": ".github/workflows/yaml.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: Tue Feb 4 09:53:28 2020 +0000\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Y A M L\n# ============================================================================ #\n\n# Validate any YAML files found in the repo\n\n---\nname: YAML\n\non: # yamllint disable-line rule:truthy\n push:\n branches:\n - master\n - main\n paths:\n - '**/*.yml'\n - '**/*.yaml'\n - .github/workflows/yaml.yaml\n pull_request:\n branches:\n - master\n - main\n paths:\n - '**/*.yml'\n - '**/*.yaml'\n - .github/workflows/yaml.yaml\n workflow_dispatch:\n inputs:\n debug:\n type: boolean\n required: false\n default: false\n schedule:\n - cron: '0 0 * * 1'\n\npermissions:\n contents: read\n\nconcurrency:\n group: ${{ github.workflow }}-${{ github.ref }}\n cancel-in-progress: true\n\njobs:\n check_yaml:\n # github.event.repository context not available in scheduled workflows\n #if: github.event.repository.fork == false\n if: github.repository_owner == 'HariSekhon'\n name: Check YAML\n uses: HariSekhon/GitHub-Actions/.github/workflows/yaml.yaml@master\n with:\n debug: ${{ github.event.inputs.debug }}\n" }, { "path": ".gitignore", "content": "#\n# Author: Hari Sekhon\n# Date: 2012-06-24 22:03:34 +0000 (Sun, 24 Jun 2012)\n#\n# vim: filetype=conf\n#\n\n# ============================================================================ #\n# . g i t i g n o r e\n# ============================================================================ #\n\n# https://git-scm.com/docs/gitignore\n\n# ===================================================================\n# Ignores any file in any subdirectory with matching basename or path\n#\n# (can use **/filename but not necessary)\n\n# ===================================================================\n# Once in a while you should check which files have been ignored via:\n#\n# git status --ignored\n#\n# to check that there aren't some legit files you need to commit\n\n# =================================================================\n# To find out which line is causing a given file to be ignored, do:\n#\n# git check-ignore -v $filename\n\n*#*#\n*.a\n*.avi\n*.bak\n*.bak.*\n*.bin\n*.bkp\n*.bz2\n*.class\n*.dump\n*.flv\n*.gif\n*.gpg\n*.gz\n*.img\n*.jar\n*.jks\n*.jpeg\n*.jpg\n*.kdb\n*.lock\n*.log\n*.lzo\n*.macports-saved_*\n*.mp3\n*.mp4\n*.mpeg\n*.mpg\n*.o\n*.orig\n*.out\n*.p12\n*.part\n*.pyc\n*.pyo\n*.stderr\n*.stdout\n*.swo\n*.swp\n*.tar\n*.tbz2\n*.tgz\n*.tmp\n*.wmv\n*.zip\n*~\n~*\n\n.a\n.activator/\n.adobe\n.agent.env\n.aliaslists\n.android/\n.anyconnect\n.ApacheDirectoryStudio/\n.atftp_history\n.atom/\n.audacious/.thumbs\n.audacious/accels\n.audacious/log\n.audacious/playlist.xspf\n.awless/\n# AWS Access + Secret keys are stored in here\n.aws/credentials\n.aws/config\n.aws/token\n# SSO Access + Secret Keys & STS are stored in .json files in here\n.aws/cli/cache/\n.aws/shell/\n.bashrc_dynamichosts\n.bashrc_dynamichosts.src\n.bash_history\n.bash_sessions\n.bash_vars\n.boot2docker/\n.cache\n.cassandra/\n.cassandra/cqlshrc\n.cassandra/cqlsh_history\n.cassandra/nodetool_history\n.cbq_history\n.ccm/\n.CFUserTextEncoding\n# Codefresh config contains API Key\n.cfconfig\n.circleci/build_agent_settings.json\n# Circle CI API Token stored in here\n.circleci/cli.yml\n.circleci/update_check.yml\n.Codefresh/agent/\n.compiz\n.conda/\n#.config\n# contains repo_token / COVERALLS_REPO_TOKEN\n.coveralls.yml\n.cpan/build/\n.cpan/FTPstats.yml\n.cpan/histfile\n.cpan/Metadata\n.cpan/sources/\n.cpanm/\n.cups/\n.data\n.dbshell\n.dbus\n.dcos/\n.DCOPserver_*\n.devcenter/.metadata/\n.devcenter/DevCenter/.default/\n.devcenter/DevCenter/.metadata/\n.devcenter/logging/\n.docker_vars\n.docker/machine/\n.dropbox/\n.DS_Store\n.dvdcss/\n# contains things like auth tokens\n#.envrc*\n.erlang.cookie\n.evolution\n.fluxbox/backgrounds\n.fluxbox/BEST\n.fluxbox/best-styles/styles-backup\n.fluxbox/DIVISION2\n.fluxbox/fbrun_history\n.fluxbox/lastwallpaper\n.fluxbox/menu\n.fluxbox/NOBG\n.fluxbox/OTHERTHEMES\n.fluxbox/startup.log\n# contains Concourse bearer auth token\n.flyrc\n# contains GCP credentials for Ruby Fog library (like Boto)\n.fog\n.fontconfig\n.fseventsd\n.gaim/accels\n.gaim/icons\n.gaim/status.xml\n.gconf\n.gconfd\n.gem\n.gimp-*\n.github_actions_runner/\n.gitk\n.gmvault/\n.gnome\n.gnome2\n.gnome2_private\n.gnupg/gpg-agent-info-*\n.gnupg/private-keys-*\n.gnuplot_history\n.gpg-agent.env\n.gradle\n.groovy\n.gstreamer-*\n.gvfs\n.hg\n#.htoprc\n.ICEauthority\n.IdeaIC*\n.idea\n.inkscape-etc/\n.ion3\n.ipython/\n.irb-save-history\n.irb_history\n# contains creds\n.iredisrc\n.ivy2/\n.jline-jython.history\n.kde\n.kodos\n.kube/\n.ldapvi_history\n.lesshst\n.links2\n.local\n.m2/\n.macports/\n.macromedia\n.matplotlib/\n.mcop\n.mcoprc\n.minikube/\n.minishift/\n.minishift.env\n.mozilla\n.mtools/\n.mysql_history\n.nbprofiler/\n.neo4j_shell_history\n.npm/\n.octave_hist\n.openoffice.org\n.openoffice.org2\n.oracle_jre_usage/\n.ovftool.ssldb\n.Qsync/\n.parallel/\n# PostgreSQL password file\n.pgpass\n# stores credentials\n.pig_history\n.pki\n.pentaho/\n.psql_history\n.pulse\n.puppet/\n.pwm3\n.PyCharm*/\n.pylint.d\n.python-eggs/\n.python_history\n.qt\n.qicon\n.qnicon\n# contains usernames and passwords\n.rabbitmqadmin.conf\n.RData\n.recently-used\n.recently-used.xbel\n.rediscli_history\n.Rhistory\n.rnd\n.rstudio-desktop/\n.rbenv/\n# 'rbenv local' $PWD version file\n#.ruby-version\n.sbt/[[:digit:]].[[:digit:]]*/\n.sbt/boot/\n.sbt/preloaded/\n.sbt/repositories\n.sbt/*/plugins/project/target/\n.sbt/*/plugins/target/\n.scala_history\n.sdkman/archives/\n.sdkman/bin/\n.sdkman/candidates/\n.sdkman/etc/config\n.sdkman/ext/\n.sdkman/src/\n.sdkman/tmp/\n.sdkman/var/\n# Semaphore CI - contains auth token\n.sem.yaml\n.serverauth.*\n# $PWD/.serverless local service artifacts\n.serverless/\n# $HOME/.serverless installation\n.serverless/bin/\n.sh_history\n# contains client id and secret for Shpotify\n.shpotify.cfg\n.Skype\n.snowsql\n# Snowflake password stored in plaintext in here\n.snowsql/config\n.spark_history\n.Spotlight-*\n.spumux/\n.sqlite_history\n.sqlline/history\n.ssh/known_hosts\n.ssh-agent.env\n.subversion/auth\n.svn\n.swatch_script.*\n.TemporaryItems\n.terraform.d/\n.terragrunt\n.themes\n.thumbnails\n.tilda/locks/*\n.tmux/\n.tomboy\n.tomboy.log\n.Trash\n.Trashes\n.travis/\n.vagrant\n.vagrant.d/\n.vboxclient-autoresize.pid\n.vboxclient-clipboard.pid\n.vboxclient-seamless.pid\n.vim/\n.viminfo\n.vnc/\n.wapi\n.wget-hsts\n.wine\n.wireshark-etc/\n.wireshark/\n.wmii-*\n.Xauthority\n.xine\n.xmms\n.xsession-errors\n.zenmap-etc/pango/pangorc\n\n# GCP credentials\napplication_default_credentials.json\n*keyfile.json\n*credentials.json\n\nabs-guide.pdf\nandroid-sdks/\nApplications/\nAT.postflight.*\n# contains OAuth token\nauth.json\nbin/altfirewalls\nbin/altnames\nbin/contrib/*\nbin/desktops\nbin/firewalls\nbin/servers\n#bitbucket/\n#bitbucket/*\nboxes/\nBox Documents/\n# contains webhook URL which should not be committed publicly\nbuildkite-pipeline*.json\n.buildkite-pipelines/\nc\nchinook.*sql*\nchinook.psql\nCalibre Library/\ncli_junkie.gif\ndebs/\nDesktop/\nDocuments/\nDownloads/\ndrive/\nDropbox/\neclipse/\nenterprise\nfatpacks/\nfatlib/\nfluxbox-themes\nfluxbox/debian007.jpg\n# internal repos\n#git/\n#git/*\n# public repos - clashes with TeamCity-CI repo's .teamcity/GitHub\n#github/\n#github/*\ngitolite-admin/\ngitroot/\nGNUstep\nGoogle*Drive\ngo/bin/\ngo/src/github.com/\ngoogle-cloud-sdk/\nhadoop-sources/\nhgroot/\nIdeaProjects/\nImages\ninfrastructure/puppetinfrastructure/\n#jython*\nLibrary\nmbox\nmcollective-plugins/\nMovies\nMusic\nnorev\nNS-GUISettings\n*OneDrive*/\nops/\noriginal-tars\noriginals_tars\notherpics\nQsync/\nperl5/\nPictures\nPublic\npuppet.git/\nPycharmProjects/\npytools_checks/\nrpms/\nsetup/mac_settings/\nshm/\nsiege.log\nSites\n# golang libraries\nsrc/github.com\nsrc/golang.org\nsubversion/\nsvnroot/\ntesting/\ntmp.*\n# common vagrant stuff\nvagrant/boxes/\nvagrant/data/\nvagrant/gems/\nvagrant/insecure_private_key\nvagrant/rgloader/\nvagrant/setup_version\nvagrant/tmp/\n# custom stuff found in vagrant\nvagrant/basho_bench/\nvagrant/id_rsa.pub\nvagrant/jce_policy-6\nvagrant/jython\nvagrant/kibana/\nvagrant/lib\nvagrant/mrepo\nvagrant/mx4j-*\nvagrant/mysql-connector-*\nvagrant/thrift-*\nvenv/\nVirtualBox VMs/\nVirtualBoxShared\nvisualvm*\nwindows/bin2\nwordlists/*.lower\nwordlists/hosts.large\nwordlists/hosts.medium\nwordlists/hosts.small\nwordlists/pw.medium\nwordlists/pw.small\nwordlists/pw.tiny\nwordlists/snmp\nwordlists/ultimate.*\nwordlists/users.large\nwordlists/users.medium\nwordlists/users.small\nwordlists/users.tiny\nwordlists/users.weighted\n\n*.doc\n*.docx\n*.xls\n*.xlsx\n*.log\n*.msg\n*.pages\n*.rtf\n*.wpd\n*.wps\n\n# ============================================================================ #\n# M o b i l e B u i l d s\n# ============================================================================ #\n\n# SwiftPackageManager\nPackages\n\n# Obj-C/Swift specific\n*.hmap\n\n# App packaging\n*.ipa\n*.dSYM.zip\n*.dSYM\n\n# Playgrounds\ntimeline.xctimeline\nplayground.xcworkspace\n\n.build/\n\n# Fastlane\nfastlane/report.xml\nfastlane/Preview.html\nfastlane/screenshots/**/*.png\nfastlane/screenshots/**/*.jp*g\nfastlane/test_output\nfastlane/.env.default\n\niOSInjectionProject/\n\n# ixGuard\nixguard-license.txt\nmapping.yml\nprotectionreport.html\nstatistics.yml\ntelemetry_dump.json\n\n# ============================================================================ #\n#\n# Regenerate all sections below in to a single arg for API call via:\n#\n# grep '[C]reated by https://' .gitignore | sed 's,.*/,,' | tr ',' '\\n' | sort -u | tr '\\n' ',' | sed 's/,$//' | xargs echo gitignore.io_api.sh\n#\n# eg.\n#\n# gitignore.io_api.sh ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh >> .gitignore\n#\n# Find new or missing tags you aren't using yet:\n#\n# grep '[C]reated by https://' .gitignore | sed 's,.*/,,' | tr ',' '\\n' | sort -u | tr '\\n' ',' | sed 's/,$//' | gitignore.io_api.sh missing\n#\n# ============================================================================ #\n\n\n\n# Created by https://www.toptal.com/developers/gitignore/api/ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n# Edit at https://www.toptal.com/developers/gitignore?templates=ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n\n### Ansible ###\n*.retry\n\n### ApacheHadoop ###\n*.iml\n*.ipr\n*.iws\n*.orig\n*.rej\n.idea\n.svn\n.classpath\n.project\n.settings\ntarget\nhadoop-common-project/hadoop-kms/downloads/\nhadoop-hdfs-project/hadoop-hdfs/downloads\nhadoop-hdfs-project/hadoop-hdfs-httpfs/downloads\nhadoop-common-project/hadoop-common/src/test/resources/contract-test-options.xml\nhadoop-tools/hadoop-openstack/src/test/resources/contract-test-options.xml\n\n### AppCode ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n.idea/**/workspace.xml\n.idea/**/tasks.xml\n.idea/**/usage.statistics.xml\n.idea/**/dictionaries\n.idea/**/shelf\n\n# Generated files\n.idea/**/contentModel.xml\n\n# Sensitive or high-churn files\n.idea/**/dataSources/\n.idea/**/dataSources.ids\n.idea/**/dataSources.local.xml\n.idea/**/sqlDataSources.xml\n.idea/**/dynamic.xml\n.idea/**/uiDesigner.xml\n.idea/**/dbnavigator.xml\n\n# Gradle\n.idea/**/gradle.xml\n.idea/**/libraries\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\ncmake-build-*/\n\n# Mongo Explorer plugin\n.idea/**/mongoSettings.xml\n\n# File-based project format\n\n# IntelliJ\nout/\n\n# mpeltonen/sbt-idea plugin\n.idea_modules/\n\n# JIRA plugin\natlassian-ide-plugin.xml\n\n# Cursive Clojure plugin\n.idea/replstate.xml\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\ncom_crashlytics_export_strings.xml\ncrashlytics.properties\ncrashlytics-build.properties\nfabric.properties\n\n# Editor-based Rest Client\n.idea/httpRequests\n\n# Android studio 3.1+ serialized cache file\n.idea/caches/build_file_checksums.ser\n\n### AppCode Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n.idea/**/sonarlint/\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n.idea/**/sonarIssues.xml\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n.idea/**/markdown-navigator.xml\n.idea/**/markdown-navigator-enh.xml\n.idea/**/markdown-navigator/\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n.idea/$CACHE_FILE$\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n.idea/codestream.xml\n\n### AppEngine ###\n# Google App Engine generated folder\nappengine-generated/\n\n### Archive ###\n\n### Mostly from https://en.wikipedia.org/wiki/List_of_archive_formats\n\n## Archiving only\n# The traditional archive format on Unix-like systems, now used mainly for the creation of static libraries.\n*.a\n*.ar\n# RPM files consist of metadata concatenated with (usually) a cpio archive. Newer RPM systems also support other archives, as cpio is becoming obsolete. cpio is also used with initramfs.\n*.cpio\n\n# A self-extracting archive that uses the Bourne shell (sh).\n*.shar\n# A system for storing multiple files. LBR archives typically contained files processed by SQ, or the archive itself was compressed with SQ. LBR archives that were compressed with SQ ended with the extension .LQR\n*.LBR\n# An archive format originally used mainly for archiving and distribution of the exact, nearly-exact, or custom-modified contents of an optical storage medium such as a CD-ROM or DVD-ROM. However, it can be used to archive the contents of other storage media, selected partitions, folders, and/or files. The resulting archive is typically optimized for convenient rendering to (re-)writable CD or DVD media.\n*.iso\n# A library format used primarily on the Commodore 64 and 128 lines of computers. This bears no resemblance to the DOS LBR format. While library files were quick to implement (a number of programs exist to work with them) they are crippled in that they cannot grow with use: once a file has been created it cannot be amended (files added, changed or deleted) without recreating the entire file.\n*.lbr\n# An archive format used by Mozilla for storing binary diffs. Used in conjunction with bzip2.\n*.mar\n# A common archive format used on Unix-like systems. Generally used in conjunction with compressors such as gzip, bzip2, compress or xz to create .tar.gz, .tar.bz2, .tar.Z or tar.xz files.\n*.tar\n\n# Package managers\n# Red Hat Package Manager\n*.rpm\n# Debian package\n*.deb\n# MicroSoft Installer\n*.msi\n*.msm\n*.msp\n# Mozilla package installer\n*.xpi\n# Ruby Package\n*.gem\n\n\n### Archives ###\n# It's better to unpack these files and commit the raw source because\n# git has its own built in compression methods.\n*.7z\n*.jar\n*.rar\n*.zip\n*.gz\n*.gzip\n*.tgz\n*.bzip\n*.bzip2\n*.bz2\n*.xz\n*.lzma\n*.cab\n*.xar\n\n# Packing-only formats\n\n# Package management formats\n*.dmg\n*.egg\n*.txz\n\n### ArchLinuxPackages ###\n*.tar.*\n*.exe\n*.log\n*.log.*\n*.sig\n\npkg/\n# XXX: might conflict with standard java golang src/ directory structure\n#src/\n\n### Audio ###\n*.aif\n*.iff\n*.m3u\n*.m4a\n*.mid\n*.mp3\n*.mpa\n*.ra\n*.wav\n*.wma\n*.ogg\n*.flac\n\n### Autotools ###\n# http://www.gnu.org/software/automake\n\n# XXX: I track a master Makefile.in in DevOps-Bash-tools to inherit in other projects\n#Makefile.in\n/ar-lib\n/mdate-sh\n/py-compile\n/test-driver\n/ylwrap\n.deps/\n\n# http://www.gnu.org/software/autoconf\n\nautom4te.cache\n/autoscan.log\n/autoscan-*.log\n/aclocal.m4\n/compile\n/config.guess\n/config.h.in\n/config.log\n/config.status\n/config.sub\n/configure\n/configure.scan\n/depcomp\n/install-sh\n/missing\n/stamp-h1\n\n# https://www.gnu.org/software/libtool/\n\n/ltmain.sh\n\n# http://www.gnu.org/software/texinfo\n\n/texinfo.tex\n\n# http://www.gnu.org/software/m4/\n\nm4/libtool.m4\nm4/ltoptions.m4\nm4/ltsugar.m4\nm4/ltversion.m4\nm4/lt~obsolete.m4\n\n# Generated Makefile\n# (meta build system like autotools,\n# can automatically generate from config.status script\n# (which is called by configure script))\n#\n# XXX: always want to commit Makefiles\n#Makefile\n\n### Autotools Patch ###\n\n### Backup ###\n*.bak\n*.gho\n*.ori\n*.tmp\n\n### Basic ###\n# Apples Build\n*.build\n*.apples\n\n# Initialized files\n#*.ini # used by Ansible for inventory.ini\n*.basic\n\n### BitTorrent ###\n*.torrent\n\n### C ###\n# Prerequisites\n# XXX: clashes with .bash.d/* and .conf.d/* type stuff\n#*.d\n\n# Object files\n*.o\n*.ko\n*.obj\n*.elf\n\n# Linker output\n*.ilk\n*.map\n*.exp\n\n# Precompiled Headers\n*.gch\n*.pch\n\n# Libraries\n*.lib\n*.la\n*.lo\n\n# Shared objects (inc. Windows DLLs)\n*.dll\n*.so\n*.so.*\n*.dylib\n\n# Executables\n*.out\n*.app\n*.i*86\n*.x86_64\n*.hex\n\n# Debug files\n*.dSYM/\n*.su\n*.idb\n*.pdb\n\n# Kernel Module Compile Results\n# XXX: *.mod* changed to avoid clashing with Golang's new module system go.mod\n*.mod?*\n.tmp_versions/\nmodules.order\nModule.symvers\nMkfile.old\ndkms.conf\n\n### Zsh ###\n# Zsh compiled script + zrecompile backup\n*.zwc\n*.zwc.old\n\n# Zsh completion-optimization dumpfile\n*zcompdump*\n\n# Zsh zcalc history\n.zcalc_history\n\n# A popular plugin manager's files\n._zplugin\n.zplugin_lstupd\n\n# zdharma/zshelldoc tool's files\nzsdoc/data\n\n# robbyrussell/oh-my-zsh/plugins/per-directory-history plugin's files\n# (when set-up to store the history in the local directory)\n.directory_history\n\n# MichaelAquilina/zsh-autoswitch-virtualenv plugin's files\n# (for Zsh plugins using Python)\n.venv\n\n# Zunit tests' output\n/tests/_output/*\n!/tests/_output/.gitkeep\n\n### C++ ###\n# Prerequisites\n\n# Compiled Object files\n*.slo\n\n# Precompiled Headers\n\n# Compiled Dynamic libraries\n\n# Fortran module files\n# XXX: would conflict with Golang's go.mod\n#*.mod\n*.smod\n\n# Compiled Static libraries\n*.lai\n\n# Executables\n\n### certificates ###\n*.pem\n*.key\n*.crt\n*.cer\n*.priv\n\n### Cloud9 ###\n# Cloud9 IDE - http://c9.io\n.c9revisions\n.c9\n\n### ChefCookbook ###\n.vagrant\n/cookbooks\n\n# Bundler\n# XXX: would prevent tracking ~/bin scripts\n#bin/*\n.bundle/*\n\n.kitchen/\n.kitchen.local.yml\n.kitchen.*.local.yml\nkitchen.local.yml\nkitchen.*.local.yml\n\n### Code ###\n.vscode/*\n!.vscode/settings.json\n!.vscode/tasks.json\n!.vscode/launch.json\n!.vscode/extensions.json\n*.code-workspace\n\n### Code-Java ###\n# Language Support for Java(TM) by Red Hat extension for Visual Studio Code - https://marketplace.visualstudio.com/items?itemName=redhat.java\n\nfactoryConfiguration.json\n\n### Clojure ###\n# XXX: always want to commit pom.xml\n#pom.xml\npom.xml.asc\n*.class\n# XXX: would break lib submodule updates\n#/lib/\n/classes/\n/target/\n/checkouts/\n.lein-deps-sum\n.lein-repl-history\n.lein-plugins/\n.lein-failures\n.nrepl-port\n.cpcache/\n\n### Compressed ###\n*.pkg\n*.sit\n*.sitx\n*.zipx\n\n### CompressedArchive ###\n\n\n## Archiving and compression\n# Open source file format. Used by 7-Zip.\n# Mac OS X, restoration on different platforms is possible although not immediate \tYes \tBased on 7z. Preserves Spotlight metadata, resource forks, owner/group information, dates and other data which would be otherwise lost with compression.\n*.s7z\n# Old archive versions only \tProprietary format\n*.ace\n# A format that compresses and doubly encrypt the data (AES256 and CAS256) avoiding brute force attacks, also hide files in an AFA file. It has two ways to safeguard data integrity and subsequent repair of the file if has an error (repair with AstroA2P (online) or Astrotite (offline)).\n*.afa\n# A mainly Korean format designed for very large archives.\n*.alz\n# Android application package (variant of JAR file format).\n*.apk\n# ??\n*.arc\n# Originally DOS, now multiple\n*.arj\n# Open archive format, used by B1 Free Archiver (http://dev.b1.org/standard/archive-format.html)\n*.b1\n# Binary Archive with external header\n*.ba\n# Proprietary format from the ZipTV Compression Components\n*.bh\n# The Microsoft Windows native archive format, which is also used by many commercial installers such as InstallShield and WISE.\n# Originally DOS, now DOS and Windows \tCreated by Yaakov Gringeler; released last in 2003 (Compressia 1.0.0.1 beta), now apparently defunct. Free trial of 30 days lets user create and extract archives; after that it is possible to extract, but not to create.\n*.car\n# Open source file format.\n*.cfs\n# Compact Pro archive, a common archiver used on Mac platforms until about Mac OS 7.5.x. Competed with StuffIt; now obsolete.\n*.cpt\n# Windows, Unix-like, Mac OS X Open source file format. Files are compressed individually with either gzip, bzip2 or lzo.\n*.dar\n# DiskDoubler \tMac OS \t\t\tobsolete\n*.dd\n# ??\n*.dgc\n# Apple Disk Image upports \"Internet-enabled\" disk images, which, once downloaded, are automatically decompressed, mounted, have the contents extracted, and thrown away. Currently, Safari is the only browser that supports this form of extraction; however, the images can be manually extracted as well. This format can also be password-protected or encrypted with 128-bit or 256-bit AES encryption.\n# Enterprise Java Archive archive\n*.ear\n# ETSoft compressed archive\n# The predecessor of DGCA.\n*.gca\n# Originally DOS \tYes, but may be covered by patents \tDOS era format; uses arithmetic/Markov coding\n*.ha\n# MS Windows \tHKI\n*.hki\n# Produced by ICEOWS program. Excels at text file compression.\n*.ice\n# Java archive, compatible with ZIP files\n# Open sourced archiver with compression using the PAQ family of algorithms and optional encryption.\n*.kgb\n# Originally DOS, now multiple \tMultiple \tYes \tThe standard format on Amiga.\n*.lzh\n*.lha\n# Archiver originally used on The Amiga. Now copied by Microsoft to use in their .cab and .chm files.\n*.lzx\n# file format from NoGate Consultings, a rival from ARC-Compressor.\n*.pak\n# A disk image archive format that supports several compression methods as well as splitting the archive into smaller pieces.\n*.partimg\n# An experimental open source packager (http://mattmahoney.net/dc)\n*.paq*\n# Open source archiver supporting authenticated encryption, volume spanning, customizable object level and volume level integrity checks (form CRCs to SHA-512 and Whirlpool hashes), fast deflate based compression\n*.pea\n# The format from the PIM - a freeware compression tool by Ilia Muraviev. It uses an LZP-based compression algorithm with set of filters for executable, image and audio files.\n*.pim\n# PackIt \tMac OS \t\t\tobsolete\n*.pit\n# Used for data in games written using the Quadruple D library for Delphi. Uses byte pair compression.\n*.qda\n# A proprietary archive format, second in popularity to .zip files.\n# The format from a commercial archiving package. Odd among commercial packages in that they focus on incorporating experimental algorithms with the highest possible compression (at the expense of speed and memory), such as PAQ, PPMD and PPMZ (PPMD with unlimited-length strings), as well as a proprietary algorithms.\n*.rk\n# Self Dissolving ARChive \tCommodore 64, Commodore 128 \tCommodore 64, Commodore 128 \tYes \tSDAs refer to Self Dissolving ARC files, and are based on the Commodore 64 and Commodore 128 versions of ARC, originally written by Chris Smeets. While the files share the same extension, they are not compatible between platforms. That is, an SDA created on a Commodore 64 but run on a Commodore 128 in Commodore 128 mode will crash the machine, and vice versa. The intended successor to SDA is SFX.\n*.sda\n# A pre-Mac OS X Self-Extracting Archive format. StuffIt, Compact Pro, Disk Doubler and others could create .sea files, though the StuffIt versions were the most common.\n*.sea\n# Scifer Archive with internal header\n*.sen\n# Commodore 64, Commodore 128 \tSFX is a Self Extracting Archive which uses the LHArc compression algorithm. It was originally developed by Chris Smeets on the Commodore platform, and runs primarily using the CS-DOS extension for the Commodore 128. Unlike its predecessor SDA, SFX files will run on both the Commodore 64 and Commodore 128 regardless of which machine they were created on.\n*.sfx\n# An archive format designed for the Apple II series of computers. The canonical implementation is ShrinkIt, which can operate on disk images as well as files. Preferred compression algorithm is a combination of RLE and 12-bit LZW. Archives can be manipulated with the command-line NuLib tool, or the Windows-based CiderPress.\n*.shk\n# A compression format common on Apple Macintosh computers. The free StuffIt Expander is available for Windows and OS X.\n# The replacement for the .sit format that supports more compression methods, UNIX file permissions, long file names, very large files, more encryption options, data specific compressors (JPEG, Zip, PDF, 24-bit image, MP3). The free StuffIt Expander is available for Windows and OS X.\n# A royalty-free compressing format\n*.sqx\n# The \"tarball\" format combines tar archives with a file-based compression scheme (usually gzip). Commonly used for source and binary distribution on Unix-like platforms, widely available elsewhere.\n*.tar.gz\n*.tar.Z\n*.tar.bz2\n*.tbz2\n*.tar.lzma\n*.tlz\n# UltraCompressor 2.3 was developed to act as an alternative to the then popular PKZIP application. The main feature of the application is its ability to create large archives. This means that compressed archives with the UC2 file extension can hold almost 1 million files.\n*.uc\n*.uc0\n*.uc2\n*.ucn\n*.ur2\n*.ue2\n# Based on PAQ, RZM, CSC, CCM, and 7zip. The format consists of a PAQ, RZM, CSC, or CCM compressed file and a manifest with compression settings stored in a 7z archive.\n*.uca\n# A high compression rate archive format originally for DOS.\n*.uha\n# Web Application archive (Java-based web app)\n*.war\n# File-based disk image format developed to deploy Microsoft Windows.\n*.wim\n# XAR\n# Native format of the Open Source KiriKiri Visual Novel engine. Uses combination of block splitting and zlib compression. The filenames and pathes are stored in UTF-16 format. For integrity check, the Adler-32 hashsum is used. For many commercial games, the files are encrypted (and decoded on runtime) via so-called \"cxdec\" module, which implements xor-based encryption.\n*.xp3\n# Yamazaki zipper archive. Compression format used in DeepFreezer archiver utility created by Yamazaki Satoshi. Read and write support exists in TUGZip, IZArc and ZipZag\n*.yz1\n# The most widely used compression format on Microsoft Windows. Commonly used on Macintosh and Unix systems as well.\n# application/x-zoo \tzoo \tMultiple \tMultiple \tYes\n*.zoo\n# Journaling (append-only) archive format with rollback capability. Supports deduplication and incremental update based on last-modified dates. Multi-threaded. Compresses in LZ77, BWT, and context mixing formats. Open source.\n*.zpaq\n# Archiver with a compression algorithm based on the Burrows-Wheeler transform method.\n*.zz\n\n\n### Compression ###\n\n### From https://en.wikipedia.org/wiki/List_of_archive_formats\n\n## Compression only\n# An open source, patent- and royalty-free compression format. The compression algorithm is a Burrows-Wheeler transform followed by a move-to-front transform and finally Huffman coding\n# Old compressor for QNX4 OS. The compression algorithm is a modified LZSS, with an adaptive Huffman coding.\n*.F\n# GNU Zip, the primary compression format used by Unix-like systems. The compression algorithm is DEFLATE.\n# An alternate LZMA algorithm implementation, with support for checksums and ident bytes.\n*.lz\n# The LZMA compression algorithm as used by 7-Zip\n# An implementation of the LZO data compression algorithm\n*.lzo\n# A compression program designed to do particularly well on very large files containing long distance redundancy.\n*.rz\n# Windows compress/decompress- Linux and Mac OS X decompress only \tA compression program designed to do high compression on SF2 files (SoundFont)\n*.sfark\n# A compression format invented by Google and open-sourced in 2011. Snappy aims for very high speeds, reasonable compression, and maximum stability rather than maximum compression or compatibility with any other compression library.\n*.sz\n# Squeeze: A program which compressed files. A file which was \"squeezed\" had the middle initial of the name changed to \"Q\", so that a squeezed text file would end with .TQT, a squeezed executable would end with .CQM or .EQE. Typically used with .LBR archives, either by storing the squeezed files in the archive, or by storing the files decompressed and then compressing the archive, which would have a name ending in \".LQR\".\n# XXX: this prevents .sql files from being tracked\n#*.?Q?\n# A compression program written by Steven Greenberg implementing the LZW algorithm. For several years in the CP/M world when no implementation was available of ARC, CRUNCHed files stored in .LBR archives were very popular. CRUNCH's implementation of LZW had a somewhat unique feature of modifying and occasionally clearing the code table in memory when it became full, resulting in a few percent better compression on many files.\n*.?Z?\n# A compression format using LZMA2 to yield very high compression ratios.\n# The traditional Huffman coding compression format.\n*.z\n# The traditional LZW compression format.\n*.Z\n# Joke compression program, actually increasing file size\n*.infl\n# Compression format(s) used by some DOS and Windows install programs. MS-DOS includes expand.exe to decompress its install files. The compressed files are created with a matching compress.exe command. The compression algorithm is LZSS.\n*.??_\n\n\n### CMake ###\nCMakeLists.txt.user\nCMakeCache.txt\nCMakeFiles\nCMakeScripts\nTesting\ncmake_install.cmake\ninstall_manifest.txt\ncompile_commands.json\nCTestTestfile.cmake\n_deps\n\n### CMake Patch ###\n# External projects\n*-prefix/\n\n### Database ###\n*.accdb\n*.db\n*.dbf\n*.mdb\n*.sqlite3\n\n### DataRecovery ###\n\n\n## Data recovery\n# File format used by dvdisaster to be used for data recovery when discs become damaged or partially unreadable.\n*.ecc\n# File format used in conjunction with any archive format to provide redundancy and data recovery, most often in newsgroup distribution of binary files.\n*.par\n*.par2\n\n\n### Diff ###\n*.patch\n*.diff\n\n### direnv ###\n.direnv\n#.envrc\n\n### CodeBlocks ###\n# specific to CodeBlocks IDE\n*.layout\n*.depend\n# generated directories\n# XXX: would prevent tracking ~/bin scripts\n#bin/\nobj/\n\n### DocFx ###\n.cache\n/**/_site/\n\n### Docpress ###\n# docpress documentation generator: https://docpress.github.io/index.html\n\n_docpress/\n\n### Docz ###\n.docz\n\n\n### dotenv ###\n.env\n\n### DotfilesSh ###\nlocal-patch\npatched-src\n\n### DotSettings ###\n*.DotSettings\n\n### Dropbox ###\n# Dropbox settings and caches\n.dropbox\n.dropbox.attr\n.dropbox.cache\n\n### Eclipse ###\n.metadata\ntmp/\n*.swp\n*~.nib\nlocal.properties\n.settings/\n.loadpath\n.recommenders\n\n# External tool builders\n.externalToolBuilders/\n\n# Locally stored \"Eclipse launch configurations\"\n*.launch\n\n# PyDev specific (Python IDE for Eclipse)\n*.pydevproject\n\n# CDT-specific (C/C++ Development Tooling)\n.cproject\n\n# CDT- autotools\n.autotools\n\n# Java annotation processor (APT)\n.factorypath\n\n# PDT-specific (PHP Development Tools)\n.buildpath\n\n# sbteclipse plugin\n.target\n\n# Tern plugin\n.tern-project\n\n# TeXlipse plugin\n.texlipse\n\n# STS (Spring Tool Suite)\n.springBeans\n\n# Code Recommenders\n.recommenders/\n\n# Annotation Processing\n.apt_generated/\n.apt_generated_test/\n\n# Scala IDE specific (Scala & Java development for Eclipse)\n.cache-main\n.scala_dependencies\n.worksheet\n\n# Uncomment this line if you wish to ignore the project description file.\n# Typically, this file would be tracked if it contains build/dependency configurations:\n#.project\n\n### Eclipse Patch ###\n# Spring Boot Tooling\n.sts4-cache/\n\n### Data ###\n# XXX: would prevent tracking sample test csv data\n#*.csv\n*.dat\n*.efx\n*.gbr\n*.pps\n*.ppt\n*.pptx\n*.sdf\n*.tax2010\n*.vcf\n# XXX: would prevent tracking pom.xml\n#*.xml\n\n### Erlang ###\n.eunit\n*.beam\n*.plt\nerl_crash.dump\n.concrete/DEV_MODE\n\n# rebar 2.x\n.rebar\nrel/example_project\nebin/*.beam\ndeps\n\n# rebar 3\n.rebar3\n_build/\n_checkouts/\n\n### Executable ###\n# XXX: .cgi scripts are old but we might want to track them\n#*.cgi\n*.com\n*.gadget\n*.pif\n# XXX: would prevent tracking Windows Scripting files\n#*.vb\n#*.wsf\n\n### Firebase ###\n**/node_modules/*\n**/.firebaserc\n\n### Firebase Patch ###\n.runtimeconfig.json\n.firebase/\n\n### Flask ###\ninstance/*\n!instance/.gitignore\n.webassets-cache\n\n### Flask.Python Stack ###\n# Byte-compiled / optimized / DLL files\n__pycache__/\n*.py[cod]\n*$py.class\n\n# C extensions\n\n# Distribution / packaging\n.Python\nbuild/\ndevelop-eggs/\ndist/\ndownloads/\neggs/\n.eggs/\n# XXX: breaks lib submodule updates\n#lib/\nlib64/\nparts/\nsdist/\nvar/\nwheels/\npip-wheel-metadata/\nshare/python-wheels/\n*.egg-info/\n.installed.cfg\nMANIFEST\n\n# PyInstaller\n# Usually these files are written by a python script from a template\n# before PyInstaller builds the exe, so as to inject date/other infos into it.\n*.manifest\n*.spec\n\n# Installer logs\npip-log.txt\npip-delete-this-directory.txt\n\n# Unit test / coverage reports\nhtmlcov/\n.tox/\n.nox/\n.coverage\n.coverage.*\nnosetests.xml\ncoverage.xml\n*.cover\n*.py,cover\n.hypothesis/\n.pytest_cache/\npytestdebug.log\n\n# Translations\n*.mo\n*.pot\n\n# Django stuff:\nlocal_settings.py\ndb.sqlite3\ndb.sqlite3-journal\n\n# Flask stuff:\ninstance/\n\n# Scrapy stuff:\n.scrapy\n\n# Sphinx documentation\ndocs/_build/\ndoc/_build/\n\n# PyBuilder\ntarget/\n\n# Jupyter Notebook\n.ipynb_checkpoints\n\n# IPython\nprofile_default/\nipython_config.py\n\n# pyenv\n.python-version\n\n# pipenv\n# According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.\n# However, in case of collaboration, if having platform-specific dependencies or dependencies\n# having no cross-platform support, pipenv may install dependencies that don't work, or not\n# install all needed dependencies.\n#Pipfile.lock\n\n# PEP 582; used by e.g. github.com/David-OConnor/pyflow\n__pypackages__/\n\n# Celery stuff\ncelerybeat-schedule\ncelerybeat.pid\n\n# SageMath parsed files\n*.sage.py\n\n# Environments\nenv/\nvenv/\nENV/\nenv.bak/\nvenv.bak/\npythonenv*\n\n# Spyder project settings\n.spyderproject\n.spyproject\n\n# Rope project settings\n.ropeproject\n\n# mkdocs documentation\n/site\n\n# mypy\n.mypy_cache/\n.dmypy.json\ndmypy.json\n\n# Pyre type checker\n.pyre/\n\n# pytype static type analyzer\n.pytype/\n\n# profiling data\n.prof\n\n### Git ###\n# Created by git for backups. To disable backups in Git:\n# $ git config --global mergetool.keepBackup false\n\n# Created by git when using merge tools for conflicts\n*.BACKUP.*\n*.BASE.*\n*.LOCAL.*\n*.REMOTE.*\n*_BACKUP_*.txt\n*_BASE_*.txt\n*_LOCAL_*.txt\n*_REMOTE_*.txt\n\n### GitBook ###\n# Node rules:\n## Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)\n.grunt\n\n## Dependency directory\n## Commenting this out is preferred by some people, see\n## https://docs.npmjs.com/misc/faq#should-i-check-my-node_modules-folder-into-git\nnode_modules\n\n# Book build output\n_book\n\n# eBook build output\n*.epub\n*.mobi\n*.pdf\n\n### Go ###\n# Binaries for programs and plugins\n*.exe~\n\n# Test binary, built with `go test -c`\n*.test\n\n# Output of the go coverage tool, specifically when used with LiteIDE\n\n# Dependency directories (remove the comment below to include it)\n# vendor/\n\n### Go Patch ###\n/vendor/\n/Godeps/\n\n### GPG ###\nsecring.*\n\n\n### DiskImage ###\n*.toast\n*.vcd\n\n### Grails ###\n# .gitignore for Grails 1.2 and 1.3\n# Although this should work for most versions of grails, it is\n# suggested that you use the \"grails integrate-with --git\" command\n# to generate your .gitignore file.\n\n# web application files\n/web-app/WEB-INF/classes\n\n# default HSQL database files for production mode\n/prodDb.*\n\n# general HSQL database files\n*Db.properties\n*Db.script\n\n# logs\n/stacktrace.log\n/test/reports\n/logs\n\n# project release file\n/*.war\n\n# plugin release files\n/*.zip\n/plugin.xml\n\n# older plugin install locations\n/plugins\n/web-app/plugins\n\n# \"temporary\" build files\n/target\n\n### Groovy ###\n# .gitignore created from Groovy contributors in https://github.com/apache/groovy/blob/master/.gitignore\n\nuser.gradle\n.gradle/\n\n*.DS_Store\n*~\n\n.shelf\n\n\n\n### grunt ###\n# Grunt usually compiles files inside this directory\n\n# Grunt usually preprocesses files such as coffeescript, compass... inside the .tmp directory\n.tmp/\n\n### Haskell ###\ndist\ndist-*\ncabal-dev\n*.hi\n*.hie\n*.chi\n*.chs.h\n*.dyn_o\n*.dyn_hi\n.hpc\n.hsenv\n.cabal-sandbox/\ncabal.sandbox.config\n*.prof\n*.aux\n*.hp\n*.eventlog\n.stack-work/\ncabal.project.local\ncabal.project.local~\n.HTF/\n.ghc.environment.*\n\n### Helm ###\n# Chart dependencies\n**/charts/*.tgz\n\n### Homebrew ###\nBrewfile.lock.json\n\n### Hugo ###\n# Generated files by hugo\n# XXX: might interfere with projects code structure\n#/public/\n/resources/_gen/\nhugo_stats.json\n\n# Executable may be added to repository\nhugo.exe\nhugo.darwin\nhugo.linux\n\n### Images ###\n# JPEG\n*.jpg\n*.jpeg\n*.jpe\n*.jif\n*.jfif\n*.jfi\n\n# JPEG 2000\n*.jp2\n*.j2k\n*.jpf\n*.jpx\n*.jpm\n*.mj2\n\n# JPEG XR\n*.jxr\n*.hdp\n*.wdp\n\n# Graphics Interchange Format\n*.gif\n\n# RAW\n*.raw\n\n# Web P\n*.webp\n\n# Portable Network Graphics\n*.png\n\n# Animated Portable Network Graphics\n*.apng\n\n# Multiple-image Network Graphics\n*.mng\n\n# Tagged Image File Format\n*.tiff\n*.tif\n\n# Scalable Vector Graphics\n*.svg\n*.svgz\n\n# Portable Document Format\n\n# X BitMap\n*.xbm\n\n# BMP\n*.bmp\n*.dib\n\n# ICO\n*.ico\n\n# 3D Images\n*.3dm\n*.max\n\n### Intellij ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### Intellij+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n.idea/\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\nmodules.xml\n.idea/misc.xml\n\n# Sonarlint plugin\n.idea/sonarlint\n\n### Intellij+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### Intellij+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### Java ###\n# Compiled class file\n\n# Log file\n\n# BlueJ files\n*.ctxt\n\n# Mobile Tools for Java (J2ME)\n.mtj.tmp/\n\n# Package Files #\n*.nar\n\n# virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml\nhs_err_pid*\n\n### Java-Web ###\n## ignoring target file\n\n### JEnv ###\n# JEnv local Java version configuration file\n.java-version\n\n# Used by previous versions of JEnv\n.jenv-version\n\n### JetBrains ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### JetBrains+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n# Sonarlint plugin\n\n### JetBrains+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### JetBrains+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### JMeter ###\n# JMeter common ignore files\n# http://jmeter.apache.org/\n\n# Ignore Summary/Aggregrate reports\n*.jtl\n\n# Ignore log files\n\n# Ignore customized user.properties\nuser.properties\n\n### Emacs ###\n# -*- mode: gitignore; -*-\n\\#*\\#\n/.emacs.desktop\n/.emacs.desktop.lock\n*.elc\nauto-save-list\ntramp\n.\\#*\n\n# Org-mode\n.org-id-locations\n*_archive\n\n# flymake-mode\n*_flymake.*\n\n# eshell files\n/eshell/history\n/eshell/lastdir\n\n# elpa packages\n/elpa/\n\n# reftex files\n*.rel\n\n# AUCTeX auto folder\n/auto/\n\n# cask packages\n.cask/\n\n# Flycheck\nflycheck_*.el\n\n# server auth directory\n/server/\n\n# projectiles files\n.projectile\n\n# directory configuration\n.dir-locals.el\n\n# network security\n/network-security.data\n\n\n### JupyterNotebooks ###\n# gitignore template for Jupyter Notebooks\n# website: http://jupyter.org/\n\n*/.ipynb_checkpoints/*\n\n# IPython\n\n# Remove previous ipynb_checkpoints\n# git rm -r .ipynb_checkpoints/\n\n\n### Kotlin ###\n# Compiled class file\n\n# Log file\n\n# BlueJ files\n\n# Mobile Tools for Java (J2ME)\n\n# Package Files #\n\n# virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml\n\n### LAMP ###\n# LAMP Stack Base\n\n### LAMP.Linux Stack ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n.fuse_hidden*\n\n# KDE directory preferences\n.directory\n\n# Linux trash folder which might appear on any partition or disk\n.Trash-*\n\n# .nfs files are created when an open file is removed but is still being accessed\n.nfs*\n\n### LAMP.PHP Stack ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### LaTeX ###\n## Core latex/pdflatex auxiliary files:\n*.lof\n*.lot\n*.fls\n*.toc\n*.fmt\n*.fot\n*.cb\n*.cb2\n.*.lb\n\n## Intermediate documents:\n*.dvi\n*.xdv\n*-converted-to.*\n# these rules might exclude image files for figures etc.\n# *.ps\n# *.eps\n# *.pdf\n\n## Generated if empty string is given at \"Please type another file name for output:\"\n.pdf\n\n## Bibliography auxiliary files (bibtex/biblatex/biber):\n*.bbl\n*.bcf\n*.blg\n*-blx.aux\n*-blx.bib\n*.run.xml\n\n## Build tool auxiliary files:\n*.fdb_latexmk\n*.synctex\n*.synctex(busy)\n*.synctex.gz\n*.synctex.gz(busy)\n*.pdfsync\n\n## Build tool directories for auxiliary files\n# latexrun\nlatex.out/\n\n## Auxiliary and intermediate files from other packages:\n# algorithms\n*.alg\n*.loa\n\n# achemso\nacs-*.bib\n\n# amsthm\n*.thm\n\n# beamer\n*.nav\n*.pre\n*.snm\n*.vrb\n\n# changes\n*.soc\n\n# comment\n*.cut\n\n# cprotect\n\n# elsarticle (documentclass of Elsevier journals)\n*.spl\n\n# endnotes\n*.ent\n\n# fixme\n*.lox\n\n# feynmf/feynmp\n*.mf\n*.mp\n*.t[1-9]\n*.t[1-9][0-9]\n*.tfm\n\n#(r)(e)ledmac/(r)(e)ledpar\n*.end\n*.?end\n*.[1-9]\n*.[1-9][0-9]\n*.[1-9][0-9][0-9]\n*.[1-9]R\n*.[1-9][0-9]R\n*.[1-9][0-9][0-9]R\n*.eledsec[1-9]\n*.eledsec[1-9]R\n*.eledsec[1-9][0-9]\n*.eledsec[1-9][0-9]R\n*.eledsec[1-9][0-9][0-9]\n*.eledsec[1-9][0-9][0-9]R\n\n# glossaries\n*.acn\n*.acr\n*.glg\n*.glo\n*.gls\n*.glsdefs\n*.lzs\n\n# uncomment this for glossaries-extra (will ignore makeindex's style files!)\n# *.ist\n\n# gnuplottex\n*-gnuplottex-*\n\n# gregoriotex\n*.gaux\n*.gtex\n\n# htlatex\n*.4ct\n*.4tc\n*.idv\n*.lg\n*.trc\n*.xref\n\n# hyperref\n*.brf\n\n# knitr\n*-concordance.tex\n# TODO Comment the next line if you want to keep your tikz graphics files\n*.tikz\n*-tikzDictionary\n\n# listings\n*.lol\n\n# luatexja-ruby\n*.ltjruby\n\n# makeidx\n*.idx\n*.ilg\n*.ind\n\n# minitoc\n*.maf\n*.mlf\n*.mlt\n*.mtc\n*.mtc[0-9]*\n*.slf[0-9]*\n*.slt[0-9]*\n*.stc[0-9]*\n\n# minted\n_minted*\n*.pyg\n\n# morewrites\n*.mw\n\n# nomencl\n*.nlg\n*.nlo\n*.nls\n\n# pax\n*.pax\n\n# pdfpcnotes\n*.pdfpc\n\n# sagetex\n*.sagetex.sage\n*.sagetex.py\n*.sagetex.scmd\n\n# scrwfile\n*.wrt\n\n# sympy\n*.sout\n*.sympy\nsympy-plots-for-*.tex/\n\n# pdfcomment\n*.upa\n*.upb\n\n# pythontex\n*.pytxcode\npythontex-files-*/\n\n# tcolorbox\n*.listing\n\n# thmtools\n*.loe\n\n# TikZ & PGF\n*.dpth\n*.md5\n*.auxlock\n\n# todonotes\n*.tdo\n\n# vhistory\n*.hst\n*.ver\n\n# easy-todo\n*.lod\n\n# xcolor\n*.xcp\n\n# xmpincl\n*.xmpi\n\n# xindy\n*.xdy\n\n# xypic precompiled matrices and outlines\n*.xyc\n*.xyd\n\n# endfloat\n*.ttt\n*.fff\n\n# Latexian\nTSWLatexianTemp*\n\n## Editors:\n# WinEdt\n*.sav\n\n# Texpad\n.texpadtmp\n\n# LyX\n*.lyx~\n\n# Kile\n*.backup\n\n# gummi\n.*.swp\n\n# KBibTeX\n*~[0-9]*\n\n# TeXnicCenter\n*.tps\n\n# auto folder when using emacs and auctex\n./auto/*\n*.el\n\n# expex forward references with \\gathertags\n*-tags.tex\n\n# standalone packages\n*.sta\n\n# Makeindex log files\n*.lpz\n\n# REVTeX puts footnotes in the bibliography by default, unless the nofootinbib\n# option is specified. Footnotes are the stored in a file with suffix Notes.bib.\n# Uncomment the next line to have this generated file ignored.\n#*Notes.bib\n\n### LaTeX Patch ###\n# LIPIcs / OASIcs\n*.vtc\n\n# glossaries\n*.glstex\n\n### Less ###\n*.less\n\n### Linux ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n\n# KDE directory preferences\n\n# Linux trash folder which might appear on any partition or disk\n\n# .nfs files are created when an open file is removed but is still being accessed\n\n### Lua ###\n# Compiled Lua sources\nluac.out\n\n# luarocks build files\n*.src.rock\n\n# Object files\n*.os\n\n# Precompiled Headers\n\n# Libraries\n*.def\n\n# Shared objects (inc. Windows DLLs)\n\n# Executables\n\n\n### macOS ###\n# General\n.DS_Store\n.AppleDouble\n.LSOverride\n\n# Icon must end with two \\r\nIcon\n\n# Thumbnails\n._*\n\n# Files that might appear in the root of a volume\n.DocumentRevisions-V100\n.fseventsd\n.Spotlight-V100\n.TemporaryItems\n.Trashes\n.VolumeIcon.icns\n.com.apple.timemachine.donotpresent\n\n# Directories potentially created on remote AFP share\n.AppleDB\n.AppleDesktop\nNetwork Trash Folder\nTemporary Items\n.apdisk\n\n### MATLAB ###\n# Windows default autosave extension\n*.asv\n\n# OSX / *nix default autosave extension\n*.m~\n\n# Compiled MEX binaries (all platforms)\n*.mex*\n\n# Packaged app and toolbox files\n*.mlappinstall\n*.mltbx\n\n# Generated helpsearch folders\nhelpsearch*/\n\n# Simulink code generation folders\nslprj/\nsccprj/\n\n# Matlab code generation folders\ncodegen/\n\n# Simulink autosave extension\n*.autosave\n\n# Simulink cache files\n*.slxc\n\n# Octave session info\noctave-workspace\n\n### Maven ###\npom.xml.tag\npom.xml.releaseBackup\npom.xml.versionsBackup\npom.xml.next\nrelease.properties\ndependency-reduced-pom.xml\nbuildNumber.properties\n.mvn/timing.properties\n# https://github.com/takari/maven-wrapper#usage-without-binary-jar\n.mvn/wrapper/maven-wrapper.jar\n\n### Mercurial ###\n.hg/\n.hgignore\n.hgsigs\n.hgsub\n.hgsubstate\n.hgtags\n\n### MicrosoftOffice ###\n\n# Word temporary\n~$*.doc*\n\n# Word Auto Backup File\nBackup of *.doc*\n\n# Excel temporary\n~$*.xls*\n\n# Excel Backup File\n*.xlk\n\n# PowerPoint temporary\n~$*.ppt*\n\n# Visio autosave temporary files\n*.~vsd*\n\n### Node ###\n# Logs\nlogs\nnpm-debug.log*\nyarn-debug.log*\nyarn-error.log*\nlerna-debug.log*\n\n# Diagnostic reports (https://nodejs.org/api/report.html)\nreport.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json\n\n# Runtime data\npids\n*.pid\n*.seed\n*.pid.lock\n\n# Directory for instrumented libs generated by jscoverage/JSCover\nlib-cov\n\n# Coverage directory used by tools like istanbul\ncoverage\n*.lcov\n\n# nyc test coverage\n.nyc_output\n\n# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)\n\n# Bower dependency directory (https://bower.io/)\nbower_components\n\n# node-waf configuration\n.lock-wscript\n\n# Compiled binary addons (https://nodejs.org/api/addons.html)\nbuild/Release\n\n# Dependency directories\nnode_modules/\njspm_packages/\n\n# TypeScript v1 declaration files\ntypings/\n\n# TypeScript cache\n*.tsbuildinfo\n\n# Optional npm cache directory\n.npm\n\n# Optional eslint cache\n.eslintcache\n\n# Microbundle cache\n.rpt2_cache/\n.rts2_cache_cjs/\n.rts2_cache_es/\n.rts2_cache_umd/\n\n# Optional REPL history\n.node_repl_history\n\n# Output of 'npm pack'\n\n# Yarn Integrity file\n.yarn-integrity\n\n# dotenv environment variables file\n.env.test\n.env*.local\n\n# parcel-bundler cache (https://parceljs.org/)\n.parcel-cache\n\n# Next.js build output\n.next\n\n# Nuxt.js build / generate output\n.nuxt\n\n# Gatsby files\n.cache/\n# Comment in the public line in if your project uses Gatsby and not Next.js\n# https://nextjs.org/blog/next-9-1#public-directory-support\n# public\n\n# vuepress build output\n.vuepress/dist\n\n# Serverless directories\n.serverless/\n\n# FuseBox cache\n.fusebox/\n\n# DynamoDB Local files\n.dynamodb/\n\n# TernJS port file\n.tern-port\n\n# Stores VSCode versions used for testing VSCode extensions\n.vscode-test\n\n### Octave ###\n# Windows default autosave extension\n\n# OSX / *nix default autosave extension\n\n# Compiled MEX binaries (all platforms)\n\n# Packaged app and toolbox files\n\n# Generated helpsearch folders\n\n# Simulink code generation folders\n\n# Matlab code generation folders\n\n# Simulink autosave extension\n\n# Simulink cache files\n\n# Octave session info\n\n### OSX ###\n# General\n\n# Icon must end with two \\r\n\n# Thumbnails\n\n# Files that might appear in the root of a volume\n\n# Directories potentially created on remote AFP share\n\n### Packer ###\n# Cache objects\npacker_cache/\n\n# Crash log\ncrash.log\n\n# For built boxes\n*.box\n\n### Patch ###\n\n### Perl ###\n!Build/\n.last_cover_stats\n/META.yml\n/META.json\n/MYMETA.*\n*.pm.tdy\n*.bs\n\n# Devel::Cover\ncover_db/\n\n# Devel::NYTProf\nnytprof.out\n\n# Dizt::Zilla\n/.build/\n\n# Module::Build\nBuild\nBuild.bat\n\n# Module::Install\ninc/\n\n# ExtUtils::MakeMaker\n/blib/\n/_eumm/\n/*.gz\n# XXX: always want to commit Makefiles\n#/Makefile\n/Makefile.old\n/MANIFEST.bak\n/pm_to_blib\n\n### Perl6 ###\n# Gitignore for Perl 6 (http://www.perl6.org)\n# As part of https://github.com/github/gitignore\n\n# precompiled files\n.precomp\nlib/.precomp\n\n\n### PHPUnit ###\n# Covers PHPUnit\n# Reference: https://phpunit.de/\n\n# Generated files\n.phpunit.result.cache\n\n# PHPUnit\n/app/phpunit.xml\n/phpunit.xml\n\n# Build data\n/build/\n\n### PowerShell ###\n# Exclude packaged modules\n\n# Exclude .NET assemblies from source\n\n### Puppet ###\n# gitignore template for Puppet modules\n# website: https://forge.puppet.com/\n\n# Built packages\npkg/*\n\n# Should run on multiple platforms so don't check in\nGemfile.lock\n\n# Tests\nspec/fixtures/*\ncoverage/*\n\n# Third-party\nvendor/*\n\n### PuTTY ###\n# Private key\n*.ppk\n\n### PyCharm ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm Patch ###\n# Comment Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-215987721\n\n# *.iml\n# modules.xml\n# .idea/misc.xml\n# *.ipr\n\n# Sonarlint plugin\n# https://plugins.jetbrains.com/plugin/7973-sonarlint\n\n# SonarQube Plugin\n# https://plugins.jetbrains.com/plugin/7238-sonarqube-community-plugin\n\n# Markdown Navigator plugin\n# https://plugins.jetbrains.com/plugin/7896-markdown-navigator-enhanced\n\n# Cache file creation bug\n# See https://youtrack.jetbrains.com/issue/JBR-2257\n\n# CodeStream plugin\n# https://plugins.jetbrains.com/plugin/12206-codestream\n\n### PyCharm+all ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm+all Patch ###\n# Ignores the whole .idea folder and all .iml files\n# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360\n\n\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n# Sonarlint plugin\n\n### PyCharm+iml ###\n# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider\n# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839\n\n# User-specific stuff\n\n# Generated files\n\n# Sensitive or high-churn files\n\n# Gradle\n\n# Gradle and Maven with auto-import\n# When using Gradle or Maven with auto-import, you should exclude module files,\n# since they will be recreated, and may cause churn. Uncomment if using\n# auto-import.\n# .idea/artifacts\n# .idea/compiler.xml\n# .idea/jarRepositories.xml\n# .idea/modules.xml\n# .idea/*.iml\n# .idea/modules\n# *.iml\n# *.ipr\n\n# CMake\n\n# Mongo Explorer plugin\n\n# File-based project format\n\n# IntelliJ\n\n# mpeltonen/sbt-idea plugin\n\n# JIRA plugin\n\n# Cursive Clojure plugin\n\n# Crashlytics plugin (for Android Studio and IntelliJ)\n\n# Editor-based Rest Client\n\n# Android studio 3.1+ serialized cache file\n\n### PyCharm+iml Patch ###\n# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023\n\n\n### pydev ###\n.pydevproject\n\n### Python ###\n# Byte-compiled / optimized / DLL files\n\n# C extensions\n\n# Distribution / packaging\n\n# PyInstaller\n# Usually these files are written by a python script from a template\n# before PyInstaller builds the exe, so as to inject date/other infos into it.\n\n# Installer logs\n\n# Unit test / coverage reports\n\n# Translations\n\n# Django stuff:\n\n# Flask stuff:\n\n# Scrapy stuff:\n\n# Sphinx documentation\n\n# PyBuilder\n\n# Jupyter Notebook\n\n# IPython\n\n# pyenv\n\n# pipenv\n# According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.\n# However, in case of collaboration, if having platform-specific dependencies or dependencies\n# having no cross-platform support, pipenv may install dependencies that don't work, or not\n# install all needed dependencies.\n\n# PEP 582; used by e.g. github.com/David-OConnor/pyflow\n\n# Celery stuff\n\n# SageMath parsed files\n\n# Environments\n\n# Spyder project settings\n\n# Rope project settings\n\n# mkdocs documentation\n\n# mypy\n\n# Pyre type checker\n\n# pytype static type analyzer\n\n# profiling data\n\n### R ###\n# History files\n.Rhistory\n.Rapp.history\n\n# Session Data files\n.RData\n\n# User-specific files\n.Ruserdata\n\n# Example code in package build process\n*-Ex.R\n\n# Output files from R CMD build\n/*.tar.gz\n\n# Output files from R CMD check\n/*.Rcheck/\n\n# RStudio files\n.Rproj.user/\n\n# produced vignettes\nvignettes/*.html\nvignettes/*.pdf\n\n# OAuth2 token, see https://github.com/hadley/httr/releases/tag/v0.3\n.httr-oauth\n\n# knitr and R markdown default cache directories\n*_cache/\n/cache/\n\n# Temporary files created by R markdown\n*.utf8.md\n*.knit.md\n\n# R Environment Variables\n.Renviron\n\n### R.Bookdown Stack ###\n# R package: bookdown caching files\n/*_files/\n\n### Rails ###\n*.rbc\ncapybara-*.html\n.rspec\n/db/*.sqlite3\n/db/*.sqlite3-journal\n/db/*.sqlite3-[0-9]*\n/public/system\n/coverage/\n/spec/tmp\nrerun.txt\npickle-email-*.html\n\n# Ignore all logfiles and tempfiles.\n/log/*\n/tmp/*\n!/log/.keep\n!/tmp/.keep\n\n# TODO Comment out this rule if you are OK with secrets being uploaded to the repo\nconfig/initializers/secret_token.rb\nconfig/master.key\n\n# Only include if you have production secrets in this file, which is no longer a Rails default\n# config/secrets.yml\n\n# dotenv, dotenv-rails\n# TODO Comment out these rules if environment variables can be committed\n.env.*\n\n## Environment normalization:\n/.bundle\n/vendor/bundle\n\n# these should all be checked in to normalize the environment:\n# Gemfile.lock, .ruby-version, .ruby-gemset\n\n# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:\n.rvmrc\n\n# if using bower-rails ignore default bower_components path bower.json files\n/vendor/assets/bower_components\n*.bowerrc\nbower.json\n\n# Ignore pow environment settings\n.powenv\n\n# Ignore Byebug command history file.\n.byebug_history\n\n# Ignore node_modules\n\n# Ignore precompiled javascript packs\n/public/packs\n/public/packs-test\n/public/assets\n\n# Ignore yarn files\n/yarn-error.log\n\n# Ignore uploaded files in development\n/storage/*\n!/storage/.keep\n\n### react ###\n.DS_*\n**/*.backup.*\n**/*.back.*\n\n\n*.sublime*\n\npsd\nthumb\nsketch\n\n### ReactNative ###\n# React Native Stack Base\n\n.expo\n__generated__\n\n### ReactNative.Android Stack ###\n# Built application files\n*.aar\n*.ap_\n*.aab\n\n# Files for the ART/Dalvik VM\n*.dex\n\n# Java class files\n\n# Generated files\ngen/\n# Uncomment the following line in case you need and you don't have the release build type files in your app\n# release/\n\n# Gradle files\n\n# Local configuration file (sdk path, etc)\n\n# Proguard folder generated by Eclipse\nproguard/\n\n# Log Files\n\n# Android Studio Navigation editor temp files\n.navigation/\n\n# Android Studio captures folder\ncaptures/\n\n# IntelliJ\n.idea/workspace.xml\n.idea/tasks.xml\n.idea/gradle.xml\n.idea/assetWizardSettings.xml\n.idea/dictionaries\n.idea/libraries\n# Android Studio 3 in .gitignore file.\n.idea/caches\n.idea/modules.xml\n# Comment next line if keeping position of elements in Navigation Editor is relevant for you\n.idea/navEditor.xml\n\n# Keystore files\n# Uncomment the following lines if you do not want to check your keystore files in.\n#*.jks\n#*.keystore\n\n# External native build folder generated in Android Studio 2.2 and later\n.externalNativeBuild\n.cxx/\n\n# Google Services (e.g. APIs or Firebase)\n# google-services.json\n\n# Freeline\nfreeline.py\nfreeline/\nfreeline_project_description.json\n\n# fastlane\nfastlane/report.xml\nfastlane/Preview.html\nfastlane/screenshots\nfastlane/test_output\n#fastlane/readme.md\n\n# Version control\nvcs.xml\n\n# lint\nlint/intermediates/\nlint/generated/\nlint/outputs/\nlint/tmp/\n# lint/reports/\n\n### ReactNative.Buck Stack ###\nbuck-out/\n.buckconfig.local\n.buckd/\n.buckversion\n.fakebuckversion\n\n### ReactNative.Gradle Stack ###\n.gradle\n\n# Ignore Gradle GUI config\ngradle-app.setting\n\n# Avoid ignoring Gradle wrapper jar file (.jar files are usually ignored)\n!gradle-wrapper.jar\n\n# Cache of project\n.gradletasknamecache\n\n# # Work around https://youtrack.jetbrains.com/issue/IDEA-116898\n# gradle/wrapper/gradle-wrapper.properties\n\n### ReactNative.Linux Stack ###\n\n# temporary files which can be created if a process still has a handle open of a deleted file\n\n# KDE directory preferences\n\n# Linux trash folder which might appear on any partition or disk\n\n# .nfs files are created when an open file is removed but is still being accessed\n\n### ReactNative.Node Stack ###\n# Logs\n\n# Diagnostic reports (https://nodejs.org/api/report.html)\n\n# Runtime data\n\n# Directory for instrumented libs generated by jscoverage/JSCover\n\n# Coverage directory used by tools like istanbul\n\n# nyc test coverage\n\n# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)\n\n# Bower dependency directory (https://bower.io/)\n\n# node-waf configuration\n\n# Compiled binary addons (https://nodejs.org/api/addons.html)\n\n# Dependency directories\n\n# TypeScript v1 declaration files\n\n# TypeScript cache\n\n# Optional npm cache directory\n\n# Optional eslint cache\n\n# Microbundle cache\n\n# Optional REPL history\n\n# Output of 'npm pack'\n\n# Yarn Integrity file\n\n# dotenv environment variables file\n\n# parcel-bundler cache (https://parceljs.org/)\n\n# Next.js build output\n\n# Nuxt.js build / generate output\n\n# Gatsby files\n# Comment in the public line in if your project uses Gatsby and not Next.js\n# https://nextjs.org/blog/next-9-1#public-directory-support\n# public\n\n# vuepress build output\n\n# Serverless directories\n\n# FuseBox cache\n\n# DynamoDB Local files\n\n# TernJS port file\n\n# Stores VSCode versions used for testing VSCode extensions\n\n### ReactNative.Xcode Stack ###\n# Xcode\n#\n# gitignore contributors: remember to update Global/Xcode.gitignore, Objective-C.gitignore & Swift.gitignore\n\n## User settings\nxcuserdata/\n\n## compatibility with Xcode 8 and earlier (ignoring not required starting Xcode 9)\n*.xcscmblueprint\n*.xccheckout\n\n## compatibility with Xcode 3 and earlier (ignoring not required starting Xcode 4)\nDerivedData/\n*.moved-aside\n*.pbxuser\n!default.pbxuser\n*.mode1v3\n!default.mode1v3\n*.mode2v3\n!default.mode2v3\n*.perspectivev3\n!default.perspectivev3\n\n## Gcc Patch\n/*.gcno\n\n### ReactNative.macOS Stack ###\n# General\n\n# Icon must end with two \\r\nIcon\n\n# Thumbnails\n\n# Files that might appear in the root of a volume\n\n# Directories potentially created on remote AFP share\n\n### Redis ###\n# Ignore redis binary dump (dump.rdb) files\n\n*.rdb\n\n### ROOT ###\n# ROOT Home Page : https://root.cern.ch/\n# ROOT Used by Experimental Physicists, not necessarily HEP\n# ROOT based on C++\n\n# Files generated by ROOT, observed with v6.xy\n\n*.pcm\n\n\n\n### Ruby ###\n/.config\n/InstalledFiles\n/pkg/\n/spec/reports/\n/spec/examples.txt\n/test/tmp/\n/test/version_tmp/\n/tmp/\n\n# Used by dotenv library to load environment variables.\n# .env\n\n# Ignore Byebug command history file.\n\n## Specific to RubyMotion:\n.dat*\n.repl_history\n*.bridgesupport\nbuild-iPhoneOS/\nbuild-iPhoneSimulator/\n\n## Specific to RubyMotion (use of CocoaPods):\n# We recommend against adding the Pods directory to your .gitignore. However\n# you should judge for yourself, the pros and cons are mentioned at:\n# https://guides.cocoapods.org/using/using-cocoapods.html#should-i-check-the-pods-directory-into-source-control\n# vendor/Pods/\n\n## Documentation cache and generated files:\n/.yardoc/\n/_yardoc/\n/doc/\n/rdoc/\n\n/.bundle/\n/lib/bundler/man/\n\n# for a library or gem, you might want to ignore these files since the code is\n# intended to run in multiple environments; otherwise, check them in:\n# Gemfile.lock\n# .ruby-version\n# .ruby-gemset\n\n# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:\n\n# Used by RuboCop. Remote config files pulled in from inherit_from directive.\n# .rubocop-https?--*\n\n### Ruby Patch ###\n# Used by RuboCop. Remote config files pulled in from inherit_from directive.\n# .rubocop-https?--*\n\n### Rust ###\n# Generated by Cargo\n# will have compiled files and executables\n\n# Remove Cargo.lock from gitignore if creating an executable, leave it for libraries\n# More information here https://doc.rust-lang.org/cargo/guide/cargo-toml-vs-cargo-lock.html\nCargo.lock\n\n### SBT ###\n# Simple Build Tool\n# http://www.scala-sbt.org/release/docs/Getting-Started/Directories.html#configuring-version-control\n\ndist/*\nlib_managed/\nsrc_managed/\nproject/boot/\nproject/plugins/project/\n.history\n.lib/\n\n### Scala ###\n\n### Serverless ###\n# Ignore build directory\n.serverless\n\n### Sonar ###\n#Sonar generated dir\n/.sonar/\n\n### SonarQube ###\n# SonarQube ignore files.\n# https://docs.sonarqube.org/display/SCAN/Analyzing+with+SonarQube+Scanner\n# Sonar Scanner working directories\n.sonar/\n.scannerwork/\n\n# http://www.sonarlint.org/commandline/\n# SonarLint working directories, configuration files (including credentials)\n#.sonarlint/\n\n### Spark ###\n*#*#\n*.#*\n*.pyc\n*.pyo\n.ensime\n.ensime_cache/\n.ensime_lucene\n.generated-mima*\nR-unit-tests.log\nR/unit-tests.out\nR/cran-check.out\nR/pkg/vignettes/sparkr-vignettes.html\nR/pkg/tests/fulltests/Rplots.pdf\nbuild/*.jar\nbuild/apache-maven*\nbuild/scala*\nbuild/zinc*\ncache\ncheckpoint\nconf/*.cmd\nconf/*.conf\nconf/*.properties\nconf/*.sh\nconf/*.xml\nconf/java-opts\nconf/slaves\nderby.log\ndev/create-release/*final\ndev/create-release/*txt\ndev/pr-deps/\ndocs/_site\ndocs/api\nsql/docs\nsql/site\nlint-r-report.log\nlog/\nlogs/\nproject/build/target/\nproject/plugins/lib_managed/\nproject/plugins/project/build.properties\nproject/plugins/src_managed/\nproject/plugins/target/\npython/lib/pyspark.zip\npython/deps\npython/test_coverage/coverage_data\npython/test_coverage/htmlcov\npython/pyspark/python\nreports/\nscalastyle-on-compile.generated.xml\nscalastyle-output.xml\nscalastyle.txt\nspark-*-bin-*.tgz\nspark-tests.log\nstreaming-tests.log\nunit-tests.log\nwork/\ndocs/.jekyll-metadata\n\n# For Hive\nTempStatsStore/\nmetastore/\nmetastore_db/\nsql/hive-thriftserver/test_warehouses\nwarehouse/\nspark-warehouse/\n\n# For R session data\n.RHistory\n*.Rproj\n*.Rproj.*\n\n.Rproj.user\n\n# For SBT\n.jvmopts\n\n\n### Splunk ###\n# gitignore template for Splunk apps\n# documentation: http://docs.splunk.com/Documentation/Splunk/6.2.3/admin/Defaultmetaconf\n\n# Splunk local meta file\nlocal.meta\n\n# Splunk local folder\nlocal\n\n### Spreadsheet ###\n*.xlr\n*.xls\n*.xlsx\n\n### SSH ###\n**/.ssh/id_*\n**/.ssh/*_id_*\n**/.ssh/known_hosts\n\n### SublimeText ###\n# Cache files for Sublime Text\n*.tmlanguage.cache\n*.tmPreferences.cache\n*.stTheme.cache\n\n# Workspace files are user-specific\n*.sublime-workspace\n\n# Project files should be checked into the repository, unless a significant\n# proportion of contributors will probably not be using Sublime Text\n# *.sublime-project\n\n# SFTP configuration file\nsftp-config.json\n\n# Package control specific files\nPackage Control.last-run\nPackage Control.ca-list\nPackage Control.ca-bundle\nPackage Control.system-ca-bundle\nPackage Control.cache/\nPackage Control.ca-certs/\nPackage Control.merged-ca-bundle\nPackage Control.user-ca-bundle\noscrypto-ca-bundle.crt\nbh_unicode_properties.cache\n\n# Sublime-github package stores a github token in this file\n# https://packagecontrol.io/packages/sublime-github\nGitHub.sublime-settings\n\n### SVN ###\n.svn/\n\n### Terraform ###\n# Local .terraform directories\n**/.terraform/*\n\n# .tfstate files\n*.tfstate\n*.tfstate.*\n\n# Crash log files\n\n# Ignore any .tfvars files that are generated automatically for each Terraform run. Most\n# .tfvars files are managed as part of configuration and so should be included in\n# version control.\n# example.tfvars\n\n# Ignore override files as they are usually used to override resources locally and so\n# are not checked in\noverride.tf\noverride.tf.json\n*_override.tf\n*_override.tf.json\n\n# Include override files you do wish to add to version control using negated pattern\n# !example_override.tf\n\n# Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan\n# example: *tfplan*\n\n### Terragrunt ###\n# terragrunt cache directories\n**/.terragrunt-cache/*\n\n### TortoiseGit ###\n# Project-level settings\n/.tgitconfig\n\n### Vagrant ###\n# General\n.vagrant/\n\n# Log files (if you are creating logs in debug mode, uncomment this)\n# *.log\n\n### Vagrant Patch ###\n\n### venv ###\n# Virtualenv\n# http://iamzed.com/2009/05/07/a-primer-on-virtualenv/\n# XXX: prevents committing scripts at ~/bin\n#[Bb]in\n[Ii]nclude\n# XXX: prevents committing submodule lib\n#[Ll]ib\n[Ll]ib64\n[Ll]ocal\n#[Ss]cripts\npyvenv.cfg\npip-selfcheck.json\n\n### VirtualEnv ###\n# Virtualenv\n# http://iamzed.com/2009/05/07/a-primer-on-virtualenv/\n\n### Julia ###\n# Files generated by invoking Julia with --code-coverage\n*.jl.cov\n*.jl.*.cov\n\n# Files generated by invoking Julia with --track-allocation\n*.jl.mem\n\n# System-specific files and directories generated by the BinaryProvider and BinDeps packages\n# They contain absolute paths specific to the host computer, and so should not be committed\ndeps/deps.jl\ndeps/build.log\ndeps/downloads/\ndeps/usr/\ndeps/src/\n\n# Build artifacts for creating documentation generated by the Documenter package\ndocs/build/\ndocs/site/\n\n# File generated by Pkg, the package manager, based on a corresponding Project.toml\n# It records a fixed state of all packages used by the project. As such, it should not be\n# committed for packages, but should be committed for applications that require a static\n# environment.\nManifest.toml\n\n### VisualStudioCode ###\n\n### VisualStudioCode Patch ###\n# Ignore all local history of files\n.ionide\n\n### vs ###\n## Ignore Visual Studio temporary files, build results, and\n## files generated by popular Visual Studio add-ons.\n##\n## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore\n\n# User-specific files\n*.rsuser\n*.suo\n*.user\n*.userosscache\n*.sln.docstates\n\n# User-specific files (MonoDevelop/Xamarin Studio)\n*.userprefs\n\n# Mono auto generated files\nmono_crash.*\n\n# Build results\n[Dd]ebug/\n[Dd]ebugPublic/\n[Rr]elease/\n[Rr]eleases/\nx64/\nx86/\n[Aa][Rr][Mm]/\n[Aa][Rr][Mm]64/\nbld/\n# XXX: prevents committing scripts at ~/bin\n#[Bb]in/\n[Oo]bj/\n[Ll]og/\n[Ll]ogs/\n\n# Visual Studio 2015/2017 cache/options directory\n.vs/\n# Uncomment if you have tasks that create the project's static files in wwwroot\n#wwwroot/\n\n# Visual Studio 2017 auto generated files\nGenerated\\ Files/\n\n# MSTest test Results\n[Tt]est[Rr]esult*/\n[Bb]uild[Ll]og.*\n\n# NUnit\n*.VisualState.xml\nTestResult.xml\nnunit-*.xml\n\n# Build Results of an ATL Project\n[Dd]ebugPS/\n[Rr]eleasePS/\ndlldata.c\n\n# Benchmark Results\nBenchmarkDotNet.Artifacts/\n\n# .NET Core\nproject.lock.json\nproject.fragment.lock.json\nartifacts/\n\n# StyleCop\nStyleCopReport.xml\n\n# Files built by Visual Studio\n*_i.c\n*_p.c\n*_h.h\n*.meta\n*.iobj\n*.ipdb\n*.pgc\n*.pgd\n*.rsp\n*.sbr\n*.tlb\n*.tli\n*.tlh\n*.tmp_proj\n*_wpftmp.csproj\n*.vspscc\n*.vssscc\n.builds\n*.pidb\n*.svclog\n*.scc\n\n# Chutzpah Test files\n_Chutzpah*\n\n# Visual C++ cache files\nipch/\n*.aps\n*.ncb\n*.opendb\n*.opensdf\n*.cachefile\n*.VC.db\n*.VC.VC.opendb\n\n# Visual Studio profiler\n*.psess\n*.vsp\n*.vspx\n*.sap\n\n# Visual Studio Trace Files\n*.e2e\n\n# TFS 2012 Local Workspace\n$tf/\n\n# Guidance Automation Toolkit\n*.gpState\n\n# ReSharper is a .NET coding add-in\n_ReSharper*/\n*.[Rr]e[Ss]harper\n*.DotSettings.user\n\n# TeamCity is a build add-in\n_TeamCity*\n\n# DotCover is a Code Coverage Tool\n*.dotCover\n\n# AxoCover is a Code Coverage Tool\n.axoCover/*\n!.axoCover/settings.json\n\n# Coverlet is a free, cross platform Code Coverage Tool\ncoverage*[.json, .xml, .info]\n\n# Visual Studio code coverage results\n*.coverage\n*.coveragexml\n\n# NCrunch\n_NCrunch_*\n.*crunch*.local.xml\nnCrunchTemp_*\n\n# MightyMoose\n*.mm.*\nAutoTest.Net/\n\n# Web workbench (sass)\n.sass-cache/\n\n# Installshield output folder\n[Ee]xpress/\n\n# DocProject is a documentation generator add-in\nDocProject/buildhelp/\nDocProject/Help/*.HxT\nDocProject/Help/*.HxC\nDocProject/Help/*.hhc\nDocProject/Help/*.hhk\nDocProject/Help/*.hhp\nDocProject/Help/Html2\nDocProject/Help/html\n\n# Click-Once directory\npublish/\n\n# Publish Web Output\n*.[Pp]ublish.xml\n*.azurePubxml\n# Note: Comment the next line if you want to checkin your web deploy settings,\n# but database connection strings (with potential passwords) will be unencrypted\n*.pubxml\n*.publishproj\n\n# Microsoft Azure Web App publish settings. Comment the next line if you want to\n# checkin your Azure Web App publish settings, but sensitive information contained\n# in these scripts will be unencrypted\nPublishScripts/\n\n# NuGet Packages\n*.nupkg\n# NuGet Symbol Packages\n*.snupkg\n# The packages folder can be ignored because of Package Restore\n**/[Pp]ackages/*\n# except build/, which is used as an MSBuild target.\n!**/[Pp]ackages/build/\n# Uncomment if necessary however generally it will be regenerated when needed\n#!**/[Pp]ackages/repositories.config\n# NuGet v3's project.json files produces more ignorable files\n*.nuget.props\n*.nuget.targets\n\n# Microsoft Azure Build Output\ncsx/\n*.build.csdef\n\n# Microsoft Azure Emulator\necf/\nrcf/\n\n# Windows Store app package directories and files\nAppPackages/\nBundleArtifacts/\nPackage.StoreAssociation.xml\n_pkginfo.txt\n*.appx\n*.appxbundle\n*.appxupload\n\n# Visual Studio cache files\n# files ending in .cache can be ignored\n*.[Cc]ache\n# but keep track of directories ending in .cache\n!?*.[Cc]ache/\n\n# Others\nClientBin/\n~$*\n*.dbmdl\n*.dbproj.schemaview\n*.jfm\n*.pfx\n*.publishsettings\norleans.codegen.cs\n\n# Including strong name files can present a security risk\n# (https://github.com/github/gitignore/pull/2483#issue-259490424)\n#*.snk\n\n# Since there are multiple workflows, uncomment next line to ignore bower_components\n# (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)\n#bower_components/\n\n# RIA/Silverlight projects\nGenerated_Code/\n\n# Backup & report files from converting an old project file\n# to a newer Visual Studio version. Backup files are not needed,\n# because we have git ;-)\n_UpgradeReport_Files/\nBackup*/\nUpgradeLog*.XML\nUpgradeLog*.htm\nServiceFabricBackup/\n*.rptproj.bak\n\n# SQL Server files\n*.mdf\n*.ldf\n*.ndf\n\n# Business Intelligence projects\n*.rdl.data\n*.bim.layout\n*.bim_*.settings\n*.rptproj.rsuser\n*- [Bb]ackup.rdl\n*- [Bb]ackup ([0-9]).rdl\n*- [Bb]ackup ([0-9][0-9]).rdl\n\n# Microsoft Fakes\nFakesAssemblies/\n\n# GhostDoc plugin setting file\n*.GhostDoc.xml\n\n# Node.js Tools for Visual Studio\n.ntvs_analysis.dat\n\n# Visual Studio 6 build log\n*.plg\n\n# Visual Studio 6 workspace options file\n*.opt\n\n# Visual Studio 6 auto-generated workspace file (contains which files were open etc.)\n*.vbw\n\n# Visual Studio LightSwitch build output\n**/*.HTMLClient/GeneratedArtifacts\n**/*.DesktopClient/GeneratedArtifacts\n**/*.DesktopClient/ModelManifest.xml\n**/*.Server/GeneratedArtifacts\n**/*.Server/ModelManifest.xml\n_Pvt_Extensions\n\n# Paket dependency manager\n.paket/paket.exe\npaket-files/\n\n# FAKE - F# Make\n.fake/\n\n# CodeRush personal settings\n.cr/personal\n\n# Python Tools for Visual Studio (PTVS)\n\n# Cake - Uncomment if you are using it\n# tools/**\n# !tools/packages.config\n\n# Tabs Studio\n*.tss\n\n# Telerik's JustMock configuration file\n*.jmconfig\n\n# BizTalk build output\n*.btp.cs\n*.btm.cs\n*.odx.cs\n*.xsd.cs\n\n# OpenCover UI analysis results\nOpenCover/\n\n# Azure Stream Analytics local run output\nASALocalRun/\n\n# MSBuild Binary and Structured Log\n*.binlog\n\n# NVidia Nsight GPU debugger configuration file\n*.nvuser\n\n# MFractors (Xamarin productivity tool) working folder\n.mfractor/\n\n# Local History for Visual Studio\n.localhistory/\n\n# BeatPulse healthcheck temp database\nhealthchecksdb\n\n# Backup folder for Package Reference Convert tool in Visual Studio 2017\nMigrationBackup/\n\n# Ionide (cross platform F# VS Code tools) working folder\n.ionide/\n\n### vscode ###\n\n### Vue ###\n# gitignore template for Vue.js projects\n# Recommended template: Node.gitignore\n\n# TODO: where does this rule come from?\ndocs/_book\n\n# TODO: where does this rule come from?\n# XXX: covers up standard Python unit test path\n# test/\n\n### Vuejs ###\n# Recommended template: Node.gitignore\n\nnpm-debug.log\nyarn-error.log\n\n### Waf ###\n# For projects that use the Waf build system: https://waf.io/\n# Dot-hidden on Unix-like systems\n.waf-*-*/\n.waf3-*-*/\n# Hidden directory on Windows (no dot)\nwaf-*-*/\nwaf3-*-*/\n# Lockfile\n.lock-waf_*_build\n\n### Windows ###\n# Windows thumbnail cache files\nThumbs.db\nThumbs.db:encryptable\nehthumbs.db\nehthumbs_vista.db\n\n# Dump file\n*.stackdump\n\n# Folder config file\n[Dd]esktop.ini\n\n# Recycle Bin used on file shares\n$RECYCLE.BIN/\n\n# Windows Installer files\n*.msix\n\n# Windows shortcuts\n*.lnk\n\n### Xcode ###\n# Xcode\n# gitignore contributors: remember to update Global/Xcode.gitignore, Objective-C.gitignore & Swift.gitignore\n\n\n\n\n\n### Xcode Patch ###\n*.xcodeproj/*\n!*.xcodeproj/project.pbxproj\n!*.xcodeproj/xcshareddata/\n!*.xcworkspace/contents.xcworkspacedata\n**/xcshareddata/WorkspaceSettings.xcsettings\n\n### XcodeInjection ###\n# Code Injection\n# After new code Injection tools there's a generated folder /iOSInjectionProject\n# https://github.com/johnno1962/injectionforxcode\n\niOSInjectionProject/\n\n### Gradle ###\n\n# Ignore Gradle GUI config\n\n# Avoid ignoring Gradle wrapper jar file (.jar files are usually ignored)\n\n# Cache of project\n\n# # Work around https://youtrack.jetbrains.com/issue/IDEA-116898\n# gradle/wrapper/gradle-wrapper.properties\n\n### Gradle Patch ###\n**/build/\n\n### VisualStudio ###\n\n# User-specific files\n\n# User-specific files (MonoDevelop/Xamarin Studio)\n\n# Mono auto generated files\n\n# Build results\n\n# Visual Studio 2015/2017 cache/options directory\n# Uncomment if you have tasks that create the project's static files in wwwroot\n\n# Visual Studio 2017 auto generated files\n\n# MSTest test Results\n\n# NUnit\n\n# Build Results of an ATL Project\n\n# Benchmark Results\n\n# .NET Core\n\n# StyleCop\n\n# Files built by Visual Studio\n\n# Chutzpah Test files\n\n# Visual C++ cache files\n\n# Visual Studio profiler\n\n# Visual Studio Trace Files\n\n# TFS 2012 Local Workspace\n\n# Guidance Automation Toolkit\n\n# ReSharper is a .NET coding add-in\n\n# TeamCity is a build add-in\n\n# DotCover is a Code Coverage Tool\n\n# AxoCover is a Code Coverage Tool\n\n# Coverlet is a free, cross platform Code Coverage Tool\n\n# Visual Studio code coverage results\n\n# NCrunch\n\n# MightyMoose\n\n# Web workbench (sass)\n\n# Installshield output folder\n\n# DocProject is a documentation generator add-in\n\n# Click-Once directory\n\n# Publish Web Output\n# Note: Comment the next line if you want to checkin your web deploy settings,\n# but database connection strings (with potential passwords) will be unencrypted\n\n# Microsoft Azure Web App publish settings. Comment the next line if you want to\n# checkin your Azure Web App publish settings, but sensitive information contained\n# in these scripts will be unencrypted\n\n# NuGet Packages\n# NuGet Symbol Packages\n# The packages folder can be ignored because of Package Restore\n# except build/, which is used as an MSBuild target.\n# Uncomment if necessary however generally it will be regenerated when needed\n# NuGet v3's project.json files produces more ignorable files\n\n# Microsoft Azure Build Output\n\n# Microsoft Azure Emulator\n\n# Windows Store app package directories and files\n\n# Visual Studio cache files\n# files ending in .cache can be ignored\n# but keep track of directories ending in .cache\n\n# Others\n\n# Including strong name files can present a security risk\n# (https://github.com/github/gitignore/pull/2483#issue-259490424)\n\n# Since there are multiple workflows, uncomment next line to ignore bower_components\n# (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)\n\n# RIA/Silverlight projects\n\n# Backup & report files from converting an old project file\n# to a newer Visual Studio version. Backup files are not needed,\n# because we have git ;-)\n\n# SQL Server files\n\n# Business Intelligence projects\n\n# Microsoft Fakes\n\n# GhostDoc plugin setting file\n\n# Node.js Tools for Visual Studio\n\n# Visual Studio 6 build log\n\n# Visual Studio 6 workspace options file\n\n# Visual Studio 6 auto-generated workspace file (contains which files were open etc.)\n\n# Visual Studio LightSwitch build output\n\n# Paket dependency manager\n\n# FAKE - F# Make\n\n# CodeRush personal settings\n\n# Python Tools for Visual Studio (PTVS)\n\n# Cake - Uncomment if you are using it\n# tools/**\n# !tools/packages.config\n\n# Tabs Studio\n\n# Telerik's JustMock configuration file\n\n# BizTalk build output\n\n# OpenCover UI analysis results\n\n# Azure Stream Analytics local run output\n\n# MSBuild Binary and Structured Log\n\n# NVidia Nsight GPU debugger configuration file\n\n# MFractors (Xamarin productivity tool) working folder\n\n# Local History for Visual Studio\n\n# BeatPulse healthcheck temp database\n\n# Backup folder for Package Reference Convert tool in Visual Studio 2017\n\n# Ionide (cross platform F# VS Code tools) working folder\n\n# End of https://www.toptal.com/developers/gitignore/api/ansible,apachehadoop,appcode,appengine,archive,archives,archlinuxpackages,audio,autotools,backup,basic,batch,bittorrent,c,c++,certificates,chefcookbook,clojure,cloud9,cmake,code,code-java,codeblocks,compressed,compressedarchive,compression,data,database,datarecovery,diff,direnv,diskimage,docfx,docpress,docz,dotenv,dotfilessh,dotsettings,dropbox,eclipse,emacs,erlang,executable,firebase,flask,git,gitbook,go,gpg,gradle,grails,groovy,grunt,haskell,helm,homebrew,hugo,images,intellij,intellij+all,intellij+iml,java,java-web,jenv,jetbrains,jetbrains+all,jetbrains+iml,jmeter,julia,jupyternotebooks,kotlin,lamp,latex,less,linux,lua,macos,matlab,maven,mercurial,microsoftoffice,node,octave,osx,packer,patch,perl,perl6,phpunit,powershell,puppet,putty,pycharm,pycharm+all,pycharm+iml,pydev,python,r,rails,react,reactnative,redis,root,ruby,rust,sbt,scala,serverless,sonar,sonarqube,spark,splunk,spreadsheet,ssh,sublimetext,svn,terraform,terragrunt,tortoisegit,vagrant,venv,virtualenv,visualstudio,visualstudiocode,vs,vscode,vue,vuejs,waf,windows,xcode,xcodeinjection,zsh\n\n# for DevOps-Bash-tools packages/*.sh scripts\n## needed to unmask directory ignore above otherwise !packages/*packages*.sh isn't respected\n!packages/\n!packages/*.sh\n" }, { "path": ".gitlab-ci.yml", "content": "# vim:ts=2:sts=2:sw=2:et\n#\n# Author: Hari Sekhon\n# Date: Sun Feb 23 19:02:10 2020 +0000\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n# to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G i t L a b C I\n# ============================================================================ #\n\n# https://docs.gitlab.com/ee/ci/yaml/README.html\n\n#include: '.gitlab/*.y*ml'\n\nimage: ubuntu:18.04\n\njob:\n before_script:\n - setup/ci_bootstrap.sh\n script:\n - make init && make ci test\n" }, { "path": ".gitmodules", "content": "" }, { "path": ".hound.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-09-23 10:28:21 +0100 (Wed, 23 Sep 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n---\n# https://intercom.help/hound/en/articles/2138537-flake8\nflake8:\n enabled: true\n #config_file: .flake8\n\n# http://help.houndci.com/en/articles/2138564-shellcheck\nshellcheck:\n enabled: true\n #config_file: .shellcheck.yml\n\n# http://help.houndci.com/en/articles/2138524-golint\ngolint:\n enabled: false\n\n#fail_on_violations: true\n" }, { "path": ".mdl.rb", "content": "#!/usr/bin/env ruby\n# vim:ts=4:sts=4:sw=4:et:filetype=ruby\n#\n# Author: Hari Sekhon\n# Date: 2024-08-22 01:58:12 +0200 (Thu, 22 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nall\n#exclude_rule 'MD001'\n#exclude_rule 'MD003'\n#exclude_rule 'MD005'\nexclude_rule 'MD007' # leave 2 space indentation for lists, 3 space is ugly af\n#exclude_rule 'MD012'\nexclude_rule 'MD013' # long lines cannot be split if they are URLs\n#exclude_rule 'MD022'\nexclude_rule 'MD024' # Multiple headers with the same content\n#exclude_rule 'MD025'\nexclude_rule 'MD026' # Trailing punctuation in header - sometimes I want to do etc. or ... at the end of a heading\n#exclude_rule 'MD031'\n#exclude_rule 'MD032'\nexclude_rule 'MD033' # inline HTML is important for formatting\nexclude_rule 'MD036' # emphasis used instead of header for footer Ported from lines\n#exclude_rule 'MD039'\n#exclude_rule 'MD056'\n" }, { "path": ".mdlrc", "content": "mdlrc_dir = File.expand_path('..', __FILE__)\n\nstyle_file = File.join(mdlrc_dir, '.mdl.rb')\n\nstyle style_file\n" }, { "path": ".pre-commit-config.yaml", "content": "#\n# Author: Hari Sekhon\n# Date: 2024-08-08 17:34:56 +0300 (Thu, 08 Aug 2024)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P r e - C o m m i t\n# ============================================================================ #\n\n---\nfail_fast: false\n#exclude: *.tmp$\n\nrepos:\n\n # will accept anything that 'git clone' understands\n # this means you can set this to a local git repo to develop your own hook repos interactively\n - repo: https://github.com/pre-commit/pre-commit-hooks\n rev: v4.6.0\n hooks:\n - id: check-yaml\n # Common errors\n #- id: end-of-file-fixer # ruins .gitignore Icon\\r\n - id: trailing-whitespace\n args: [--markdown-linebreak-ext=md]\n # Git style\n - id: check-added-large-files\n - id: check-merge-conflict\n - id: check-vcs-permalinks\n #- id: forbid-new-submodules\n # Cross platform\n - id: check-case-conflict\n - id: mixed-line-ending\n args: [--fix=lf]\n # Security\n - id: detect-aws-credentials\n args: ['--allow-missing-credentials']\n\n # rewrites python files with useless changes like changing single quotes to double quotes\n #- repo: https://github.com/psf/black\n # rev: 24.8.0\n # hooks:\n # - id: black\n\n # Git secrets Leaks\n - repo: https://github.com/awslabs/git-secrets.git\n # the release tags for 1.2.0, 1.2.1 and 1.3.0 are broken with this error:\n #\n # /Users/hari/.cache/pre-commit/repo......./.pre-commit-hooks.yaml is not a file\n #\n rev: 5357e18\n hooks:\n - id: git-secrets\n\n - repo: https://github.com/markdownlint/markdownlint\n rev: v0.12.0\n hooks:\n - id: markdownlint\n name: Markdownlint\n description: Run markdownlint on your Markdown files\n entry: mdl\n args: [-s, .mdl.rb]\n language: ruby\n files: \\.(md|mdown|markdown)$\n" }, { "path": ".pylintrc", "content": "# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# P y L i n t C o n f i g\n# ============================================================================ #\n\n# pylint --generate-rcfile >> .pylintrc\n\n[MAIN]\n\n# Analyse import fallback blocks. This can be used to support both Python 2 and\n# 3 compatible code, which means that the block might have code that exists\n# only in one or another interpreter, leading to false positives when analysed.\nanalyse-fallback-blocks=no\n\n# Clear in-memory caches upon conclusion of linting. Useful if running pylint\n# in a server-like mode.\nclear-cache-post-run=no\n\n# Load and enable all available extensions. Use --list-extensions to see a list\n# all available extensions.\n#enable-all-extensions=\n\n# In error mode, messages with a category besides ERROR or FATAL are\n# suppressed, and no reports are done by default. Error mode is compatible with\n# disabling specific errors.\n#errors-only=\n\n# Always return a 0 (non-error) status code, even if lint errors are found.\n# This is primarily useful in continuous integration scripts.\n#exit-zero=\n\n# A comma-separated list of package or module names from where C extensions may\n# be loaded. Extensions are loading into the active Python interpreter and may\n# run arbitrary code.\nextension-pkg-allow-list=\n\n# A comma-separated list of package or module names from where C extensions may\n# be loaded. Extensions are loading into the active Python interpreter and may\n# run arbitrary code. (This is an alternative name to extension-pkg-allow-list\n# for backward compatibility.)\nextension-pkg-whitelist=\n\n# Return non-zero exit code if any of these messages/categories are detected,\n# even if score is above --fail-under value. Syntax same as enable. Messages\n# specified are enabled, while categories only check already-enabled messages.\nfail-on=\n\n# Specify a score threshold under which the program will exit with error.\nfail-under=10\n\n# Interpret the stdin as a python script, whose filename needs to be passed as\n# the module_or_package argument.\n#from-stdin=\n\n# Files or directories to be skipped. They should be base names, not paths.\nignore=CVS\n\n# Add files or directories matching the regular expressions patterns to the\n# ignore-list. The regex matches against paths and can be in Posix or Windows\n# format. Because '\\\\' represents the directory delimiter on Windows systems,\n# it can't be used as an escape character.\nignore-paths=\n\n# Files or directories matching the regular expression patterns are skipped.\n# The regex matches against base names, not paths. The default value ignores\n# Emacs file locks\nignore-patterns=^\\.#\n\n# List of module names for which member attributes should not be checked\n# (useful for modules/projects where namespaces are manipulated during runtime\n# and thus existing member attributes cannot be deduced by static analysis). It\n# supports qualified module names, as well as Unix pattern matching.\nignored-modules=\n\n# Python code to execute, usually for sys.path manipulation such as\n# pygtk.require().\n#init-hook=\n\n# Use multiple processes to speed up Pylint. Specifying 0 will auto-detect the\n# number of processors available to use, and will cap the count on Windows to\n# avoid hangs.\njobs=1\n\n# Control the amount of potential inferred values when inferring a single\n# object. This can help the performance when dealing with large functions or\n# complex, nested conditions.\nlimit-inference-results=100\n\n# List of plugins (as comma separated values of python module names) to load,\n# usually to register additional checkers.\nload-plugins=\n\n# Pickle collected data for later comparisons.\npersistent=yes\n\n# Minimum Python version to use for version dependent checks. Will default to\n# the version used to run pylint.\npy-version=3.11\n\n# Discover python modules and packages in the file system subtree.\nrecursive=no\n\n# Add paths to the list of the source roots. Supports globbing patterns. The\n# source root is an absolute path or a path relative to the current working\n# directory used to determine a package namespace for modules located under the\n# source root.\nsource-roots=\n\n# When enabled, pylint would attempt to guess common misconfiguration and emit\n# user-friendly hints instead of false-positive error messages.\nsuggestion-mode=yes\n\n# Allow loading of arbitrary C extensions. Extensions are imported into the\n# active Python interpreter and may run arbitrary code.\nunsafe-load-any-extension=no\n\n# In verbose mode, extra non-checker-related info will be displayed.\n#verbose=\n\n\n[BASIC]\n\n# Naming style matching correct argument names.\nargument-naming-style=snake_case\n\n# Regular expression matching correct argument names. Overrides argument-\n# naming-style. If left empty, argument names will be checked with the set\n# naming style.\n#argument-rgx=\n\n# Naming style matching correct attribute names.\nattr-naming-style=snake_case\n\n# Regular expression matching correct attribute names. Overrides attr-naming-\n# style. If left empty, attribute names will be checked with the set naming\n# style.\n#attr-rgx=\n\n# Bad variable names which should always be refused, separated by a comma.\nbad-names=foo,\n bar,\n baz,\n toto,\n tutu,\n tata\n\n# Bad variable names regexes, separated by a comma. If names match any regex,\n# they will always be refused\nbad-names-rgxs=\n\n# Naming style matching correct class attribute names.\nclass-attribute-naming-style=any\n\n# Regular expression matching correct class attribute names. Overrides class-\n# attribute-naming-style. If left empty, class attribute names will be checked\n# with the set naming style.\n#class-attribute-rgx=\n\n# Naming style matching correct class constant names.\nclass-const-naming-style=UPPER_CASE\n\n# Regular expression matching correct class constant names. Overrides class-\n# const-naming-style. If left empty, class constant names will be checked with\n# the set naming style.\n#class-const-rgx=\n\n# Naming style matching correct class names.\nclass-naming-style=PascalCase\n\n# Regular expression matching correct class names. Overrides class-naming-\n# style. If left empty, class names will be checked with the set naming style.\n#class-rgx=\n\n# Naming style matching correct constant names.\nconst-naming-style=UPPER_CASE\n\n# Regular expression matching correct constant names. Overrides const-naming-\n# style. If left empty, constant names will be checked with the set naming\n# style.\n#const-rgx=\n\n# Minimum line length for functions/classes that require docstrings, shorter\n# ones are exempt.\ndocstring-min-length=-1\n\n# Naming style matching correct function names.\nfunction-naming-style=snake_case\n\n# Regular expression matching correct function names. Overrides function-\n# naming-style. If left empty, function names will be checked with the set\n# naming style.\n#function-rgx=\n\n# Good variable names which should always be accepted, separated by a comma.\ngood-names=i,\n j,\n k,\n ex,\n Run,\n _\n\n# Good variable names regexes, separated by a comma. If names match any regex,\n# they will always be accepted\ngood-names-rgxs=\n\n# Include a hint for the correct naming format with invalid-name.\ninclude-naming-hint=no\n\n# Naming style matching correct inline iteration names.\ninlinevar-naming-style=any\n\n# Regular expression matching correct inline iteration names. Overrides\n# inlinevar-naming-style. If left empty, inline iteration names will be checked\n# with the set naming style.\n#inlinevar-rgx=\n\n# Naming style matching correct method names.\nmethod-naming-style=snake_case\n\n# Regular expression matching correct method names. Overrides method-naming-\n# style. If left empty, method names will be checked with the set naming style.\n#method-rgx=\n\n# Naming style matching correct module names.\nmodule-naming-style=snake_case\n\n# Regular expression matching correct module names. Overrides module-naming-\n# style. If left empty, module names will be checked with the set naming style.\n#module-rgx=\n\n# Colon-delimited sets of names that determine each other's naming style when\n# the name regexes allow several styles.\nname-group=\n\n# Regular expression which should only match function or class names that do\n# not require a docstring.\nno-docstring-rgx=^_\n\n# List of decorators that produce properties, such as abc.abstractproperty. Add\n# to this list to register other decorators that produce valid properties.\n# These decorators are taken in consideration only for invalid-name.\nproperty-classes=abc.abstractproperty\n\n# Regular expression matching correct type alias names. If left empty, type\n# alias names will be checked with the set naming style.\n#typealias-rgx=\n\n# Regular expression matching correct type variable names. If left empty, type\n# variable names will be checked with the set naming style.\n#typevar-rgx=\n\n# Naming style matching correct variable names.\nvariable-naming-style=snake_case\n\n# Regular expression matching correct variable names. Overrides variable-\n# naming-style. If left empty, variable names will be checked with the set\n# naming style.\n#variable-rgx=\n\n\n[CLASSES]\n\n# Warn about protected attribute access inside special methods\ncheck-protected-access-in-special-methods=no\n\n# List of method names used to declare (i.e. assign) instance attributes.\ndefining-attr-methods=__init__,\n __new__,\n setUp,\n asyncSetUp,\n __post_init__\n\n# List of member names, which should be excluded from the protected access\n# warning.\nexclude-protected=_asdict,_fields,_replace,_source,_make,os._exit\n\n# List of valid names for the first argument in a class method.\nvalid-classmethod-first-arg=cls\n\n# List of valid names for the first argument in a metaclass class method.\nvalid-metaclass-classmethod-first-arg=mcs\n\n\n[DESIGN]\n\n# List of regular expressions of class ancestor names to ignore when counting\n# public methods (see R0903)\nexclude-too-few-public-methods=\n\n# List of qualified class names to ignore when counting class parents (see\n# R0901)\nignored-parents=\n\n# Maximum number of arguments for function / method.\nmax-args=5\n\n# Maximum number of attributes for a class (see R0902).\nmax-attributes=7\n\n# Maximum number of boolean expressions in an if statement (see R0916).\nmax-bool-expr=5\n\n# Maximum number of branch for function / method body.\nmax-branches=12\n\n# Maximum number of locals for function / method body.\nmax-locals=15\n\n# Maximum number of parents for a class (see R0901).\nmax-parents=7\n\n# Maximum number of public methods for a class (see R0904).\nmax-public-methods=20\n\n# Maximum number of return / yield for function / method body.\nmax-returns=6\n\n# Maximum number of statements in function / method body.\nmax-statements=50\n\n# Minimum number of public methods for a class (see R0903).\nmin-public-methods=2\n\n\n[EXCEPTIONS]\n\n# Exceptions that will emit a warning when caught.\novergeneral-exceptions=builtins.BaseException,builtins.Exception\n\n\n[FORMAT]\n\n# Expected format of line ending, e.g. empty (any line ending), LF or CRLF.\nexpected-line-ending-format=\n\n# Regexp for a line that is allowed to be longer than the limit.\nignore-long-lines=^\\s*(# )??$\n\n# Number of spaces of indent required inside a hanging or continued line.\nindent-after-paren=4\n\n# String used as indentation unit. This is usually \" \" (4 spaces) or \"\\t\" (1\n# tab).\nindent-string=' '\n\n# Maximum number of characters on a single line.\nmax-line-length=120\n\n# Maximum number of lines in a module.\nmax-module-lines=1000\n\n# Allow the body of a class to be on the same line as the declaration if body\n# contains single statement.\nsingle-line-class-stmt=no\n\n# Allow the body of an if to be on the same line as the test if there is no\n# else.\nsingle-line-if-stmt=no\n\n\n[IMPORTS]\n\n# List of modules that can be imported at any level, not just the top level\n# one.\nallow-any-import-level=\n\n# Allow explicit reexports by alias from a package __init__.\nallow-reexport-from-package=no\n\n# Allow wildcard imports from modules that define __all__.\nallow-wildcard-with-all=no\n\n# Deprecated modules which should not be used, separated by a comma.\ndeprecated-modules=\n\n# Output a graph (.gv or any supported image format) of external dependencies\n# to the given file (report RP0402 must not be disabled).\next-import-graph=\n\n# Output a graph (.gv or any supported image format) of all (i.e. internal and\n# external) dependencies to the given file (report RP0402 must not be\n# disabled).\nimport-graph=\n\n# Output a graph (.gv or any supported image format) of internal dependencies\n# to the given file (report RP0402 must not be disabled).\nint-import-graph=\n\n# Force import order to recognize a module as part of the standard\n# compatibility libraries.\nknown-standard-library=\n\n# Force import order to recognize a module as part of a third party library.\nknown-third-party=enchant\n\n# Couples of modules and preferred modules, separated by a comma.\npreferred-modules=\n\n\n[LOGGING]\n\n# The type of string formatting that logging methods do. `old` means using %\n# formatting, `new` is for `{}` formatting.\nlogging-format-style=old\n\n# Logging modules to check that the string format arguments are in logging\n# function parameter format.\nlogging-modules=logging\n\n\n[MESSAGES CONTROL]\n\n# Only show warnings with the listed confidence levels. Leave empty to show\n# all. Valid levels: HIGH, CONTROL_FLOW, INFERENCE, INFERENCE_FAILURE,\n# UNDEFINED.\nconfidence=HIGH,\n CONTROL_FLOW,\n INFERENCE,\n INFERENCE_FAILURE,\n UNDEFINED\n\n# Disable the message, report, category or checker with the given id(s). You\n# can either give multiple identifiers separated by comma (,) or put this\n# option multiple times (only on the command line, not in the configuration\n# file where it should appear only once). You can also use \"--disable=all\" to\n# disable everything first and then re-enable specific checks. For example, if\n# you want to run only the similarities checker, you can use \"--disable=all\n# --enable=similarities\". If you want to run only the classes checker, but have\n# no Warning level messages displayed, use \"--disable=all --enable=classes\n# --disable=W\".\ndisable=raw-checker-failed,\n bad-inline-option,\n locally-disabled,\n file-ignored,\n suppressed-message,\n useless-suppression,\n deprecated-pragma,\n use-symbolic-message-instead,\n missing-class-docstring,\n missing-function-docstring,\n super-with-arguments,\n consider-using-f-string\n\n# Enable the message, report, category or checker with the given id(s). You can\n# either give multiple identifier separated by comma (,) or put this option\n# multiple time (only on the command line, not in the configuration file where\n# it should appear only once). See also the \"--disable\" option for examples.\nenable=c-extension-no-member\n\n\n[METHOD_ARGS]\n\n# List of qualified names (i.e., library.method) which require a timeout\n# parameter e.g. 'requests.api.get,requests.api.post'\ntimeout-methods=requests.api.delete,requests.api.get,requests.api.head,requests.api.options,requests.api.patch,requests.api.post,requests.api.put,requests.api.request\n\n\n[MISCELLANEOUS]\n\n# List of note tags to take in consideration, separated by a comma.\nnotes=FIXME,\n XXX,\n TODO\n\n# Regular expression of note tags to take in consideration.\nnotes-rgx=\n\n\n[REFACTORING]\n\n# Maximum number of nested blocks for function / method body\nmax-nested-blocks=5\n\n# Complete name of functions that never returns. When checking for\n# inconsistent-return-statements if a never returning function is called then\n# it will be considered as an explicit return statement and no message will be\n# printed.\nnever-returning-functions=sys.exit,argparse.parse_error\n\n\n[REPORTS]\n\n# Python expression which should return a score less than or equal to 10. You\n# have access to the variables 'fatal', 'error', 'warning', 'refactor',\n# 'convention', and 'info' which contain the number of messages in each\n# category, as well as 'statement' which is the total number of statements\n# analyzed. This score is used by the global evaluation report (RP0004).\nevaluation=max(0, 0 if fatal else 10.0 - ((float(5 * error + warning + refactor + convention) / statement) * 10))\n\n# Template used to display messages. This is a python new-style format string\n# used to format the message information. See doc for all details.\nmsg-template=\n\n# Set the output format. Available formats are text, parseable, colorized, json\n# and msvs (visual studio). You can also give a reporter class, e.g.\n# mypackage.mymodule.MyReporterClass.\n#output-format=\n\n# Tells whether to display a full report or only the messages.\nreports=no\n\n# Activate the evaluation score.\nscore=yes\n\n\n[SIMILARITIES]\n\n# Comments are removed from the similarity computation\nignore-comments=yes\n\n# Docstrings are removed from the similarity computation\nignore-docstrings=yes\n\n# Imports are removed from the similarity computation\nignore-imports=yes\n\n# Signatures are removed from the similarity computation\nignore-signatures=yes\n\n# Minimum lines number of a similarity.\nmin-similarity-lines=4\n\n\n[SPELLING]\n\n# Limits count of emitted suggestions for spelling mistakes.\nmax-spelling-suggestions=4\n\n# Spelling dictionary name. No available dictionaries : You need to install\n# both the python package and the system dependency for enchant to work..\nspelling-dict=\n\n# List of comma separated words that should be considered directives if they\n# appear at the beginning of a comment and should not be checked.\nspelling-ignore-comment-directives=fmt: on,fmt: off,noqa:,noqa,nosec,isort:skip,mypy:\n\n# List of comma separated words that should not be checked.\nspelling-ignore-words=\n\n# A path to a file that contains the private dictionary; one word per line.\nspelling-private-dict-file=\n\n# Tells whether to store unknown words to the private dictionary (see the\n# --spelling-private-dict-file option) instead of raising a message.\nspelling-store-unknown-words=no\n\n\n[STRING]\n\n# This flag controls whether inconsistent-quotes generates a warning when the\n# character used as a quote delimiter is used inconsistently within a module.\ncheck-quote-consistency=no\n\n# This flag controls whether the implicit-str-concat should generate a warning\n# on implicit string concatenation in sequences defined over several lines.\ncheck-str-concat-over-line-jumps=no\n\n\n[TYPECHECK]\n\n# List of decorators that produce context managers, such as\n# contextlib.contextmanager. Add to this list to register other decorators that\n# produce valid context managers.\ncontextmanager-decorators=contextlib.contextmanager\n\n# List of members which are set dynamically and missed by pylint inference\n# system, and so shouldn't trigger E1101 when accessed. Python regular\n# expressions are accepted.\ngenerated-members=\n\n# Tells whether to warn about missing members when the owner of the attribute\n# is inferred to be None.\nignore-none=yes\n\n# This flag controls whether pylint should warn about no-member and similar\n# checks whenever an opaque object is returned when inferring. The inference\n# can return multiple potential results while evaluating a Python object, but\n# some branches might not be evaluated, which results in partial inference. In\n# that case, it might be useful to still emit no-member and other checks for\n# the rest of the inferred objects.\nignore-on-opaque-inference=yes\n\n# List of symbolic message names to ignore for Mixin members.\nignored-checks-for-mixins=no-member,\n not-async-context-manager,\n not-context-manager,\n attribute-defined-outside-init\n\n# List of class names for which member attributes should not be checked (useful\n# for classes with dynamically set attributes). This supports the use of\n# qualified names.\nignored-classes=optparse.Values,thread._local,_thread._local,argparse.Namespace\n\n# Show a hint with possible names when a member name was not found. The aspect\n# of finding the hint is based on edit distance.\nmissing-member-hint=yes\n\n# The minimum edit distance a name should have in order to be considered a\n# similar match for a missing member name.\nmissing-member-hint-distance=1\n\n# The total number of similar names that should be taken in consideration when\n# showing a hint for a missing member.\nmissing-member-max-choices=1\n\n# Regex pattern to define which classes are considered mixins.\nmixin-class-rgx=.*[Mm]ixin\n\n# List of decorators that change the signature of a decorated function.\nsignature-mutators=\n\n\n[VARIABLES]\n\n# List of additional names supposed to be defined in builtins. Remember that\n# you should avoid defining new builtins when possible.\nadditional-builtins=\n\n# Tells whether unused global variables should be treated as a violation.\nallow-global-unused-variables=yes\n\n# List of names allowed to shadow builtins\nallowed-redefined-builtins=\n\n# List of strings which can identify a callback function by name. A callback\n# name must start or end with one of those strings.\ncallbacks=cb_,\n _cb\n\n# A regular expression matching the name of dummy variables (i.e. expected to\n# not be used).\ndummy-variables-rgx=_+$|(_[a-zA-Z0-9_]*[a-zA-Z0-9]+?$)|dummy|^ignored_|^unused_\n\n# Argument names that match this expression will be ignored.\nignored-argument-names=_.*|^ignored_|^unused_\n\n# Tells whether we should check for unused import in __init__ files.\ninit-import=no\n\n# List of qualified module names which can have objects that can redefine\n# builtins.\nredefining-builtins-modules=six.moves,past.builtins,future.builtins,builtins,io\n" }, { "path": ".scrutinizer.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-03-17 11:41:13 +0000 (Tue, 17 Mar 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nbuild:\n image: default-bionic\n nodes:\n auto:\n commands:\n - repo=\"${SCRUTINIZER_PROJECT#*/}\"; git clone \"https://github.com/$repo\" build\n - cd ~/build\n - pwd\n - ls -l\n - make init\n - make ci test\n" }, { "path": ".semaphore/semaphore.yml", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-03-16 14:02:53 +0000 (Mon, 16 Mar 2020)\n#\n# vim:ts=2:sts=2:sw=2:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# S e m a p h o r e C I\n# ============================================================================ #\n\n# https://docs.semaphoreci.com/reference/pipeline-yaml-reference/\n\nversion: v1.0\nname: DevOps-Bash-tools\nagent:\n # https://docs.semaphoreci.com/reference/machine-types#linux\n machine:\n type: e1-standard-2\n os_image: ubuntu2004\nexecution_time_limit:\n hours: 3\nblocks:\n - name: Linux build\n run:\n when: \"branch = 'master' AND change_in('/', {exclude: ['**/*.md']})\"\n #execution_time_limit:\n # hours: 2\n task:\n #env_vars:\n # $PATH selects /usr/bin/python and /usr/local/bin/pip which are mismatched versions of Python\n #- name: PYTHON\n # value: python3\n #- name: PIP\n # value: pip3\n prologue:\n commands:\n - cache restore\n # prevents it getting stuck on config merge prompt on installing openssh-client pulling in openssh-server\n #\n # causes error:\n #\n # Not replacing deleted config file /etc/ssh/sshd_config\n #\n #- sudo rm -f /etc/ssh/sshd_config\n - export DEBIAN_FRONTEND=noninteractive\n - sudo -E apt-get update\n - sudo -E apt-get upgrade -y -o Dpkg::Options::=\"--force-confmiss\" -o Dpkg::Options::=\"--force-confnew\"\n - sudo dpkg --configure -a --force-confmiss --force-confnew\n #- echo \"openssh-server openssh-server/conffile-diff select keep\" | sudo debconf-set-selections\n #- sudo dpkg --configure -a --force-confdef --force-confold\n #- sudo apt-get upgrade -y -o Dpkg::Options::=\"--force-confdef\" -o Dpkg::Options::=\"--force-confold\"\n - sudo apt-get install -y openssh-server\n # each job is separate and could be run on a separate machine so all steps must be together\n jobs:\n - name: build\n commands:\n - checkout\n - setup/ci_bootstrap.sh\n - make init\n - make ci\n - make test\n epilogue:\n commands:\n - cache store\n - name: Mac build\n run:\n when: \"branch = 'master'\"\n task:\n # because otherwise on Mac it uses /usr/bin/python (2.7) but /usr/local/bin/pip (python 3.8)\n #env_vars:\n # to match /usr/local/bin/pip version from $PATH\n #- name: PYTHON\n # value: python3\n # must be quoted to force string, otherwise pipeline fails to run with this parsing error:\n # Error: [{\"Type mismatch. Expected String but got Integer.\", \"#/blocks/1/task/env_vars/1/value\"}]\n #- name: DEBUG\n # value: \"1\"\n agent:\n # https://docs.semaphoreci.com/reference/machine-types#macos\n machine:\n type: a1-standard-4\n os_image: macos-xcode15\n prologue:\n commands:\n - cache restore\n # fix for:\n # pip is configured with locations that require TLS/SSL, however the ssl module in Python is not available.\n - brew install openssl\n - brew reinstall python\n - brew reinstall wget\n # avoid Mac SSL errors:\n #\n # ERROR: Loading command: install (LoadError)\n # dlopen(/Users/semaphore/.rbenv/versions/2.5.1/lib/ruby/2.5.0/x86_64-darwin18/openssl.bundle, 9): Library not loaded: /usr/local/opt/openssl/lib/libssl.1.0.0.dylib\n # Referenced from: /Users/semaphore/.rbenv/versions/2.5.1/lib/ruby/2.5.0/x86_64-darwin18/openssl.bundle\n # Reason: image not found - /Users/semaphore/.rbenv/versions/2.5.1/lib/ruby/2.5.0/x86_64-darwin18/openssl.bundle\n # ERROR: While executing gem ... (NoMethodError)\n # undefined method `invoke_with_build_args' for nil:NilClass#\n #\n - rbenv global system\n # also considered this:\n # - for version in $(rbenv versions | grep -v system | sed 's/^\\*//'); do yes | rbenv uninstall \"$version\"; rbenv install \"$version\"; done\n #\n # fix for python vs pip version mismatch\n - ln -svf -- /usr/local/bin/python3 /usr/local/bin/python\n jobs:\n - name: build\n commands:\n - checkout\n - make init\n - make ci\n - make test\n epilogue:\n commands:\n - cache store\n" }, { "path": ".sonarcloud.properties", "content": "sonar.host.url=https://sonarcloud.io\n" }, { "path": ".sonarlint/connectedMode.json", "content": "{\n \"sonarCloudOrganization\": \"harisekhon\",\n \"projectKey\": \"HariSekhon_DevOps-Bash-tools\"\n}\n" }, { "path": ".terraformignore", "content": "#\n# Author: Hari Sekhon\n# Date: 2020-09-24 17:08:01 +0100 (Thu, 24 Sep 2020)\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Requires Terraform 0.12.11+\n#\n# Prevents upload of paths to Terraform Cloud\n#\n# Same format as .gitignore\n# - directories must end with forward slash /\n# - negate matches using !\n#\n# Only works at the root of the config directory\n\n# https://www.terraform.io/docs/backends/types/remote.html#excluding-files-from-upload-with-terraformignore\n\n# defaults\n.git/\n.terraform/\n\n# custom\n.hg/\n.svn/\n.ssh/\ngithub/\ngitroot/\nmercurial/\nhg/\nhgroot/\nsvn/\nsvnroot/\n\n# exclude all hidden dot files\n.*\n" }, { "path": ".trivyignore", "content": "#aws-access-key-id\n#aws-account-id\ngcp-service-account\n" }, { "path": ".zlogin", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-13 18:58:03 +0000 (Fri, 13 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Z S H L o g i n\n# ============================================================================ #\n" }, { "path": ".zlogout", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-13 18:58:03 +0000 (Fri, 13 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Z S H L o g o u t\n# ============================================================================ #\n" }, { "path": ".zprofile", "content": "#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n# (forked from .bash_profile)\n\n# ============================================================================ #\n# Z S H P r o f i l e\n# ============================================================================ #\n\n# goes horribly wrong - too much advanced bash\n#if [[ -e ~/.profile ]]; then\n# emulate sh -c 'source ~/.profile'\n#fi\n" }, { "path": ".zshenv", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-13 18:58:03 +0000 (Fri, 13 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Z S H E n v\n# ============================================================================ #\n\n# sourced by both interactive shells and scripts\n#\n# be careful with you put in here\n" }, { "path": ".zshrc", "content": "#!/usr/bin/env bash\n# shellcheck disable=SC1091\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2006-06-28 23:25:09 +0100 (Wed, 28 Jun 2006)\n# (forked from .bashrc)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Z S H\n# ============================================================================ #\n\n# https://wiki.archlinux.org/index.php/Zsh\n\n# goes horribly wrong - too much advanced bash\n#if [[ -e ~/.bashrc ]]; then\n# emulate sh -c 'source ~/.bashrc'\n#fi\n\nautoload -Uz compinit promptinit\ncompinit # completes ssh/scp/sftp hostnames as long as HashKnownHosts not set in ~/.ssh/config\npromptinit\n\n# prompt -l - list themes\n# prompt -p - preview themes\n#prompt suse\n\n# install Oh-My-ZSH\n# sh -c \"$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)\"\n\n# custom themes:\n# mkdir ~/.zprompts\n# fpath=(\"$HOME/.zprompts\" \"$fpath[@]\")\n\n# uniq all items in $PATH and $path array\ntypeset -U PATH path\npath=(\"$HOME/.local/bin\" \"$HOME/bin\" \"$path[@]\")\nexport PATH\n\n# autocompletion with an arrow-key driven interface - tab twice to enable\nzstyle ':completion:*' menu select\n\n# autocompletions with sudo\n# allows zsh completion scripts run commands with sudo privileges - do not enable if using untrusted autocompletion scripts!!\n#zstyle ':completion::complete:*' gain-privileges 1\n\n# ============================================================================ #\n# S e t t i n g s\n# ============================================================================ #\n\n# compatible style with other shells\n#set -o AUTO_CD\n# casse insensitive, underscores stripped\nsetopt AUTO_CD\n\nsetopt COMPLETE_ALIASES\n\nsetopt CORRECT\nexport SPROMPT=\"Correct %R to %r? [Yes, No, Abort, Edit] \"\n\nautoload U colors && colors\n\n# expand wilcard expansion on unquoted variables like Bash\nsetopt GLOB_SUBST\n\nexport PATH=\"$PATH:/opt/homebrew/bin/\"\n\n# ============================================================================ #\n# Oh-My-ZSH\n# ============================================================================ #\n\n# If you come from bash you might have to change your $PATH.\n# export PATH=$HOME/bin:/usr/local/bin:$PATH\n\n# Path to your oh-my-zsh installation.\nexport ZSH=\"/Users/hari.sekhon/.oh-my-zsh\"\n\n# Set name of the theme to load --- if set to \"random\", it will\n# load a random theme each time oh-my-zsh is loaded, in which case,\n# to know which specific one was loaded, run: echo $RANDOM_THEME\n# See https://github.com/ohmyzsh/ohmyzsh/wiki/Themes\nZSH_THEME=\"robbyrussell\"\n\n# also messed up\n#ZSH_THEME=\"agnoster\"\n\n# messes up both Terminal and iTerm2 from both brew and git cloned installations\n#if [ -f /usr/local/opt/powerlevel9k/powerlevel9k.zsh-theme ]; then\n# source /usr/local/opt/powerlevel9k/powerlevel9k.zsh-theme\n#fi\n#\n# Oh-My-ZSH ~/.oh-my-zsh/custom/themes/powerlevel9k\n#ZSH_THEME=\"powerlevel9k/powerlevel9k\"\n\n# Set list of themes to pick from when loading at random\n# Setting this variable when ZSH_THEME=random will cause zsh to load\n# a theme from this variable instead of looking in ~/.oh-my-zsh/themes/\n# If set to an empty array, this variable will have no effect.\n# ZSH_THEME_RANDOM_CANDIDATES=( \"robbyrussell\" \"agnoster\" )\n\n# Uncomment the following line to use case-sensitive completion.\n# CASE_SENSITIVE=\"true\"\n\n# Uncomment the following line to use hyphen-insensitive completion.\n# Case-sensitive completion must be off. _ and - will be interchangeable.\n# HYPHEN_INSENSITIVE=\"true\"\n\n# Uncomment the following line to disable bi-weekly auto-update checks.\n# DISABLE_AUTO_UPDATE=\"true\"\n\n# Uncomment the following line to automatically update without prompting.\n# DISABLE_UPDATE_PROMPT=\"true\"\n\n# Uncomment the following line to change how often to auto-update (in days).\n# export UPDATE_ZSH_DAYS=13\n\n# Uncomment the following line if pasting URLs and other text is messed up.\n# DISABLE_MAGIC_FUNCTIONS=true\n\n# Uncomment the following line to disable colors in ls.\n# DISABLE_LS_COLORS=\"true\"\n\n# Uncomment the following line to disable auto-setting terminal title.\n# DISABLE_AUTO_TITLE=\"true\"\n\n# Uncomment the following line to enable command auto-correction.\n# ENABLE_CORRECTION=\"true\"\n\n# Uncomment the following line to display red dots whilst waiting for completion.\n# COMPLETION_WAITING_DOTS=\"true\"\n\n# Uncomment the following line if you want to disable marking untracked files\n# under VCS as dirty. This makes repository status check for large repositories\n# much, much faster.\n# DISABLE_UNTRACKED_FILES_DIRTY=\"true\"\n\n# Uncomment the following line if you want to change the command execution time\n# stamp shown in the history command output.\n# You can set one of the optional three formats:\n# \"mm/dd/yyyy\"|\"dd.mm.yyyy\"|\"yyyy-mm-dd\"\n# or set a custom format using the strftime function format specifications,\n# see 'man strftime' for details.\n# HIST_STAMPS=\"mm/dd/yyyy\"\n\n# Would you like to use another custom folder than $ZSH/custom?\n# ZSH_CUSTOM=/path/to/new-custom-folder\n\n# Which plugins would you like to load?\n# Standard plugins can be found in ~/.oh-my-zsh/plugins/*\n# Custom plugins may be added to ~/.oh-my-zsh/custom/plugins/\n# Example format: plugins=(rails git textmate ruby lighthouse)\n# Add wisely, as too many plugins slow down shell startup.\nplugins=(git)\n\nsource $ZSH/oh-my-zsh.sh\n\n# User configuration\n\n# export MANPATH=\"/usr/local/man:$MANPATH\"\n\n# You may need to manually set your language environment\n# export LANG=en_US.UTF-8\n\n# Preferred editor for local and remote sessions\n# if [[ -n $SSH_CONNECTION ]]; then\n# export EDITOR='vim'\n# else\n# export EDITOR='mvim'\n# fi\n\n# Compilation flags\n# export ARCHFLAGS=\"-arch x86_64\"\n\n# Set personal aliases, overriding those provided by oh-my-zsh libs,\n# plugins, and themes. Aliases can be placed here, though oh-my-zsh\n# users are encouraged to define aliases within the ZSH_CUSTOM folder.\n# For a full list of active aliases, run `alias`.\n#\n# Example aliases\n# alias zshconfig=\"mate ~/.zshrc\"\n# alias ohmyzsh=\"mate ~/.oh-my-zsh\"\n\n# ============================================================================ #\n\n# Lines configured by zsh-newuser-install\nHISTFILE=~/.histfile\nHISTSIZE=1000\nSAVEHIST=1000\nsetopt appendhistory autocd extendedglob nomatch notify\nunsetopt beep\nbindkey -e\n# End of lines configured by zsh-newuser-install\n# The following lines were added by compinstall\nzstyle :compinstall filename '/home/hari/.zshrc'\nautoload -Uz compinit\ncompinit\n# End of lines added by compinstall\n\n# added by travis gem - Travis is legacy now, don't bother with this\n#[ -f /Users/hari/.travis/travis.sh ] && source /Users/hari/.travis/travis.sh\n\nif type -P direnv &>/dev/null; then\n eval \"$(direnv hook zsh)\"\nfi\n\nautoload -U +X bashcompinit && bashcompinit\ncomplete -o nospace -C /Users/hari/bin/terraform terraform\ncomplete -o nospace -C /Users/hari/bin/terraform tf\n\ncomplete -o nospace -C /usr/local/bin/terragrunt terragrunt\n\n#THIS MUST BE AT THE END OF THE FILE FOR SDKMAN TO WORK!!!\nexport SDKMAN_DIR=\"/Users/hari/.sdkman\"\n[[ -s \"/Users/hari/.sdkman/bin/sdkman-init.sh\" ]] && source \"/Users/hari/.sdkman/bin/sdkman-init.sh\"\n" }, { "path": "DOCKER_STATUS.md", "content": "# Docker Status Page\n\ngenerated by `docker_generate_status_page.sh` in [HariSekhon/DevOps-Bash-tools](https://github.com/HariSekhon/DevOps-Bash-tools)\n\nThis page relies on shields.io which is slow so a lot of it may not load properly the first time so you may need to do one or more page reloads to get all the badges to load.\n\n50 docker repos - `:latest` tag build status:\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/alluxio.svg)](https://hub.docker.com/r/harisekhon/alluxio/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/alluxio.svg)](https://hub.docker.com/r/harisekhon/alluxio) -\n[harisekhon/alluxio](https://hub.docker.com/r/harisekhon/alluxio)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/alpine-dev.svg)](https://hub.docker.com/r/harisekhon/alpine-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/alpine-dev.svg)](https://hub.docker.com/r/harisekhon/alpine-dev) -\n[harisekhon/alpine-dev](https://hub.docker.com/r/harisekhon/alpine-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/alpine-github.svg)](https://hub.docker.com/r/harisekhon/alpine-github/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/alpine-github.svg)](https://hub.docker.com/r/harisekhon/alpine-github) -\n[harisekhon/alpine-github](https://hub.docker.com/r/harisekhon/alpine-github)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/apache-drill.svg)](https://hub.docker.com/r/harisekhon/apache-drill/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/apache-drill.svg)](https://hub.docker.com/r/harisekhon/apache-drill) -\n[harisekhon/apache-drill](https://hub.docker.com/r/harisekhon/apache-drill)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/cassandra-dev.svg)](https://hub.docker.com/r/harisekhon/cassandra-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/cassandra-dev.svg)](https://hub.docker.com/r/harisekhon/cassandra-dev) -\n[harisekhon/cassandra-dev](https://hub.docker.com/r/harisekhon/cassandra-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/centos-dev.svg)](https://hub.docker.com/r/harisekhon/centos-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/centos-dev.svg)](https://hub.docker.com/r/harisekhon/centos-dev) -\n[harisekhon/centos-dev](https://hub.docker.com/r/harisekhon/centos-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/centos-github.svg)](https://hub.docker.com/r/harisekhon/centos-github/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/centos-github.svg)](https://hub.docker.com/r/harisekhon/centos-github) -\n[harisekhon/centos-github](https://hub.docker.com/r/harisekhon/centos-github)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/centos-java.svg)](https://hub.docker.com/r/harisekhon/centos-java/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/centos-java.svg)](https://hub.docker.com/r/harisekhon/centos-java) -\n[harisekhon/centos-java](https://hub.docker.com/r/harisekhon/centos-java)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/centos-scala.svg)](https://hub.docker.com/r/harisekhon/centos-scala/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/centos-scala.svg)](https://hub.docker.com/r/harisekhon/centos-scala) -\n[harisekhon/centos-scala](https://hub.docker.com/r/harisekhon/centos-scala)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/ci_intentionally_broken_test_do_not_use.svg)](https://hub.docker.com/r/harisekhon/ci_intentionally_broken_test_do_not_use/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/ci_intentionally_broken_test_do_not_use.svg)](https://hub.docker.com/r/harisekhon/ci_intentionally_broken_test_do_not_use) -\n[harisekhon/ci_intentionally_broken_test_do_not_use](https://hub.docker.com/r/harisekhon/ci_intentionally_broken_test_do_not_use)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/collectd.svg)](https://hub.docker.com/r/harisekhon/collectd/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/collectd.svg)](https://hub.docker.com/r/harisekhon/collectd) -\n[harisekhon/collectd](https://hub.docker.com/r/harisekhon/collectd)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/consul.svg)](https://hub.docker.com/r/harisekhon/consul/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/consul.svg)](https://hub.docker.com/r/harisekhon/consul) -\n[harisekhon/consul](https://hub.docker.com/r/harisekhon/consul)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/consul-dev.svg)](https://hub.docker.com/r/harisekhon/consul-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/consul-dev.svg)](https://hub.docker.com/r/harisekhon/consul-dev) -\n[harisekhon/consul-dev](https://hub.docker.com/r/harisekhon/consul-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/debian-dev.svg)](https://hub.docker.com/r/harisekhon/debian-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/debian-dev.svg)](https://hub.docker.com/r/harisekhon/debian-dev) -\n[harisekhon/debian-dev](https://hub.docker.com/r/harisekhon/debian-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/debian-github.svg)](https://hub.docker.com/r/harisekhon/debian-github/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/debian-github.svg)](https://hub.docker.com/r/harisekhon/debian-github) -\n[harisekhon/debian-github](https://hub.docker.com/r/harisekhon/debian-github)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/debian-java.svg)](https://hub.docker.com/r/harisekhon/debian-java/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/debian-java.svg)](https://hub.docker.com/r/harisekhon/debian-java) -\n[harisekhon/debian-java](https://hub.docker.com/r/harisekhon/debian-java)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/h2o.svg)](https://hub.docker.com/r/harisekhon/h2o/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/h2o.svg)](https://hub.docker.com/r/harisekhon/h2o) -\n[harisekhon/h2o](https://hub.docker.com/r/harisekhon/h2o)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/hadoop.svg)](https://hub.docker.com/r/harisekhon/hadoop/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/hadoop.svg)](https://hub.docker.com/r/harisekhon/hadoop) -\n[harisekhon/hadoop](https://hub.docker.com/r/harisekhon/hadoop)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/hadoop-dev.svg)](https://hub.docker.com/r/harisekhon/hadoop-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/hadoop-dev.svg)](https://hub.docker.com/r/harisekhon/hadoop-dev) -\n[harisekhon/hadoop-dev](https://hub.docker.com/r/harisekhon/hadoop-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/hbase.svg)](https://hub.docker.com/r/harisekhon/hbase/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/hbase.svg)](https://hub.docker.com/r/harisekhon/hbase) -\n[harisekhon/hbase](https://hub.docker.com/r/harisekhon/hbase)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/hbase-dev.svg)](https://hub.docker.com/r/harisekhon/hbase-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/hbase-dev.svg)](https://hub.docker.com/r/harisekhon/hbase-dev) -\n[harisekhon/hbase-dev](https://hub.docker.com/r/harisekhon/hbase-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/jython.svg)](https://hub.docker.com/r/harisekhon/jython/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/jython.svg)](https://hub.docker.com/r/harisekhon/jython) -\n[harisekhon/jython](https://hub.docker.com/r/harisekhon/jython)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/kafka.svg)](https://hub.docker.com/r/harisekhon/kafka/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/kafka.svg)](https://hub.docker.com/r/harisekhon/kafka) -\n[harisekhon/kafka](https://hub.docker.com/r/harisekhon/kafka)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/mesos.svg)](https://hub.docker.com/r/harisekhon/mesos/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/mesos.svg)](https://hub.docker.com/r/harisekhon/mesos) -\n[harisekhon/mesos](https://hub.docker.com/r/harisekhon/mesos)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/nagios-plugin-kafka.svg)](https://hub.docker.com/r/harisekhon/nagios-plugin-kafka/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/nagios-plugin-kafka.svg)](https://hub.docker.com/r/harisekhon/nagios-plugin-kafka) -\n[harisekhon/nagios-plugin-kafka](https://hub.docker.com/r/harisekhon/nagios-plugin-kafka)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/nagios-plugins.svg)](https://hub.docker.com/r/harisekhon/nagios-plugins/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/nagios-plugins.svg)](https://hub.docker.com/r/harisekhon/nagios-plugins) -\n[harisekhon/nagios-plugins](https://hub.docker.com/r/harisekhon/nagios-plugins)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/nifi.svg)](https://hub.docker.com/r/harisekhon/nifi/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/nifi.svg)](https://hub.docker.com/r/harisekhon/nifi) -\n[harisekhon/nifi](https://hub.docker.com/r/harisekhon/nifi)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/presto.svg)](https://hub.docker.com/r/harisekhon/presto/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/presto.svg)](https://hub.docker.com/r/harisekhon/presto) -\n[harisekhon/presto](https://hub.docker.com/r/harisekhon/presto)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/presto-cli.svg)](https://hub.docker.com/r/harisekhon/presto-cli/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/presto-cli.svg)](https://hub.docker.com/r/harisekhon/presto-cli) -\n[harisekhon/presto-cli](https://hub.docker.com/r/harisekhon/presto-cli)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/presto-cli-dev.svg)](https://hub.docker.com/r/harisekhon/presto-cli-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/presto-cli-dev.svg)](https://hub.docker.com/r/harisekhon/presto-cli-dev) -\n[harisekhon/presto-cli-dev](https://hub.docker.com/r/harisekhon/presto-cli-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/presto-dev.svg)](https://hub.docker.com/r/harisekhon/presto-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/presto-dev.svg)](https://hub.docker.com/r/harisekhon/presto-dev) -\n[harisekhon/presto-dev](https://hub.docker.com/r/harisekhon/presto-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/pytools.svg)](https://hub.docker.com/r/harisekhon/pytools/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/pytools.svg)](https://hub.docker.com/r/harisekhon/pytools) -\n[harisekhon/pytools](https://hub.docker.com/r/harisekhon/pytools)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/rabbitmq-cluster.svg)](https://hub.docker.com/r/harisekhon/rabbitmq-cluster/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/rabbitmq-cluster.svg)](https://hub.docker.com/r/harisekhon/rabbitmq-cluster) -\n[harisekhon/rabbitmq-cluster](https://hub.docker.com/r/harisekhon/rabbitmq-cluster)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/riak.svg)](https://hub.docker.com/r/harisekhon/riak/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/riak.svg)](https://hub.docker.com/r/harisekhon/riak) -\n[harisekhon/riak](https://hub.docker.com/r/harisekhon/riak)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/riak-dev.svg)](https://hub.docker.com/r/harisekhon/riak-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/riak-dev.svg)](https://hub.docker.com/r/harisekhon/riak-dev) -\n[harisekhon/riak-dev](https://hub.docker.com/r/harisekhon/riak-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/serf.svg)](https://hub.docker.com/r/harisekhon/serf/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/serf.svg)](https://hub.docker.com/r/harisekhon/serf) -\n[harisekhon/serf](https://hub.docker.com/r/harisekhon/serf)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/solr.svg)](https://hub.docker.com/r/harisekhon/solr/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/solr.svg)](https://hub.docker.com/r/harisekhon/solr) -\n[harisekhon/solr](https://hub.docker.com/r/harisekhon/solr)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/solrcloud.svg)](https://hub.docker.com/r/harisekhon/solrcloud/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/solrcloud.svg)](https://hub.docker.com/r/harisekhon/solrcloud) -\n[harisekhon/solrcloud](https://hub.docker.com/r/harisekhon/solrcloud)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/solrcloud-dev.svg)](https://hub.docker.com/r/harisekhon/solrcloud-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/solrcloud-dev.svg)](https://hub.docker.com/r/harisekhon/solrcloud-dev) -\n[harisekhon/solrcloud-dev](https://hub.docker.com/r/harisekhon/solrcloud-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/spark.svg)](https://hub.docker.com/r/harisekhon/spark/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/spark.svg)](https://hub.docker.com/r/harisekhon/spark) -\n[harisekhon/spark](https://hub.docker.com/r/harisekhon/spark)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/spotify-tools.svg)](https://hub.docker.com/r/harisekhon/spotify-tools/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/spotify-tools.svg)](https://hub.docker.com/r/harisekhon/spotify-tools) -\n[harisekhon/spotify-tools](https://hub.docker.com/r/harisekhon/spotify-tools)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/superset.svg)](https://hub.docker.com/r/harisekhon/superset/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/superset.svg)](https://hub.docker.com/r/harisekhon/superset) -\n[harisekhon/superset](https://hub.docker.com/r/harisekhon/superset)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/tachyon.svg)](https://hub.docker.com/r/harisekhon/tachyon/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/tachyon.svg)](https://hub.docker.com/r/harisekhon/tachyon) -\n[harisekhon/tachyon](https://hub.docker.com/r/harisekhon/tachyon)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/tcollector.svg)](https://hub.docker.com/r/harisekhon/tcollector/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/tcollector.svg)](https://hub.docker.com/r/harisekhon/tcollector) -\n[harisekhon/tcollector](https://hub.docker.com/r/harisekhon/tcollector)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/tools.svg)](https://hub.docker.com/r/harisekhon/tools/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/tools.svg)](https://hub.docker.com/r/harisekhon/tools) -\n[harisekhon/tools](https://hub.docker.com/r/harisekhon/tools)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/ubuntu-dev.svg)](https://hub.docker.com/r/harisekhon/ubuntu-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/ubuntu-dev.svg)](https://hub.docker.com/r/harisekhon/ubuntu-dev) -\n[harisekhon/ubuntu-dev](https://hub.docker.com/r/harisekhon/ubuntu-dev)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/ubuntu-github.svg)](https://hub.docker.com/r/harisekhon/ubuntu-github/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/ubuntu-github.svg)](https://hub.docker.com/r/harisekhon/ubuntu-github) -\n[harisekhon/ubuntu-github](https://hub.docker.com/r/harisekhon/ubuntu-github)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/ubuntu-java.svg)](https://hub.docker.com/r/harisekhon/ubuntu-java/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/ubuntu-java.svg)](https://hub.docker.com/r/harisekhon/ubuntu-java) -\n[harisekhon/ubuntu-java](https://hub.docker.com/r/harisekhon/ubuntu-java)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/zookeeper.svg)](https://hub.docker.com/r/harisekhon/zookeeper/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/zookeeper.svg)](https://hub.docker.com/r/harisekhon/zookeeper) -\n[harisekhon/zookeeper](https://hub.docker.com/r/harisekhon/zookeeper)\n\n[![Docker Build Status](https://img.shields.io/docker/cloud/build/harisekhon/zookeeper-dev.svg)](https://hub.docker.com/r/harisekhon/zookeeper-dev/builds)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/zookeeper-dev.svg)](https://hub.docker.com/r/harisekhon/zookeeper-dev) -\n[harisekhon/zookeeper-dev](https://hub.docker.com/r/harisekhon/zookeeper-dev)\n\n" }, { "path": "Gemfile", "content": "#\n# Author: Hari Sekhon\n# Date: 2022-05-13 15:25:18 +0100 (Fri, 13 May 2022)\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# G e m f i l e\n# ============================================================================ #\n\n# https://bundler.io/gemfile.html\n\n# This isn't automatically installed since ruby code is not much used in this repo\n\n# see also:\n#\n# setup/gem-packages.txt\n# setup/gem-packages-desktop.txt # optional for desktop use\n\nsource 'https://rubygems.org'\n\ngem 'cfn-nag'\ngem 'json'\ngem 'gitlab'\n" }, { "path": "Jenkinsfile", "content": "// vim:ts=4:sts=4:sw=4:et:filetype=groovy:syntax=groovy\n//\n// Author: Hari Sekhon\n// Date: 2017-06-28 12:39:02 +0200 (Wed, 28 Jun 2017)\n//\n// https://github.com/HariSekhon/DevOps-Bash-tools\n//\n// License: see accompanying Hari Sekhon LICENSE file\n//\n// If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n//\n// https://www.linkedin.com/in/HariSekhon\n//\n\n// ========================================================================== //\n// J e n k i n s P i p e l i n e\n// ========================================================================== //\n\n// Epic Jenkinsfile template:\n//\n// https://github.com/HariSekhon/Templates/blob/master/Jenkinsfile\n\n\n// Official Documentation:\n//\n// https://jenkins.io/doc/book/pipeline/syntax/\n//\n// https://www.jenkins.io/doc/pipeline/steps/\n//\n// https://www.jenkins.io/doc/pipeline/steps/workflow-basic-steps/\n\n\npipeline {\n // to run on Docker or Kubernetes, see the master Jenkinsfile template listed at the top\n agent any\n\n options {\n timestamps()\n\n timeout(time: 2, unit: 'HOURS')\n }\n\n triggers {\n cron('H 10 * * 1-5')\n pollSCM('H/2 * * * *')\n }\n\n stages {\n stage ('Checkout') {\n steps {\n checkout([$class: 'GitSCM', branches: [[name: '*/master']], doGenerateSubmoduleConfigurations: false, extensions: [], submoduleCfg: [], userRemoteConfigs: [[credentialsId: '', url: 'https://github.com/HariSekhon/DevOps-Bash-tools']]])\n }\n }\n\n stage('Build') {\n steps {\n echo \"Running ${env.JOB_NAME} Build ${env.BUILD_ID} on ${env.JENKINS_URL}\"\n echo 'Building...'\n timeout(time: 10, unit: 'MINUTES') {\n retry(3) {\n// sh 'apt update -q'\n// sh 'apt install -qy make'\n// sh 'make init'\n sh \"\"\"\n setup/ci_bootstrap.sh &&\n make init\n \"\"\"\n }\n }\n timeout(time: 180, unit: 'MINUTES') {\n sh 'make ci'\n }\n }\n }\n\n stage('Test') {\n options {\n retry(2)\n }\n steps {\n echo 'Testing...'\n timeout(time: 120, unit: 'MINUTES') {\n sh 'make test'\n }\n }\n }\n }\n}\n" }, { "path": "LICENSE", "content": "Copyright 2016 Hari Sekhon\n\nPermission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:\n\nThe above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.\n\nTHE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n" }, { "path": "Makefile", "content": "#\n# Author: Hari Sekhon\n# Date: 2016-01-17 12:56:53 +0000 (Sun, 17 Jan 2016)\n#\n# vim:ts=4:sts=4:sw=4:noet\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\ninclude Makefile.in\n\nREPO := HariSekhon/DevOps-Bash-tools\n\nCONF_FILES := $(shell sed \"s/\\#.*//; /^[[:space:]]*$$/d\" setup/files.txt)\n\n#CODE_FILES := $(shell find . -type f -name '*.sh' -o -type f -name '.bash*' | sort)\n#CODE_FILES := $(shell git ls-files | grep -E -e '\\.sh$$' -e '\\.bash[^/]*$$' -e '\\.groovy$$' | sort)\nCODE_FILES := $(shell \\\n\tif type git >/dev/null 2>&1; then \\\n\t\tgit ls-files | \\\n\t\tgrep -E -e '\\.sh$$' -e '\\.bash[^/]*$$' -e '\\.groovy$$' | \\\n\t\tsort | \\\n\t\twhile read -r filepath; do \\\n\t\t\ttest -f \"$$filepath\" || continue; \\\n\t\t\ttest -d \"$$filepath\" && continue; \\\n\t\t\ttest -L \"$$filepath\" && continue; \\\n\t\t\techo \"$$filepath\"; \\\n\t\tdone; \\\n\telse \\\n\t\tfind . -type f; \\\n\tfi \\\n)\n\n\nBASH_PROFILE_FILES := $(shell echo .bashrc .bash_profile .bash.d/*.sh)\n\n#.PHONY: *\n\nCURRENT_BRANCH := $(shell git rev-parse --abbrev-ref HEAD)\nTRUNK_BRANCH := $(shell git symbolic-ref refs/remotes/origin/HEAD | sed 's|.*/||')\n\nDEFAULT_TITLE := [GD-00] - merge $(CURRENT_BRANCH) to $(TRUNK_BRANCH)\n\ntitle ?= $(DEFAULT_TITLE)\n\n# ===================\ndefine MAKEFILE_USAGE\n\n Repo specific options:\n\n make install builds all script dependencies, installs AWS CLI, GitHub CLI, symlinks all config files to $$HOME and adds sourcing of bash profile\n\n make link symlinks all config files to $$HOME and adds sourcing of bash profile\n make unlink removes all symlinks pointing to this repo's config files and removes the sourcing lines from .bashrc and .bash_profile\n\n make python-desktop installs all Python Pip packages for desktop workstation listed in setup/pip-packages-desktop.txt\n make perl-desktop installs all Perl CPAN packages for desktop workstation listed in setup/cpan-packages-desktop.txt\n make ruby-desktop installs all Ruby Gem packages for desktop workstation listed in setup/gem-packages-desktop.txt\n make golang-desktop installs all Golang packages for desktop workstation listed in setup/go-packages-desktop.txt\n make nodejs-desktop installs all NodeJS packages for desktop workstation listed in setup/npm-packages-desktop.txt\n\n make desktop installs all of the above + many desktop OS packages listed in setup/\n\n make mac-desktop all of the above + installs a bunch of major common workstation software packages like Ansible, Terraform, MiniKube, MiniShift, SDKman, Travis CI, CCMenu, Parquet tools etc.\n make linux-desktop\n\n make ls-scripts print list of scripts in this project, ignoring code libraries in lib/ and .bash.d/\n\n make github-cli installs GitHub CLI\n make kubernetes installs Kubernetes kubectl and kustomize to ~/bin/\n make terraform installs Terraform to ~/bin/\n make vim installs Vundle and plugins\n make tmux installs TMUX TPM and plugin for kubernetes context\n make ccmenu installs and (re)configures CCMenu to watch this and all other major HariSekhon GitHub repos\n make status open the Github Status page of all my repos build statuses across all CI platforms\n\n make aws installs AWS CLI tools\n make azure installs Azure CLI\n make gcp installs Google Cloud SDK\n\n make aws-shell sets up AWS Cloud Shell: installs core packages and links configs\n (maintains itself across future Cloud Shells via .aws_customize_environment hook)\n make gcp-shell sets up GCP Cloud Shell: installs core packages and links configs\n (maintains itself across future Cloud Shells via .customize_environment hook)\n make azure-shell sets up Azure Cloud Shell (limited compared to gcp-shell, doesn't install OS packages since there is no sudo)\nendef\n\n# not including azure here because it requires interactive prompt and hangs automatic testing of make docker-*\n.PHONY: build\nbuild:\n\t@echo ================\n\t@echo Bash Tools Build\n\t@echo ================\n\t@$(MAKE) git-summary\n\t@$(MAKE) init\n\t@$(MAKE) system-packages\n\t@$(MAKE) aws github-cli\n\n.PHONY: init\ninit: git\n\t@echo \"running init:\"\n\tgit submodule update --init --recursive\n\t@echo\n\n.PHONY: install\ninstall: build\n\t@$(MAKE) link\n\t@$(MAKE) aws\n\t@$(MAKE) gcp\n\t@$(MAKE) github-cli\n\t@$(MAKE) pip\n\n.PHONY: uninstall\nuninstall: unlink\n\t@echo \"Not removing any system packages for safety\"\n\n.PHONY: bash\nbash: link\n\t@:\n\n.PHONY: link\nlink:\n\t@setup/shell_link.sh\n\n.PHONY: unlink\nunlink:\n\t@setup/shell_unlink.sh\n\n.PHONY: mac-desktop\nmac-desktop: desktop\n\t@setup/mac_desktop.sh\n\n.PHONY: mac\nmac: mac-desktop\n\t@:\n\n.PHONY: linux-desktop\nlinux-desktop: desktop\n\t@setup/linux_desktop.sh\n\n.PHONY: linux\nlinux: linux-desktop\n\t@:\n\n.PHONY:\nccmenu:\n\t@setup/ccmenu_setup.sh\n\n.PHONY: desktop\ndesktop: install\n\t@if [ -x /sbin/apk ]; then $(MAKE) apk-packages-desktop; fi\n\t@if [ -x /usr/bin/apt-get ]; then $(MAKE) apt-packages-desktop; fi\n\t@if [ -x /usr/bin/yum ]; then $(MAKE) yum-packages-desktop; fi\n\t@if [ `uname` = Darwin ]; then \\\n\t\tif type brew >/dev/null 2>/dev/null; then \\\n\t\t\t$(MAKE) homebrew-packages-desktop; \\\n\t\tfi; \\\n\tfi\n\t@# do these late so that we have the above system packages installed first to take priority and not install from source where we don't need to\n\t@$(MAKE) perl-desktop\n\t@$(MAKE) golang-desktop\n\t@$(MAKE) nodejs-desktop\n\t@$(MAKE) ruby-desktop\n\t@# no packages any more since jgrep is no longer found\n\t@#$(MAKE) ruby-desktop\n\n.PHONY: apk-packages-desktop\napk-packages-desktop: system-packages\n\t@echo \"Alpine desktop not supported at this time\"\n\t@exit 1\n\n.PHONY: apt-packages-desktop\napt-packages-desktop: system-packages\n\tNO_FAIL=1 NO_UPDATE=1 $(BASH_TOOLS)/packages/apt_install_packages.sh setup/deb-packages-desktop.txt\n\n.PHONY: yum-packages-desktop\nyum-packages-desktop: system-packages\n\tNO_FAIL=1 NO_UPDATE=1 $(BASH_TOOLS)/packages/yum_install_packages.sh setup/rpm-packages-desktop.txt\n\n.PHONY: homebrew-packages-desktop\nhomebrew-packages-desktop: system-packages homebrew\n\t@:\n\n.PHONY: brew-packages-desktop\nbrew-packages-desktop: homebrew-packages-desktop\n\t@:\n\n.PHONY: homebrew\nhomebrew: system-packages brew\n\t@:\n\n.PHONY: brew\nbrew:\n\twhich -a brew || install/install_homebrew.sh\n\twhich -a wget || brew install wget\n\tNO_FAIL=1 NO_UPDATE=1 $(BASH_TOOLS)/packages/brew_install_packages_if_absent.sh setup/brew-packages-desktop.txt\n\tNO_FAIL=1 NO_UPDATE=1 CASK=1 $(BASH_TOOLS)/packages/brew_install_packages_if_absent.sh setup/brew-packages-desktop-casks.txt\n\t@# doesn't pass the packages correctly yet\n\t@#NO_FAIL=1 NO_UPDATE=1 TAP=1 $(BASH_TOOLS)/packages/brew_install_packages.sh setup/brew-packages-desktop-taps.txt\n\tNO_FAIL=1 NO_UPDATE=1 TAP=1 $(BASH_TOOLS)/packages/brew_install_packages.sh setup/brew-packages-desktop-taps.txt\n\n.PHONY: perl-desktop\nperl-desktop: system-packages cpan-desktop\n\t@:\n\n.PHONY: cpan-desktop\ncpan-desktop: cpan\n\tNO_FAIL=1 NO_UPDATE=1 $(BASH_TOOLS)/perl/perl_cpanm_install_if_absent.sh setup/cpan-packages-desktop.txt\n\n.PHONY: golang-desktop\ngolang-desktop: system-packages go-desktop\n\t@:\n\n.PHONY: go-desktop\ngo-desktop: system-packages go\n\t@:\n\n.PHONY: go\ngo:\n\tNO_FAIL=1 $(BASH_TOOLS)/packages/golang_install_if_absent.sh setup/go-packages-desktop.txt\n\n.PHONY: ruby-desktop\nruby-desktop: system-packages gem-desktop\n\t@:\n\n.PHONY: gem-desktop\ngem-desktop: gem\n\tNO_FAIL=1 $(BASH_TOOLS)/packages/ruby_gem_install_if_absent.sh setup/gem-packages-desktop.txt\n\n.PHONY: python-desktop\npython-desktop: system-packages pip-desktop\n\n.PHONY: pip\npip-desktop: pip\n\tPIP=$(PIP) ./python/python_pip_install_if_absent.sh setup/pip-packages-desktop.txt\n\tif uname -s | grep -q Darwin; then \\\n\t\tPIP=$(PIP) ./python/python_pip_install_if_absent.sh setup/pip-packages-mac.txt; \\\n\tfi\n\n.PHONY: nodejs-desktop\nnodejs-desktop: system-packages npm-desktop\n\n.PHONY: npm-desktop\nnpm-desktop: npm\n\t$(BASH_TOOLS)/packages/nodejs_npm_install_if_absent.sh $(BASH_TOOLS)/setup/npm-packages-desktop.txt\n\n.PHONY: aws\naws: system-packages python-version\n\t@if ! command -v aws; then install/install_aws_cli.sh; fi\n# @$(MAKE) codecommit\n#\n#.PHONY: codecommit\n#codecommit:\n\t@# needed for github_mirror_repos_to_aws_codecommit.sh and dependent GitHub Actions workflows\n\t@if uname -s | grep -q Darwin; then \\\n\t\txargs(){ \\\n\t\t\tgxargs \"$$@\"; \\\n\t\t}; \\\n\tfi; \\\n\tgrep '^git-remote-codecommit' requirements.txt | \\\n\tPIP=$(PIP) xargs --no-run-if-empty ./python/python_pip_install_if_absent.sh || :\n\n.PHONY: aws-shell\naws-shell:\n\t@if [ \"${AWS_EXECUTION_ENV:-}\" != \"CloudShell\" ]; then echo \"Not running inside AWS Cloud Shell\"; exit 1; fi\n\t@$(MAKE) system-packages aws link\n\n.PHONY: azure\nazure: system-packages\n\t@install/install_azure_cli.sh\n\n.PHONY: azure-shell\nazure-shell: link\n\t:\n\n.PHONY: gcp\ngcp: system-packages\n\t@./install/install_gcloud_sdk.sh\n\t@./install/install_cloud_sql_proxy.sh\n\n.PHONY: gcp-shell\ngcp-shell:\n\t@if [ -z \"${DEVSHELL_PROJECT_ID:-}\" ]; then echo \"Not running inside Google Cloud Shell\"; exit 1; fi\n\t@$(MAKE) system-packages link\n\n.PHONY: github-cli\ngithub-cli: ~/bin/gh\n\t@:\n\n~/bin/gh:\n\tinstall/install_github_cli.sh\n\n.PHONY:\ndigital-ocean: ~/bin/doctl\n\t@:\n\n~/bin/doctl:\n\tinstall/install_doctl.sh\n\n.PHONY: kubernetes\nkubernetes: kubectl kustomize\n\t@:\n\n.PHONY: k8s\nk8s: kubernetes\n\t@:\n\n.PHONY: kubectl\nkubectl: ~/bin/kubectl\n\t@:\n\n~/bin/kubectl:\n\tinstall/install_kubectl.sh\n\n.PHONY: kustomize\nkustomize: ~/bin/kustomize\n\t@:\n\n~/bin/kustomize:\n\tinstall/install_kustomize.sh\n\n.PHONY: vim\nvim: ~/.vim/bundle/Vundle.vim\n\t@:\n\n~/.vim/bundle/Vundle.vim:\n\tinstall/install_vundle.sh\n\n.PHONY: tmux\ntmux: ~/.tmux/plugins/tpm ~/.tmux/plugins/kube.tmux\n\t@:\n\n~/.tmux/plugins/tpm:\n\tgit clone https://github.com/tmux-plugins/tpm ~/.tmux/plugins/tpm\n\n~/.tmux/plugins/kube.tmux:\n\twget -O ~/.tmux/plugins/kube.tmux https://raw.githubusercontent.com/jonmosco/kube-tmux/master/kube.tmux\n\n.PHONY: test\ntest:\n\t./checks/check_all.sh\n\n.PHONY: clean\nclean:\n\t@rm -fv -- setup/terraform.zip\n\n.PHONY: ls-scripts\nls-scripts:\n\t@$(MAKE) ls | grep -v -e 'lib/' -e '\\.bash'\n\n.PHONY: ls-scripts2\nls-scripts2:\n\t@$(MAKE) ls | grep -v -e 'lib/' -e '\\.bash' -e 'setup/'\n\n.PHONY: wcbashrc\nwcbashrc:\n\t@wc $(BASH_PROFILE_FILES)\n\t@printf \"Total Bash Profile files: \"\n\t@ls $(BASH_PROFILE_FILES) | wc -l\n\n.PHONY: wcbash\nwcbash: wcbashrc\n\t@:\n\n.PHONY: wcbashrc2\nwcbashrc2:\n\t@printf \"Total Bash Profile files: \"\n\t@ls $(BASH_PROFILE_FILES) | wc -l\n\t@printf \"Total line count without # comments: \"\n\t@ls $(BASH_PROFILE_FILES) | xargs sed 's/#.*//;/^[[:space:]]*$$/d' | wc -l\n\n.PHONY: wcbash2\nwcbash2: wcbashrc2\n\t@:\n\n.PHONY: pipreqs-mapping\npipreqs-mapping:\n\t#wget -O resources/pipreqs_mapping.txt https://raw.githubusercontent.com/HariSekhon/pipreqs/mysql-python/pipreqs/mapping\n\twget -O resources/pipreqs_mapping.txt https://raw.githubusercontent.com/bndr/pipreqs/master/pipreqs/mapping\n.PHONY: pip-mapping\npip-mapping: pipreqs-mapping\n\t@:\n\n.PHONY: status-page\nstatus-page:\n\t./cicd/generate_status_page.sh; . .bash.d/git.sh; gitu STATUS.md\n\n.PHONY: dialog-install\ndialog-install:\n\tinstall/install_packages.sh dialog\n\n# Raise Pull Requests from the command line like this:\n#\n#\tYou need GitHub CLI installed ('make' installs it for you) and authenticated eg.:\n#\n#\t\tgh auth login\n#\n#\t\t# https://cli.github.com/manual/gh_auth_login\n#\n#\tExample:\n#\n#\t\tmake pr title=\"Hari code to avoid clicking\"\n#\n.PHONY: pr\npr: dialog-install\n\tgit push --set-upstream origin \"$(CURRENT_BRANCH)\"\n\tif [ -z \"$$GITHUB_PULL_REQUEST_TITLE\" ]; then \\\n\t\tif [ \"$(title)\" = \"$(DEFAULT_TITLE)\" ]; then \\\n\t\t\tGITHUB_PULL_REQUEST_TITLE=\"$$(dialog --inputbox \"Pull Request Title:\" 8 40 \"$(DEFAULT_TITLE)\" 3>&1 1>&2 2>&3)\"; \\\n\t\telse \\\n\t\t\tGITHUB_PULL_REQUEST_TITLE=\"$(title)\"; \\\n\t\tfi; \\\n\tfi; \\\n\texport GITHUB_PULL_REQUEST_TITLE; \\\n\tgithub_pull_request_create.sh \\\n\t\t\"$(REPO)\" \\\n\t\t\"$(CURRENT_BRANCH)\" \\\n\t\t\"$(TRUNK_BRANCH)\"\n\n# raise a PR in one command with Auto-Merge enabled - use this for trivial PRs of low / no impact like MkDocs updates\n.PHONY: auto-pr\nauto-pr: update\n\t@# - if GITHUB_PULL_REQUEST_AUTO_MERGE=true then marks the PR for auto-merge once it is approved and passes pre-requisite checks\n\t@# - if GITHUB_PULL_REQUEST_SQUASH=true while GITHUB_PULL_REQUEST_AUTO_MERGE=true then it marks\n\t@# the PR's auto-merge to be done using a squash commit to avoid any CLI prompt for how to merge it\n\tGITHUB_PULL_REQUEST_AUTO_MERGE=true \\\n\tGITHUB_PULL_REQUEST_SQUASH=true \\\n\t$(MAKE) pr\n\n# Example:\n#\n#\tmake autopr title=\"Documented something\"\n#\n.PHONY: autopr\nautopr: auto-pr\n\t@:\n\n.PHONY: sync\nsync:\n\tsync_configs_to_adjacent_repos.sh\n" }, { "path": "Makefile.in", "content": "#\n# Author: Hari Sekhon\n# Date: 2013-02-03 10:25:36 +0000 (Sun, 03 Feb 2013)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback\n# to help improve or steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nifneq (\"$(wildcard bash-tools)\", \"\")\n\tBASH_TOOLS := bash-tools\nelse\n\tBASH_TOOLS := .\nendif\n\n# would fail bootstrapping on Alpine\n#SHELL := /usr/bin/env bash\n\nexport PATH := $(PATH):/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin:/opt/homebrew/bin\n\n# Python breaking backwards compatibility as usual - set this to use historic behaviour and treat the user like an adult\n# this way if the install is run for --user instead of in a virtualenv it'll still work\nexport PIP_BREAK_SYSTEM_PACKAGES := 1\n\nDOCKER_IMAGE := harisekhon/github\n\nifneq (\"$(wildcard /.dockerenv)\", \"\")\n\tINSIDE_DOCKER := 1\nelse\n\tINSIDE_DOCKER :=\nendif\n\nCODE_FILES := $(shell \\\n\tif type git >/dev/null 2>&1; then \\\n\t\tgit ls-files | \\\n\t\twhile read filepath; do \\\n\t\t\ttest -f \"$$filepath\" || continue; \\\n\t\t\ttest -d \"$$filepath\" & continue; \\\n\t\t\ttest -L \"$$filepath\" & continue; \\\n\t\t\techo \"$$filepath\"; \\\n\t\tdone; \\\n\tfi \\\n)\n\nCPANM := cpanm\nexport PIP := pip3\nexport PYTHON := python3\n\nFATPACKS_DIR := fatpacks\n\nSUDO := sudo\nSUDO_PIP := sudo -H\nSUDO_PERL := sudo\n\nPYTHON_VIRTUALENV :=\n\nifdef PERLBREW_PERL\n\t# can't put this here, nor @commented, otherwise gets error - \"commands commence before first target. Stop.\"\n\t#echo \"Perlbrew environment detected, not calling sudo\"\n\tSUDO_PERL =\nelse\n\tPERLBREW_PERL :=\nendif\n\n# Travis has custom python install earlier in $PATH even in Perl builds so need to install PyPI modules locally to non-system python otherwise they're not found by programs.\n# Perms not set correctly on custom python install in Travis perl build so workaround is done to chown to travis user in .travis.yml\n# Better than modifying $PATH to put /usr/bin first which is likely to affect many other things including potentially not finding the perlbrew installation first\n# Looks like Perl travis builds are now using system Python - do not use TRAVIS env\nifdef VIRTUAL_ENV\n\t#echo \"Virtual Env / Conda detected, not calling sudo\"\n\tSUDO_PIP :=\n\tPYTHON_VIRTUALENV := 1\nendif\nifdef CONDA_DEFAULT_ENV\n\tSUDO_PIP :=\n\tPYTHON_VIRTUALENV := 1\nendif\n\n# must come after to reset SUDO_PERL/SUDO_PIP to blank if root\n# EUID / UID not exported in Make\n# USER not populated in Docker\nifeq '$(shell id -u)' '0'\n\t#echo \"root UID detected, not calling sudo\"\n\tSUDO :=\n\tSUDO_PERL :=\n\tSUDO_PIP :=\nendif\n\n# placeholders to silence check_makefile.sh warnings - should be set in client Makefiles after sourcing\nifndef REPO\n\tREPO := NOTSET\nendif\nifndef ARGS\n\tARGS := NOTSET\nendif\nifndef CONF_FILES\n\tCONF_FILES := NOTSET\nendif\n\ndefine MAKEFILE_USAGE_COMMON\n\n Usage:\n\n Common Options:\n\n make help show this message\n make build installs all dependencies - OS packages and any language libraries via native tools eg. pip, cpanm, gem, go etc that are not available via OS packages\n make build-retry retries 'make build' x 3 until success to try to mitigate temporary upstream repo failures triggering false alerts in CI systems\n make ci prints env, then runs 'build-retry' for more resilient CI builds with debugging\n make printenv prints environment variables, CPU cores, OS release, $$PWD, Git branch, hashref etc. Useful for CI debugging\n make system-packages installs OS packages only (detects OS via whichever package manager is available)\n make test run tests\n make clean removes compiled / generated files, downloaded tarballs, temporary files etc.\n\n make submodules initialize and update submodules to the right release (done automatically by build / system-packages)\n make init same as above, often useful to do in CI systems to get access to additional submodule provided targets such as 'make ci'\n\n make cpan install any modules listed in any cpan-requirements.txt files if not already installed\n make gem install any modules listed in any gem-requirements.txt files if not already installed\n make npm install any modules listed in any npm-requirements.txt files if not already installed\n make pip install any modules listed in any requirements.txt files if not already installed\n\n make python-compile compile any python files found in the current directory and 1 level of subdirectory\n make pycompile\n\n make github open browser at github project\n make readme open browser at github's README\n make github-url print github url and copy to clipboard\n make status open browser at Github CI Builds overview Status page for all projects\n\n make ls print list of code files in project\n make wc show counts of files and lines\n\nendef\n #make ${VENV} make a virtualenv in the base directory (see VENV)\n #make pip-install install python packages in requirements.txt\n #make git-config set local git configuration\nexport MAKEFILE_USAGE_COMMON\nexport MAKEFILE_USAGE\n\n# doesn't seem to work\n#.DEFAULT: build\n#\t@echo running default\n#\t$(MAKE) build\n\n# won't be run the first time - will default to first target which will only then initialize submodules\n.PHONY: default\ndefault: git printenv\n\t@$(MAKE) main\n\n.PHONY: printenv\nprintenv: git\n\t@ printf \"CPU Cores: \"; nproc 2>/dev/null || sysctl -n hw.ncpu 2>/dev/null; :\n\t@ # $$USER not always set in sh\n\t@ # printf \"Git hashref: \"; git rev-parse HEAD\n\t@ # printf \"Git hashref: \"; git log --pretty=format:'%H' -n 1\n\t@ # printf \"Git branch: \"; git branch --show-current # doesn't work on Alpine\n\t@ # printf \"Git branch: \"; git show-branch --current # prints too many branches\n\t@ # sort --ignore-case switch not available on Alpine, must use sort -f which is available on both Mac and all Linux distros\n\t@ . $(BASH_TOOLS)/lib/ci.sh || : ; \\\n\t\tif is_CI || test -f /.dockerenv; then \\\n\t\t\techo; \\\n\t\t\techo \"USER = `whoami`\"; \\\n\t\t\techo \"PWD = $$PWD\"; \\\n\t\t\techo; \\\n\t\t\tprintf \"Git branch: \"; git rev-parse --abbrev-ref HEAD; \\\n\t\t\tprintf \"Git commit: \"; git log --pretty=format:\"%ai %cn %H %s\" -n 1; echo; \\\n\t\t\techo; \\\n\t\t\tif [ -f /.dockerenv ]; then \\\n\t\t\t\techo \"Running inside Docker:\"; \\\n\t\t\t\tls -l /.dockerenv 2>/dev/null; \\\n\t\t\tfi; \\\n\t\t\techo; \\\n\t\t\techo \"OS RELEASE:\"; \\\n\t\t\techo; \\\n\t\t\tuname -a || : ; \\\n\t\t\techo; \\\n\t\t\tcat /etc/*release || : ; \\\n\t\t\techo; \\\n\t\t\tunset MAKEFILE_USAGE; \\\n\t\t\tunset MAKEFILE_USAGE_COMMON; \\\n\t\t\tunset TERMCAP; \\\n\t\t\techo; \\\n\t\t\techo \"CI ENVIRONMENT:\"; \\\n\t\t\techo; \\\n\t\t\tenv | grep -vi -e PASS -e TOKEN -e KEY -e SECRET | sort -f; \\\n\t\t\techo; \\\n\t\t\techo; \\\n\t\t\tif which java 2>/dev/null; then \\\n\t\t\t\twhich java; \\\n\t\t\t\tjava -version; \\\n\t\t\t\techo; \\\n\t\t\tfi; \\\n\t\t\techo \"PATH:\"; echo \"$$PATH\" | tr ':' '\\n'; \\\n\t\t\techo; \\\n\t\telse \\\n\t\t\tenv | grep -E 'BUILD|PIPELINE|JOB|STAGE|\\' tests because the exit 3 doesn't actually get called and leads make to think there is a matching target, which then fail to execute\n# catchall - any unrecognized target will print usage\n#%::\n#\t@# don't use less, it will make target tests hang\n#\t@echo Unrecognized option $@; \\\n#\techo; \\\n#\t$(MAKE) usage;\n\n.PHONY: quick\nquick:\n\tQUICK=1 $(MAKE) build\n\n.PHONY: git\ngit:\n\t@# not using install_packages_if_absent.sh as we don't need a package on Mac, it comes with XCode\n\ttype git 2>/dev/null || $(BASH_TOOLS)/packages/install_packages.sh git\n\n.PHONY: submodules\nsubmodules: git\n\t@echo \"checking out any git submodules:\"\n\tgit submodule update --init --recursive\n\t@echo\n\n.PHONY: git-clean\ngit-clean: git\n\t@git clean -n -d\n\t@printf \"\\n\\n%s\" \"If you're happy with this list, run:\"\n\t@printf \"\\n\\n%s\\n\\n\" \"git clean -f -d\"\n\n.PHONY: gitignore\ngitignore:\n\t$(BASH_TOOLS)/git/update_gitignore.io.sh\n\n.PHONY: btest\nbtest: bash-test\n\t@:\n\n.PHONY: bash-test\nbash-test:\n\t$(BASH_TOOLS)/checks/check_all.sh\n\n.PHONY: test\n#test: precommit\ntest: bash-test\n\t@:\n\nprecommit: pre-commit\n\t@:\n\npre-commit:\n\tpre-commit run --all-files\n\n.PHONY: push\npush: test\n\tgit push\n\n.PHONY: system-packages\nsystem-packages: submodules\n\tif [ -x /sbin/apk ]; then $(MAKE) apk-packages; fi\n\tif [ -x /usr/bin/apt-get ]; then $(MAKE) apt-packages; fi\n\t@# /usr/bin/yum is a symlink to dnf-3 on newer RHEL systems, so fails -x /usr/bin/yum\n\tif [ -e /usr/bin/yum ]; then $(MAKE) yum-packages; fi\n\t@# /usr/local/bin/brew on older macOS\n\t@# /opt/homebrew/bin/brew on newer macOS\n\tif which -a brew && [ `uname` = Darwin ]; then $(MAKE) homebrew-packages; fi\n\n.PHONY: system-packages-perl\nsystem-packages-perl: system-packages\n\tif [ -x /sbin/apk ]; then $(MAKE) apk-packages-perl; fi\n\tif [ -x /usr/bin/apt-get ]; then $(MAKE) apt-packages-perl; fi\n\t@# /usr/bin/yum is a symlink to dnf-3 on newer RHEL systems, so fails -x /usr/bin/yum\n\tif [ -e /usr/bin/yum ]; then $(MAKE) yum-packages-perl; fi\n\n.PHONY: system-packages-python\nsystem-packages-python: system-packages\n\tif [ -x /sbin/apk ]; then $(MAKE) apk-packages-python; fi\n\tif [ -x /usr/bin/apt-get ]; then $(MAKE) apt-packages-python; fi\n\t@# /usr/bin/yum is a symlink to dnf-3 on newer RHEL systems, so fails -x /usr/bin/yum\n\tif [ -e /usr/bin/yum ]; then $(MAKE) yum-packages-python; fi\n\n.PHONY: apk-packages\napk-packages:\n\t# not portable in Alpine sh\n\t#for x in apk-packages{,-perl,-python}{,-dev}.txt; do \\\n\n\tfor x in apk-packages.txt apk-packages-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\t#for x in apk-packages-{optional,cpan,pip}.txt; do \\\n\n\tfor x in apk-packages-optional.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\n.PHONY: apk-packages-perl\napk-packages-perl:\n\tfor x in apk-packages-perl.txt apk-packages-perl-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\t#for x in apk-packages-{optional,cpan,pip}.txt; do \\\n\n\t# don't put comments inside the for loop, breaks syntax expecting 'done'\n\t# no point installing system cpan packages if using perlbrew as they won't be found inside perlbrew\n\tfor x in apk-packages-cpan.txt; do \\\n\t\tif [ -z \"$(PERLBREW_PERL)\" ]; then \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tfi; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\n.PHONY: apk-packages-python\napk-packages-python:\n\tfor x in apk-packages-python.txt apk-packages-python-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\t# no point installing system pip packages when they won't be found in virtualenv and will need to be pip installed anyway\n\tfor x in apk-packages-pip.txt; do \\\n\t\tif [ -z \"$(PYTHON_VIRTUALENV)\" ]; then \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tfi; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apk_install_packages.sh\"\n\n.PHONY: apt-packages\napt-packages:\n\t#for x in deb-packages{,-perl,-python}{,-dev}.txt; do \\\n\n\tfor x in deb-packages.txt deb-packages-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\t#for x in deb-packages-{optional,cpan,pip}.txt; do \\\n\n\tfor x in deb-packages-optional.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\n.PHONY: apt-packages-perl\napt-packages-perl:\n\tfor x in deb-packages-perl.txt deb-packages-perl-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\tfor x in deb-packages-cpan.txt; do \\\n\t\tif [ -z \"$(PERLBREW_PERL)\" ] && \\\n\t\t [ -z \"$(GOOGLE_CLOUD_SHELL)\" ]; then \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tfi; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\n.PHONY: apt-packages-python\napt-packages-python:\n\tfor x in deb-packages-python.txt deb-packages-python-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\tfor x in deb-packages-pip.txt; do \\\n\t\tif [ -z \"$(PYTHON_VIRTUALENV)\" ] && \\\n\t\t [ -z \"$(GOOGLE_CLOUD_SHELL)\" ]; then \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tfi; \\\n\tdone | NO_FAIL=1 NO_UPDATE=1 xargs \"$(BASH_TOOLS)/packages/apt_install_packages.sh\"\n\n.PHONY: yum-packages\nyum-packages:\n\t# needed for Fedora to have find and xargs to use below\n\t\"$(BASH_TOOLS)/packages/yum_install_packages.sh\" findutils\n\n\t# if on Amazon Linux 2 install epel this way\n\tif type -P amazon-linux-extras; then \\\n\t\t$(SUDO) amazon-linux-extras install epel -y; \\\n\tfi\n\t$(BASH_TOOLS)/install/install_epel_repo.sh\n\n\t# installing packages individually to catch package install failure, otherwise yum succeeds even if it misses a package\n\tfor x in rpm-packages.txt rpm-packages-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"\n\tfor x in rpm-packages-optional.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"\n\n.PHONY: yum-packages-perl\nyum-packages-perl:\n\t# installing packages individually to catch package install failure, otherwise yum succeeds even if it misses a package\n\tfor x in rpm-packages-perl.txt rpm-packages-perl-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"\n\tfor x in rpm-packages-cpan.txt; do \\\n\t\tif [ -z \"$(PERLBREW_PERL)\" ]; then \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tfi; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"\n\n.PHONY: yum-packages-python\nyum-packages-python:\n\t# installing packages individually to catch package install failure, otherwise yum succeeds even if it misses a package\n\tfor x in rpm-packages-python.txt rpm-packages-python-dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"\n\t. \"$(BASH_TOOLS)/lib/python.sh\"; \\\n\tset +o pipefail || : ; \\\n\tif ! inside_virtualenv; then \\\n\t\tfor x in rpm-packages-pip.txt; do \\\n\t\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\t\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/yum_install_packages.sh\"; \\\n\tfi\n\n.PHONY: homebrew-packages\nhomebrew-packages:\n\t# Fails if any of the packages are already installed, ignore and continue - if it's a problem the latest build steps will fail with missing headers\n\tfor x in brew-packages.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/brew_install_packages.sh\"\n\t@# fix for OpenSSL 1.0 -> 1.1 library linkage breaking python -c 'import hashlib', which break pips, eg:\n\t@# https://stackoverflow.com/questions/20399331/error-importing-hashlib-with-python-2-7-but-not-with-2-6\n\t$(BASH_TOOLS)/setup/brew_fix_openssl_dependencies.sh\n\n.PHONY: system-packages-remove\nsystem-packages-remove:\n\tif [ -x /sbin/apk ]; then $(MAKE) apk-packages-remove; fi\n\tif [ -x /usr/bin/apt-get ]; then $(MAKE) apt-packages-remove; fi\n\tif [ -x /usr/bin/yum ]; then $(MAKE) yum-packages-remove; fi\n\n.PHONY: apk-packages-remove\napk-packages-remove:\n\tfor x in apk-packages-{,perl-,python-}dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/apk_remove_packages.sh\"\n\t$(SUDO) rm -fr -- /var/cache/apk/*\n\n.PHONY: apt-packages-remove\napt-packages-remove:\n\tfor x in deb-packages-{,perl-,python-}dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/apt_remove_packages.sh\"\n\n.PHONY: yum-packages-remove\nyum-packages-remove:\n\tfor x in rpm-packages-{,perl-,python-}dev.txt; do \\\n\t\tfind . -maxdepth 3 -path \"*/setup/$$x\"; \\\n\tdone | NO_FAIL=1 xargs \"$(BASH_TOOLS)/packages/yum_remove_packages.sh\"\n\n.PHONY: cpan\ncpan::\n\tfind . -maxdepth 3 -path '*/setup/cpan-requirements*.txt' | grep -v cpan-requirements-optional.txt | xargs --no-run-if-empty \"$(BASH_TOOLS)/perl/perl_cpanm_install_if_absent.sh\"\n\t@$(MAKE) cpan-optional\n\n.PHONY: cpan-optional\ncpan-optional::\n\tfind . -maxdepth 3 -path '*/setup/cpan-requirements-optional.txt' | NO_FAIL=1 xargs --no-run-if-empty \"$(BASH_TOOLS)/perl/perl_cpanm_install_if_absent.sh\"\n\n.PHONY: gems\ngems:: gem\n\t@:\n\n.PHONY: gem\ngem::\n\tfind . -maxdepth 3 -path '*/setup/gem-packages.txt' | xargs --no-run-if-empty \"$(BASH_TOOLS)/packages/ruby_gem_install_if_absent.sh\"\n\t@$(MAKE) gem-optional\n\n.PHONY: gem-optional\ngem-optional::\n\tfind . -maxdepth 3 -path '*/setup/gem-packages-optional.txt' | NO_FAIL=1 PIP=\"$(PIP)\" xargs --no-run-if-empty \"$(BASH_TOOLS)/packages/ruby_gem_install_if_absent.sh\"\n\n.PHONY: npm\nnpm::\n\tfind . -maxdepth 3 -path '*/setup/npm-requirements.txt' -o -path '*/setup/npm-packages.txt' | xargs --no-run-if-empty \"$(BASH_TOOLS)/packages/nodejs_npm_install_if_absent.sh\"\n\t@$(MAKE) npm-optional\n\n.PHONY: npm-optional\nnpm-optional::\n\tfind . -maxdepth 3 -path '*/setup/npm-requirements-optional.txt' | NO_FAIL=1 xargs --no-run-if-empty \"$(BASH_TOOLS)/packages/nodejs_npm_install_if_absent.sh\"\n\n.PHONY: pip\npip::\n\tfind . -maxdepth 3 -path '*/requirements.txt' | PIP=\"$(PIP)\" xargs --no-run-if-empty \"$(BASH_TOOLS)/python/python_pip_install_if_absent.sh\"\n\t@$(MAKE) pip-optional\n\n.PHONY: pip-optional\npip-optional::\n\tfind . -maxdepth 3 -path '*/requirements-optional.txt' | NO_FAIL=1 PIP=\"$(PIP)\" xargs --no-run-if-empty \"$(BASH_TOOLS)/python/python_pip_install_if_absent.sh\"\n\n.PHONY: pip-user\npip-user::\n\tPYTHON_USER_INSTALL=1 $(MAKE) pip\n\n.PHONY: fatpacks\nfatpacks:\n\t$(BASH_TOOLS)/perl/perl_generate_fatpacks.sh *.pl\n\t@echo\n\t@if [ -d lib/resources ]; then \\\n\t\tcp -av -- lib/resources fatpacks/; \\\n\tfi\n\t@if $(MAKE) -n fatpacks-local >/dev/null 2>&1; then \\\n\t\techo; \\\n\t\techo \"fatpacks-local target detected, running:\"; \\\n\t\t$(MAKE) fatpacks-local; \\\n\tfi\n\t@echo\n\t@if [ -n \"`ls \"$(FATPACKS_DIR)\"`\" ]; then \\\n\t\ttar czvf fatpacks.tar.gz \"$(FATPACKS_DIR)\"; \\\n\t\techo; \\\n\t\techo \"Generated fatpacks.tar.gz containing $(FATPACKS_DIR)/ directory of perl scripts with all dependencies bundled\"; \\\n\tfi\n\n.PHONY: fatpack\nfatpack: fatpacks\n\t@:\n\n.PHONY: python-compile\npython-compile:\n\t$(BASH_TOOLS)/python/python_compile.sh\n\n.PHONY: pycompile\npycompile: python-compile\n\t@:\n\n.PHONY: python-version\npython-version:\n\t$(BASH_TOOLS)/setup/which_python_installed.sh\n\n.PHONY: golang-version\ngolang-version:\n\t@echo && \\\n\twhich go && \\\n\tls -l `which go` && \\\n\techo && \\\n\tgo version || : ; \\\n\techo\n\n.PHONY: go-version\ngo-version: golang-version\n\t@:\n\n.PHONY: golang-clean\ngolang-clean:\n\t@$(BASH_TOOLS)/packages/golang_rm_binaries.sh\n\n.PHONY: go-clean\ngo-clean: golang-clean\n\t@:\n\n# =======================\n# Nice tricks for pure Python projects\n# - borrowed from https://gist.github.com/bsmith89/c6811893c1cbd2a72cc1d144a197bef2#file-makefile\n\n#VENV = .venv\n#export VIRTUAL_ENV := $(abspath ${VENV})\n\n# putting the venv/bin at the start of the path means that the venv python will be called\n# and the venv libraries used automatically, so no need to 'source .venv/bin/activate' first\n# although it misses the hash flush 'hash -r' that the venv activate script does\n#export PATH := ${VIRTUAL_ENV}/bin:${PATH}\n\n#${VENV}:\n# python3 -m venv \"$@\"\n\n#pip-install: requirements.txt | ${VENV}\n# pip install --upgrade -r requirements.txt\n# =======================\n\n.PHONY: sonar\nsonar:\n\tsonar-scanner\n\n.PHONY: update\nupdate: update2\n\t@# putting this here instead of inline dep because otherwise check_makefile.sh will fail the target as build target doesn't exist in this Makefile.in\n\t@$(MAKE) build\n\n.PHONY: update2\nupdate2: update-no-recompile\n\t@:\n\n.PHONY: update-no-recompile\nupdate-no-recompile:\n\tgit pull --no-edit\n\t$(MAKE) submodules\n\n.PHONY: update-submodules\nupdate-submodules:\n\tgit submodule update --init --remote\n.PHONY: updatem\nupdatem: update-submodules\n\t@:\n\n.PHONY: docker-run\ndocker-run:\n\tdocker run -ti --rm ${DOCKER_IMAGE} ${ARGS}\n\n.PHONY: run\nrun: docker-run\n\t@:\n\n.PHONY: concourse\nconcourse:\n\t$(BASH_TOOLS)/cicd/concourse.sh\n\n.PHONY: fly\nfly: concourse\n\t@:\n\n.PHONY: docker-mount\ndocker-mount:\n\t# --privileged=true is needed to be able to:\n\t# mount -t tmpfs -o size=1m tmpfs /mnt/ramdisk\n\tdocker run -ti --rm --privileged=true -v $$PWD:/code ${DOCKER_IMAGE} bash -c \"cd /code; exec bash\"\n\n.PHONY: docker-mount-alpine\ndocker-mount-alpine:\n\t# --privileged=true is needed to be able to:\n\t# mount -t tmpfs -o size=1m tmpfs /mnt/ramdisk\n\tdocker run -ti --rm --privileged=true -v $$PWD:/code ${DOCKER_IMAGE}:alpine bash -c \"cd /code; exec bash\"\n\n.PHONY: docker-mount-debian\ndocker-mount-debian:\n\t# --privileged=true is needed to be able to:\n\t# mount -t tmpfs -o size=1m tmpfs /mnt/ramdisk\n\tdocker run -ti --rm --privileged=true -v $$PWD:/code ${DOCKER_IMAGE}:debian bash -c \"cd /code; exec bash\"\n\n.PHONY: docker-mount-centos\ndocker-mount-centos:\n\t# --privileged=true is needed to be able to:\n\t# mount -t tmpfs -o size=1m tmpfs /mnt/ramdisk\n\tdocker run -ti --rm --privileged=true -v $$PWD:/code ${DOCKER_IMAGE}:centos bash -c \"cd /code; exec bash\"\n\n.PHONY: docker-mount-ubuntu\ndocker-mount-ubuntu:\n\t# --privileged=true is needed to be able to:\n\t# mount -t tmpfs -o size=1m tmpfs /mnt/ramdisk\n\tdocker run -ti --rm --privileged=true -v $$PWD:/code ${DOCKER_IMAGE}:ubuntu bash -c \"cd /code; exec bash\"\n\n.PHONY: mount\nmount: docker-mount\n\t@:\n\n.PHONY: mount-alpine\nmount-alpine: docker-mount-alpine\n\t@:\n\n.PHONY: mount-debian\nmount-debian: docker-mount-debian\n\t@:\n\n.PHONY: mount-centos\nmount-centos: docker-mount-centos\n\t@:\n\n.PHONY: mount-ubuntu\nmount-ubuntu: docker-mount-ubuntu\n\t@:\n\n# checks dockerhub build status for this repo - needs check_dockerhub_repo_build_status.py from Advanced Nagios Plugins Collection to be in $PATH\n.PHONY: dockerhub-status\ndockerhub-status:\n\tcheck_dockerhub_repo_build_status.py -r \"$(DOCKER_IMAGE)\"\n\n# For quick testing only - for actual Dockerfile builds see https://hub.docker.com/u/harisekhon and Dockerfiles source repo https://github.com/HariSekhon/Dockerfiles\n.PHONY: docker-alpine\ndocker-alpine:\n\t$(BASH_TOOLS)/docker/docker_mount_build_exec.sh alpine\n\n.PHONY: docker-debian\ndocker-debian:\n\t$(BASH_TOOLS)/docker/docker_mount_build_exec.sh debian\n\n.PHONY: docker-centos\ndocker-centos:\n\t$(BASH_TOOLS)/docker/docker_mount_build_exec.sh centos\n\n.PHONY: docker-fedora\ndocker-fedora:\n\t$(BASH_TOOLS)/docker/docker_mount_build_exec.sh fedora\n\n.PHONY: docker-ubuntu\ndocker-ubuntu:\n\t$(BASH_TOOLS)/docker/docker_mount_build_exec.sh ubuntu\n\n.PHONY: travis\ntravis:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://travis-ci.org/$(REPO)\"\n\n.PHONY: travis-log\ntravis-log:\n\ttravis_last_log.py --failed $(REPO)\n\n.PHONY: travis-debug\ntravis-debug:\n\ttravis_debug_session.py $(REPO)\n\n.PHONY: browse\nbrowse: github\n\t@:\n\n.PHONY: commitcount\ncommitcount:\n\t@# interestingly, even on 10,000 commit repos, there are no duplicate short hashes shown from:\n\t@# git log --all --pretty=format:\"%h\" | sort | uniq -d\n\t@git log --all --pretty=format:\"%h\" | wc -l\n\n.PHONY: github\ngithub:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://github.com/$(REPO)\"\n\n.PHONY: github-url\ngithub-url:\n\t@. $(BASH_TOOLS)/.bash.d/functions.sh; echo \"https://github.com/$(REPO)\" | tee /dev/stderr | tr -d '\\n' | paste_clipboard\n\n.PHONY: gitlab\ngitlab:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://gitlab.com/$(REPO)\"\n\n.PHONY: gitlab-url\ngitlab-url:\n\t@. $(BASH_TOOLS)/.bash.d/functions.sh; echo \"https://gitlab.com/$(REPO)\" | tee /dev/stderr | tr -d '\\n' | paste_clipboard\n\n.PHONY: bitbucket\nbitbucket:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://bitbucket.org/$(REPO)/src/master/\"\n\n.PHONY: bitbucket-url\nbitbucket-url:\n\t@. $(BASH_TOOLS)/.bash.d/functions.sh; echo \"https://bitbucket.org/$(REPO)/src/master/\" | tee /dev/stderr | tr -d '\\n' | paste_clipboard\n\n.PHONY: status\nstatus:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://bitbucket.org/HariSekhon/DevOps-Bash-tools/src/master/STATUS.md\"\n\n.PHONY: readme\nreadme:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://github.com/$(REPO)/blob/master/README.md\"\n\n.PHONY: issues\nissues:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://github.com/$(REPO)/issues\"\n\n.PHONY: github\ndockerhub:\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; browser \"https://hub.docker.com/u/harisekhon\"\n\n.PHONY: dockerhub-url\ndockerhub-url:\n\t@. $(BASH_TOOLS)/.bash.d/functions.sh; echo \"https://hub.docker.com/u/harisekhon\" | tee /dev/stderr | tr -d '\\n' | paste_clipboard\n\n.PHONY: startrack\nstartrack:\n\t@echo \"Don't run this too much, you will hit an API limit against your IP\"\n\t@. $(BASH_TOOLS)/.bash.d/network.sh; \\\n\tbrowser \"https://seladb.github.io/StarTrack-js/?\\\n\tu=$$(sed 's/\\/.*//' <<< \"$(REPO)\")\\\n\t&r=$$(sed 's/.*\\///' <<< \"$(REPO)\")\"\n\n.PHONY: star\nstar: startrack\n\t@:\n\n.PHONY: allstars\nallstars:\n\t@echo \"Takes a while, don't run this all the time or you will hit an API limit against your IP\"\n\t@REPOS=\"Nagios-Plugins Dockerfiles DevOps-Python-tools DevOps-Perl-tools DevOps-Bash-Tools Nagios-Plugin-Kafka HAProxy-configs\"; \\\n\t. $(BASH_TOOLS)/.bash.d/network.sh; \\\n\tbrowser \"https://seladb.github.io/StarTrack-js/#/preload?\\\n\t$$(\\\n\t\tfor repo in $$REPOS; do \\\n\t\t\tprintf \"%s\" \"&r=HariSekhon,$$repo\"; \\\n\t\tdone | \\\n\t\tsed 's/\\&//'\\\n\t)\"\n\n.PHONY: ls\nls:\n\t@echo $(CODE_FILES) | tr ' ' '\\n' | sort\n\n.PHONY: wc\nwc:\n\tif [ -x wc.sh ]; then ./wc.sh; exit 1; fi\n\t@# CODE_FILES := definitions in Makefiles must not be quoted or will get wc error 'open: File name too long'\n\t@wc -l $(CODE_FILES)\n\t@printf 'Total Lines:\\t\\t\\t'\n\t@cat $(CODE_FILES) | wc -l | sed 's/[[:space:]]//g'\n\t@printf 'Total Lines without # comments:\\t'\n\t@sed 's/#.*//;/^[[:space:]]*$$/d' $(CODE_FILES) | wc -l | sed 's/[[:space:]]//g'\n\t@printf 'Total Files:\\t\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | wc -l | sed 's/[[:space:]]//g'\n\t@printf 'of which not the following:\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -Ev -e '\\.bash' \\\n\t\t\t\t\t\t\t\t\t\t\t\t-e lib/ \\\n\t\t\t\t\t\t\t\t\t\t\t\t-e install/ \\\n\t\t\t\t\t\t\t\t\t\t\t\t-e setup/ \\\n\t\t\t\t\t\t\t\t\t\t\t\t-e 'tests*/' \\\n\t\t\t\t\t\t\t\t\t\t\t\t-e vagrant/ \\\n\t\t\t\t\t\t\t\t\t\t\t\t| wc -l | sed 's/[[:space:]]//g'\n\t@printf 'of which .bash*:\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -c '\\.bash'\n\t@printf 'of which lib/:\\t\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -c lib/\n\t@printf 'of which install/:\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -c install/\n\t@printf 'of which setup/:\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -c setup/\n\t@printf 'of which test(s)/:\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -Ec 'tests*/'\n\t@printf 'of which vagrant/:\\t\\t'\n\t@tr ' ' '\\n' <<< \"$(CODE_FILES)\" | grep -c vagrant/\n\nmdl:\n\t@echo \"Checking Markdown for issues\"\n\t@echo\n\t@if .mdl.rb; then \\\n\t\tmdl -s .mdl.rb *.md; \\\n\telse \\\n\t\tmdl *.md; \\\n\tfi\n\n# finds .swp, would need to port out code lists\n#.PHONY: wcall\n#wcall:\n#\tfind . -type f --not -path '*.git*' -exec cat {} \\; | wc -l\n#\n#.PHONY: wcall\n#wcall:\n#\tfind . -type f -not -path '*.git*' -exec sed 's/#.*//;/^[[:space:]]*$$/d' {} \\; | wc -l\n\n.PHONY: repos\nrepos:\n\t@if ! grep -q \"OTHER_REPOS_START\" README.md || \\\n\t\t! grep -q \"OTHER_REPOS_END\" README.md || \\\n\t\t! grep -q \"More Core Repos\" README.md; then \\\n\t\techo \"Adding More Core Repos section to README.md\"; \\\n\t\tprintf '\\n## More Core Repos\\n\\n\\n\\n\\n' >> README.md; \\\n\tfi; \\\n\tmarkdown_replace_repos.sh\n\nmac-exclude-backups:\n\t@for path in $(MAC_TIME_MACHINE_BACKUP_EXCLUDE_PATHS); do \\\n\t\tif [[ \"$${path:0:1}\" != / ]]; then \\\n\t\t\tpath=\"$$PWD/$$path\"; \\\n\t\tfi; \\\n\t\techo \"Excluding: $$path\"; \\\n\t\tsudo tmutil addexclusion -p \"$$path\"; \\\n\tdone\n\nnobackup:\n\t@if uname | grep -q Darwin; then \\\n\t\t$(MAKE) mac-exclude-backups; \\\n\tfi\n" }, { "path": "README.md", "content": "# Hari Sekhon - DevOps Bash Tools\n\n[![GitHub stars](https://img.shields.io/github/stars/harisekhon/devops-bash-tools?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/harisekhon/devops-bash-tools?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/network)\n[![LineCount](https://sloc.xyz/github/HariSekhon/DevOps-Bash-tools/?badge-bg-color=2081C2)](https://github.com/boyter/scc/)\n[![Cocomo](https://sloc.xyz/github/HariSekhon/DevOps-Bash-tools/?badge-bg-color=2081C2&category=cocomo)](https://github.com/boyter/scc/)\n[![License](https://img.shields.io/badge/license-MIT-green)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/LICENSE)\n[![My LinkedIn](https://img.shields.io/badge/LinkedIn%20Profile-HariSekhon-blue?logo=data:image/svg%2bxml;base64,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)](https://www.linkedin.com/in/HariSekhon/)\n[![GitHub Last Commit](https://img.shields.io/github/last-commit/HariSekhon/DevOps-Bash-tools?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/commits/master)\n\n[![Codacy](https://app.codacy.com/project/badge/Grade/dffc1bfd13404c95b5a0ab97fd47974e)](https://www.codacy.com/gh/HariSekhon/DevOps-Bash-tools/dashboard)\n[![CodeFactor](https://www.codefactor.io/repository/github/harisekhon/devops-bash-tools/badge)](https://www.codefactor.io/repository/github/harisekhon/devops-bash-tools)\n[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=HariSekhon_DevOps-Bash-tools&metric=alert_status)](https://sonarcloud.io/dashboard?id=HariSekhon_DevOps-Bash-tools)\n[![Maintainability Rating](https://sonarcloud.io/api/project_badges/measure?project=HariSekhon_DevOps-Bash-tools&metric=sqale_rating)](https://sonarcloud.io/dashboard?id=HariSekhon_DevOps-Bash-tools)\n[![Reliability Rating](https://sonarcloud.io/api/project_badges/measure?project=HariSekhon_DevOps-Bash-tools&metric=reliability_rating)](https://sonarcloud.io/dashboard?id=HariSekhon_DevOps-Bash-tools)\n[![Security Rating](https://sonarcloud.io/api/project_badges/measure?project=HariSekhon_DevOps-Bash-tools&metric=security_rating)](https://sonarcloud.io/dashboard?id=HariSekhon_DevOps-Bash-tools)\n[![Vulnerabilities](https://sonarcloud.io/api/project_badges/measure?project=HariSekhon_DevOps-Bash-tools&metric=vulnerabilities)](https://sonarcloud.io/summary/new_code?id=HariSekhon_DevOps-Bash-tools)\n\n\n\n[![Linux](https://img.shields.io/badge/OS-Linux-blue?logo=linux)](#hari-sekhon---devops-bash-tools)\n[![Mac](https://img.shields.io/badge/OS-Mac-blue?logo=apple)](#hari-sekhon---devops-bash-tools)\n[![Docker](https://img.shields.io/badge/container-Docker-blue?logo=docker&logoColor=white)](https://hub.docker.com/r/harisekhon/bash-tools)\n[![Dockerfile](https://img.shields.io/badge/repo-Dockerfiles-blue?logo=docker&logoColor=white)](https://github.com/HariSekhon/Dockerfiles)\n[![DockerHub Pulls](https://img.shields.io/docker/pulls/harisekhon/bash-tools?label=DockerHub%20pulls&logo=docker&logoColor=white)](https://hub.docker.com/r/harisekhon/bash-tools)\n[![StarTrack](https://img.shields.io/badge/Star-Track-blue?logo=github)](https://seladb.github.io/StarTrack-js/#/preload?r=HariSekhon,Nagios-Plugins&r=HariSekhon,Dockerfiles&r=HariSekhon,DevOps-Python-tools&r=HariSekhon,DevOps-Perl-tools&r=HariSekhon,DevOps-Bash-tools&r=HariSekhon,HAProxy-configs&r=HariSekhon,SQL-scripts)\n[![StarCharts](https://img.shields.io/badge/Star-Charts-blue?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/STARCHARTS.md)\n\n[![Mac Homebrew](https://img.shields.io/badge/Mac-Homebrew-999999?logo=apple&logoColor=white)](https://brew.sh/)\n[![Alpine](https://img.shields.io/badge/Linux-Alpine-0D597F?logo=alpine%20linux)](https://alpinelinux.org/)\n[![CentOS](https://img.shields.io/badge/Linux-CentOS-262577?logo=centos&logoColor=white)](https://www.centos.org/)\n[![Debian](https://img.shields.io/badge/Linux-Debian-A81D33?logo=debian)](https://www.debian.org/)\n[![Fedora](https://img.shields.io/badge/Linux-Fedora-294172?logo=fedora&logoColor=white)](https://getfedora.org/)\n[![Redhat](https://img.shields.io/badge/Linux-Redhat-EE0000?logo=red%20hat)](https://www.redhat.com/en)\n[![Rocky](https://img.shields.io/badge/Linux-Rocky-10B981?logo=rockylinux&logoColor=white)](https://rockylinux.org/)\n[![Ubuntu](https://img.shields.io/badge/Linux-Ubuntu-E95420?logo=ubuntu&logoColor=white)](https://ubuntu.com/)\n\n\n\n\n\n[![CI Builds Overview](https://img.shields.io/badge/CI%20Builds-Overview%20Page-blue?logo=circleci)](https://harisekhon.github.io/CI-CD/)\n[![Jenkins](https://img.shields.io/badge/Jenkins-ready-blue?logo=jenkins&logoColor=white)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/Jenkinsfile)\n[![Concourse](https://img.shields.io/badge/Concourse-ready-blue?logo=concourse&logoColor=white)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/cicd/.concourse.yml)\n[![GoCD](https://img.shields.io/badge/GoCD-ready-blue?logo=go&logoColor=white)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/cicd/.gocd.yml)\n[![TeamCity](https://img.shields.io/badge/TeamCity-ready-blue?logo=teamcity)](https://github.com/HariSekhon/TeamCity-CI)\n\n[![CircleCI](https://circleci.com/gh/HariSekhon/DevOps-Bash-tools.svg?style=svg)](https://circleci.com/gh/HariSekhon/DevOps-Bash-tools)\n[![BuildKite](https://img.shields.io/buildkite/f11bdd9690a9bac9a8edc6094dc2f2b9af3218a7a15d4ec17d/master?label=BuildKite&logo=buildkite)](https://buildkite.com/hari-sekhon/devops-bash-tools)\n[![AppVeyor](https://img.shields.io/appveyor/build/harisekhon/devops-bash-tools/master?logo=appveyor&label=AppVeyor)](https://ci.appveyor.com/project/HariSekhon/devops-bash-tools/branch/master)\n[![Drone](https://img.shields.io/drone/build/HariSekhon/DevOps-Bash-tools/master?logo=drone&label=Drone)](https://cloud.drone.io/HariSekhon/DevOps-Bash-tools)\n[![Codefresh](https://g.codefresh.io/api/badges/pipeline/harisekhon/GitHub%2FDevOps-Bash-tools?branch=master&key=eyJhbGciOiJIUzI1NiJ9.NWU1MmM5OGNiM2FiOWUzM2Y3ZDZmYjM3.O69674cW7vYom3v5JOGKXDbYgCVIJU9EWhXUMHl3zwA&type=cf-1)](https://g.codefresh.io/pipelines/edit/new/builds?id=5e53eaeea284e010982eaa6e&pipeline=DevOps-Bash-tools&projects=GitHub&projectId=5e52ca8ea284e00f882ea992&context=github&filter=page:1;pageSize:10;timeFrameStart:week)\n[![Cirrus CI](https://img.shields.io/cirrus/github/HariSekhon/DevOps-Bash-tools/master?logo=Cirrus%20CI&label=Cirrus%20CI)](https://cirrus-ci.com/github/HariSekhon/DevOps-Bash-tools)\n[![Semaphore](https://harisekhon.semaphoreci.com/badges/DevOps-Bash-tools.svg)](https://harisekhon.semaphoreci.com/projects/DevOps-Bash-tools)\n[![Buddy](https://img.shields.io/badge/Buddy-ready-1A86FD?logo=buddy)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/buddy.yml)\n[![Shippable](https://img.shields.io/badge/Shippable-legacy-lightgrey?logo=jfrog&label=Shippable)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/shippable.yml)\n[![Travis CI](https://img.shields.io/badge/TravisCI-ready-blue?logo=travis&label=Travis%20CI)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/travis/.travis.yml)\n[![Reviewed by Hound](https://img.shields.io/badge/Reviewed%20by-Hound-8E64B0.svg)](https://houndci.com)\n\n[![Repo on GitHub](https://img.shields.io/badge/repo-GitHub-2088FF?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools)\n[![Repo on GitLab](https://img.shields.io/badge/repo-GitLab-FCA121?logo=gitlab)](https://gitlab.com/HariSekhon/DevOps-Bash-tools)\n[![Repo on Azure DevOps](https://img.shields.io/badge/repo-Azure%20DevOps-0078D7?logo=azure%20devops)](https://dev.azure.com/harisekhon/GitHub/_git/DevOps-Bash-tools)\n[![Repo on BitBucket](https://img.shields.io/badge/repo-BitBucket-0052CC?logo=bitbucket)](https://bitbucket.org/HariSekhon/DevOps-Bash-tools)\n\n[![Azure DevOps Pipeline](https://dev.azure.com/harisekhon/GitHub/_apis/build/status/HariSekhon.DevOps-Bash-tools?branchName=master)](https://dev.azure.com/harisekhon/GitHub/_build/latest?definitionId=1&branchName=master)\n[![GitLab Pipeline](https://img.shields.io/badge/GitLab%20CI-legacy-lightgrey?logo=gitlab)](https://gitlab.com/HariSekhon/DevOps-Bash-tools/pipelines)\n[![BitBucket Pipeline](https://img.shields.io/badge/Bitbucket%20CI-legacy-lightgrey?logo=bitbucket)](https://bitbucket.org/harisekhon/devops-bash-tools/addon/pipelines/home#!/)\n[![AWS CodeBuild](https://img.shields.io/badge/AWS%20CodeBuild-ready-blue?logo=amazon%20aws)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/cicd/buildspec.yml)\n[![GCP Cloud Build](https://img.shields.io/badge/GCP%20Cloud%20Build-ready-blue?logo=google%20cloud&logoColor=white)](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/cicd/cloudbuild.yaml)\n\n[![ShellCheck](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/shellcheck.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/shellcheck.yaml)\n[![JSON](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/json.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/json.yaml)\n[![YAML](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/yaml.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/yaml.yaml)\n[![XML](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/xml.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/xml.yaml)\n[![Markdown](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/markdown.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/markdown.yaml)\n[![Validation](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/validate.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/validate.yaml)\n[![Kics](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/kics.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/kics.yaml)\n[![Grype](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/grype.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/grype.yaml)\n[![Semgrep](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/semgrep.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/semgrep.yaml)\n[![Semgrep Cloud](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/semgrep-cloud.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/semgrep-cloud.yaml)\n[![Trivy](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/trivy.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/trivy.yaml)\n\n[![Docker Build (Alpine)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_alpine.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_alpine.yaml)\n[![Docker Build (Debian)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_debian.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_debian.yaml)\n[![Docker Build (Fedora)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_fedora.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_fedora.yaml)\n[![Docker Build (Ubuntu)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_ubuntu.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/docker_bash_ubuntu.yaml)\n\n[![GitHub Actions Ubuntu](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/GitHub%20Actions%20Ubuntu/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22GitHub+Actions+Ubuntu%22)\n[![Mac](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac.yaml)\n[![Mac 11](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac_11.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac_11.yaml)\n[![Mac 12](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac_12.yaml/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions/workflows/mac_12.yaml)\n[![Ubuntu](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Ubuntu/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Ubuntu%22)\n[![Ubuntu 20.04](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Ubuntu%2020.04/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Ubuntu+20.04%22)\n[![Ubuntu 22.04](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Ubuntu%2022.04/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Ubuntu+22.04%22)\n[![Debian](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Debian/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Debian%22)\n[![Debian 10](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Debian%2010/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Debian+10%22)\n[![Debian 11](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Debian%2011/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Debian+11%22)\n[![Debian 12](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Debian%2012/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Debian+12%22)\n[![Fedora](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Fedora/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Fedora%22)\n[![Alpine](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Alpine/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Alpine%22)\n[![Alpine 3](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Alpine%203/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Alpine+3%22)\n\n[![Python 3.7](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Python%203.7/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Python+3.7%22)\n[![Python 3.8](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Python%203.8/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Python+3.8%22)\n[![Python 3.9](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Python%203.9/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Python+3.9%22)\n[![Python 3.10](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Python%203.10/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Python+3.10%22)\n[![Python 3.11](https://github.com/HariSekhon/DevOps-Bash-tools/workflows/Python%203.11/badge.svg)](https://github.com/HariSekhon/DevOps-Bash-tools/actions?query=workflow%3A%22Python+3.11%22)\n\n\n\n\n[git.io/bash-tools](https://git.io/bash-tools)\n\n1000+ DevOps Shell Scripts and Advanced Bash environment.\n\nFast, Advanced Systems Engineering, Automation, APIs, shorter CLIs, etc.\n\nHeavily used in many [GitHub repos](https://github.com/search?o=desc&q=user%3Aharisekhon+type%3Arepository&type=Repositories), dozens of [DockerHub builds](https://hub.docker.com/r/harisekhon) ([Dockerfiles](https://github.com/HariSekhon/Dockerfiles)) and 600+ [CI builds](https://harisekhon.github.io/CI-CD/).\n\n## Summary\n\n- Scripts for many popular DevOps technologies, see [Index](#index) below for more details\n- Advanced configs for common tools like [Git](https://git-scm.com/), [vim](https://www.vim.org/), [screen](https://www.gnu.org/software/screen/), [tmux](https://github.com/tmux/tmux/wiki), [PostgreSQL psql](https://www.postgresql.org/) etc...\n- CI configs for most major Continuous Integration products (see [CI builds](https://harisekhon.github.io/CI-CD/) page)\n- CI scripts for a drop-in framework of standard checks to run in all [CI builds](https://harisekhon.github.io/CI-CD/), CI detection, accounting for installation differences across CI environments, root vs user, virtualenvs etc.\n- API scripts auto-handling authentication, tokens and other details to quickly query popular APIs with a few keystrokes just supplying the `/path/endpoint`\n- Advanced Bash environment - `.bashrc` + `.bash.d/*.sh` - aliases, functions, colouring, dynamic Git & shell behaviour enhancements, automatic pathing for installations and major languages like Python, Perl, Ruby, NodeJS, Golang across Linux distributions and Mac. See [.bash.d/README.md](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/.bash.d/README.md)\n- Installs the best systems packages -\n [AWS CLI](https://aws.amazon.com/cli/),\n [Azure CLI](https://docs.microsoft.com/en-us/cli/azure/?view=azure-cli-latest),\n [GCloud SDK](https://cloud.google.com/sdk),\n [Digital Ocean CLI](https://docs.digitalocean.com/reference/doctl/),\n [Terraform](https://www.terraform.io/),\n [Terragrunt](https://terragrunt.gruntwork.io/),\n [GitHub CLI](https://github.com/cli/cli),\n [Kubernetes](https://kubernetes.io/)\n [kubectl](https://kubernetes.io/docs/reference/kubectl/overview/) &\n [kustomize](https://kustomize.io/),\n [Helm](https://helm.sh/),\n [eksctl](https://eksctl.io/),\n [Docker-Compose](https://docs.docker.com/compose/),\n [jq](https://stedolan.github.io/jq/)\n and many others... extensive package lists for servers and desktops for most major Linux distributions package managers and Mac\n - `install/` - contains many installation scripts for popular open source software and direct binary downloads from GitHub releases\n - `configs/` - contains many dot configs for common technologies like ViM, top, Screen, Tmux, MySQL, PostgreSQL etc.\n - `setup/` - contains setup scripts, package lists, extra configs, Mac OS X settings etc.\n- Utility Libraries used by many hundreds of scripts and [builds](https://harisekhon.github.io/CI-CD/) across [repos](https://github.com/search?o=desc&q=user%3Aharisekhon+type%3Arepository&type=Repositories):\n - `.bash.d/` - interactive library\n - `lib/` - scripting and CI library\n- [SQL Scripts](https://github.com/HariSekhon/SQL-scripts) - 100+ scripts for [PostgreSQL](https://www.postgresql.org/), [MySQL](https://www.mysql.com/), [AWS Athena](https://aws.amazon.com/athena/) + [CloudTrail](https://aws.amazon.com/cloudtrail/), [Google BigQuery](https://cloud.google.com/bigquery)\n- [Templates](https://github.com/HariSekhon/Templates) - templates for common programming languages and build configs\n- [Kubernetes Configs](https://github.com/HariSekhon/Kubernetes-configs) - Kubernetes YAML configs for most common scenarios, including Production Best Practices, Tips & Tricks\n\nSee Also: [similar DevOps repos](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/README.md#see-also) in other languages\n\nHari Sekhon\n\nCloud & Big Data Contractor, United Kingdom\n\n(ex-Cloudera, former Hortonworks Consultant)\n\n[![My LinkedIn](https://img.shields.io/badge/LinkedIn%20Profile-HariSekhon-blue?logo=data:image/svg%2bxml;base64,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)](https://www.linkedin.com/in/HariSekhon/)\n
*(you're welcome to connect with me on LinkedIn)*\n\n### Quick Setup\n\nTo bootstrap, install packages and link in to your shell profile to inherit all configs, do:\n\n```bash\ncurl -L https://git.io/bash-bootstrap | sh\n```\n\n- Adds sourcing to `.bashrc`/`.bash_profile` to automatically inherit all `.bash.d/*.sh` environment enhancements for all technologies (see [Inventory](#index) below)\n- Symlinks `.*` config dotfiles to `$HOME` for [git](https://git-scm.com/), [vim](https://www.vim.org/), top, [htop](https://hisham.hm/htop/), [screen](https://www.gnu.org/software/screen/), [tmux](https://github.com/tmux/tmux/wiki), [editorconfig](https://editorconfig.org/), [Ansible](https://www.ansible.com/), [PostgreSQL](https://www.postgresql.org/) `.psqlrc` etc. (only when they don't already exist so there is no conflict with your own configs)\n- Installs OS package dependencies for all scripts (detects the OS and installs the right RPMs, Debs, Apk or Mac HomeBrew packages)\n- Installs Python packages\n- Installs [AWS CLI](https://aws.amazon.com/cli/)\n\nTo only install package dependencies to run scripts, simply `cd` to the git clone directory and run `make`:\n\n```shell\ngit clone https://github.com/HariSekhon/DevOps-Bash-tools bash-tools\ncd bash-tools\nmake\n```\n\n`make install` sets your shell profile to source this repo. See [Individual Setup Parts](#individual-setup-parts) below for more install/uninstall options.\n\n## Index\n\n- [Dot Configs](#dot-configs) - `.gitconfig`, `.vimrc`, `.screenrc`, `.tmux.conf`, `.toprc`, `.gitignore`...\n- [Bash Environment & Libraries](#bash-environment--libraries) - `.bashrc`, `.bash.d/` interactive library, `lib/` scripting library\n- [Installation Scripts](#installation-scripts) for many popular open source technologies\n- [Linux & Mac](#linux--mac) - curl OAuth / JWT, LDAP, find duplicate files, SSL certificate get/validate, URL encoding/decoding, Vagrant\n- [Mac & AppleScript](#mac--applescript) - Mac settings and UI automation scripts, send keystrokes, mouse clicks,\n detect foreground app, switch app, detect locked screen or screensaver, activate screensaver, Hammerspoon system event handlers such as automatically switching audio to be able to Shazam while watching on AirPods\n- [Monitoring](#monitoring) - Grafana, Prometheus, Node Exporter, scripted collection of common Linux & Mac cli\n monitoring stats and log locations for quick generation of vendor support tarball bundles both locally and over SSH\n- [AWS - Amazon Web Services](#aws---amazon-web-services) - AWS account summary, lots of IAM reports, CIS Benchmark config hardening, EC2, ECR, EKS, Spot termination, S3 access logging, KMS key rotation info, SSM, CloudTrail, CloudWatch billing alarm with SNS notification topic and subscription for email alerts\n- [GCP - Google Cloud Platform](#gcp---google-cloud-platform) - massive GCP auto-inventory, scripts for GCE, GKE, GCR, Secret Manager, BigQuery, Cloud SQL, Cloud Scheduler, Terraform service account creation\n- [Kubernetes](#kubernetes) - massive Kubernetes auto-inventory, cluster management scripts & tricks\n- [Docker](#docker) - Docker API, Dockerhub API, Quay.io API scripts\n- [Databases](#databases) - fast CLI wrappers, instant Docker sandboxes (PostgreSQL, MySQL, MariaDB, SQLite), [SQL scripts](https://github.com/HariSekhon/SQL-scripts), SQL script testers against all versions of a DB, advanced `.psqlrc`\n- [Data](#data) - data tools, converters and format validators for Avro, Parquet, CSV, JSON, INI / Properties files (Java), LDAP LDIF, XML, YAML\n- [Big Data & NoSQL](#big-data--nosql) - Kafka, Hadoop, HDFS, Hive, Impala, ZooKeeper, Cloudera Manager API & Cloudera Navigator API scripts\n- [Git - GitHub, GitLab, Bitbucket, Azure DevOps](#git---github-gitlab-bitbucket-azure-devops) - scripts for Git local & mirror management, GitHub, GitLab & BitBucket APIs\n- [Markdown](#markdown) - generate Markdown indexes and debug `mdl` issues like MD005 inconsistent list indentation in large `README.md` files\n- [CI/CD - Continuous Integration / Continuous Delivery](#cicd---continuous-integration--continuous-deployment) - API scripts & build pipeline configs for most major CI systems:\n - Jenkins, Concourse, GoCD, TeamCity - one-touch boot & build\n - Azure DevOps Pipelines, GitHub Actions Workflows, GitLab CI, BitBucket Pipelines, AppVeyor, BuildKite, Travis CI, Circle CI, Codefresh, CodeShip, Drone.io, Semaphore CI, Shippable ...\n - Terraform Cloud, Octopus Deploy\n - Checkov / Bridgecrew Cloud\n- [AI & IPaaS](#ai--ipaas) - OpenAI (ChatGPT), Make.com\n- [Internet Services](#internet-services) - Google Maps, Cloudflare, DataDog, Digital Ocean, Kong API Gateway, GitGuardian, Jira, NGrok, Traefik, Pingdom, Wordpress and various pastebins and file upload sites\n- [Java](#java) - Java utilies to debug running Java programs or decompile Java JAR code for deeper debugging\n- [Python](#python) - Python utilities & library management\n- [Perl](#perl) - Perl utilities & library management\n- [Golang](#golang) - Golang utilities\n- [Diagrams](#diagrams) - scripts to generate diagrams from D2lang, MermaidJS and Python Mingrammer source code used in my [HariSekhon/Diagrams-as-Code](https://github.com/HariSekhon/Diagrams-as-Code) repo\n- [Media](#media) - video downloaders & converts, MP3 metadata editing, grouping and ordering of albums and audiobooks, mkv/avi to mp4 converters, 720p video downscaler for posting to social media, download YouTube videos or even entire channels and videos from other social media sites like Twitter / X or Facebook, terminal gif capture\n- [Spotify](#spotify) - 40+ Spotify API scripts for backups, managing playlists, track deduplication, URI conversion, search, add/delete, liked tracks, followed artists, top artists, top tracks etc.\n- [More Linux & Mac](#more-linux--mac) - more systems administration scripts, package installation automation\n- [Builds, Languages & Linting](#builds-languages--linting) - programming language, build system & CI linting\n- [Templates](https://github.com/HariSekhon/Templates) - Templates for AWS, GCP, Terraform, Docker, Jenkins, Cloud Build, Vagrant, Puppet, Python, Bash, Go, Perl, Java, Scala, Groovy, Maven, SBT, Gradle, Make, GitHub Actions, CircleCI, Jenkinsfile, Makefile, Dockerfile, docker-compose.yml etc.\n- [Kubernetes Configs](https://github.com/HariSekhon/Kubernetes-configs) - Kubernetes YAML configs for most common scenarios, including Production Best Practices, Tips & Tricks\n\n### Dot Configs\n\nTop-level dotfiles and `configs/` directory:\n\n- `.*` - dot conf files for lots of common software eg. advanced `.vimrc`, `.gitconfig`, massive `.gitignore`, `.editorconfig`, `.screenrc`, `.tmux.conf` etc.\n - `.vimrc` - contains many awesome [vim](https://www.vim.org/) tweaks, plus hotkeys for linting lots of different file types in place, including Python, Perl, Bash / Shell, Dockerfiles, JSON, YAML, XML, CSV, INI / Properties files, LDAP LDIF etc without leaving the editor!\n - `.screenrc` - fancy [screen](https://www.gnu.org/software/screen/) configuration including advanced colour bar, large history, hotkey reloading, auto-blanking etc.\n - `.tmux.conf` - fancy [tmux](https://github.com/tmux/tmux/wiki) configuration include advanced colour bar and plugins, settings, hotkey reloading etc.\n - [Git](https://git-scm.com/):\n - `.gitconfig` - advanced Git configuration\n - `.gitignore` - extensive Git ignore of trivial files you shouldn't commit\n - enhanced Git diffs\n - protections against committing AWS secret keys or merge conflict unresolved files\n\n### Bash Environment & Libraries\n\nTop-level `.bashrc` and `.bash.d/` directory:\n\n- `.bashrc` - shell tuning and sourcing of `.bash.d/*.sh`\n- `.bash.d/*.sh` - thousands of lines of advanced bashrc code, aliases, functions and environment variables for:\n - [Linux](https://en.wikipedia.org/wiki/Linux) & [Mac](https://en.wikipedia.org/wiki/MacOS)\n - SCM - [Git](https://git-scm.com/), [Mercurial](https://www.mercurial-scm.org/), [Svn](https://subversion.apache.org)\n - [AWS](https://aws.amazon.com/)\n - [GCP](https://cloud.google.com/)\n - [Docker](https://www.docker.com/)\n - [Kubernetes](https://kubernetes.io/)\n - [Kafka](http://kafka.apache.org/)\n - [Vagrant](https://www.vagrantup.com/)\n - automatic GPG and SSH agent handling for handling encrypted private keys without re-entering passwords, and lazy evaluation to only prompt key load the first time SSH is called\n - and lots more - see [.bash.d/README](https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/.bash.d/README.md) for a more detailed list\n - run `make bash` to link `.bashrc`/`.bash_profile` and the `.*` dot config files to your `$HOME` directory to auto-inherit everything\n- `lib/*.sh` - Bash utility libraries full of functions for\n [Docker](https://www.docker.com/),\n environment,\n CI detection ([Travis CI](https://travis-ci.org/), [Jenkins](https://jenkins.io/) etc),\n port and HTTP url availability content checks etc.\n Sourced from all my other [GitHub repos](https://github.com/harisekhon) to make setting up Dockerized tests easier.\n\n### Installation Scripts\n\n- `install/install_*.sh` - various simple to use installation scripts for common technologies like:\n - [AWS CLI](https://aws.amazon.com/cli/)\n - [Azure CLI](https://docs.microsoft.com/en-us/cli/azure/?view=azure-cli-latest)\n - [GCloud SDK](https://cloud.google.com/sdk)\n - [GitHub CLI](https://cli.github.com/)\n - [Terraform](https://www.terraform.io/)\n - [Terragrunt](https://terragrunt.gruntwork.io/)\n - [Direnv](https://direnv.net/)\n - [Ansible](https://www.ansible.com/)\n - [K3s](https://k3s.io)\n - [MiniKube](https://kubernetes.io/docs/setup/learning-environment/minikube/) (Kubernetes)\n - [MiniShift](https://www.okd.io/minishift/)\n ([Redhat OpenShift](https://www.openshift.com/) / [OKD](https://www.okd.io/) dev VMs)\n - [Maven](https://maven.apache.org/)\n - [Gradle](https://gradle.org/)\n - [SBT](https://www.scala-sbt.org/)\n - [EPEL](https://fedoraproject.org/wiki/EPEL)\n - [RPMforge](http://repoforge.org/)\n - [Homebrew](https://brew.sh/)\n - [Travis CI](https://travis-ci.org/)\n - [Circle CI](https://circleci.com/)\n - [AppVeyor](https://www.appveyor.com/)\n - [BuildKite](https://buildkite.com)\n - [Avro Tools](https://avro.apache.org/)\n - [Parquet Tools](https://github.com/apache/parquet-mr/tree/master/parquet-tools)\n - [Prometheus](https://prometheus.io/)\n - various JDKs and RDBMS JDBC connector jars\n - and many more...\n\n### Linux & Mac\n\n`bin/` directory:\n\n- `login.sh` - logs to major Cloud platforms if their credentials are found in the environment, CLIs such as AWS, GCP, Azure, GitHub... Docker registries: DockerHub, GHCR, ECR, GCR, GAR, ACR, Gitlab, Quay...\n- `clean_caches.sh` - cleans out OS package and programming language caches - useful to save space or reduce Docker image size\n- `crypto_dice_rolls.sh` - generates 100 random dice rolls to test a new crypto hardware wallet's fidelity (do not use this for your real crypto seed as your machine could be infected with malware which steals your seed phrase)\n- `delete_duplicate_files.sh` - deletes duplicate files with (N) suffixes, commonly caused by web browser downloads,\n in the given or current directory. Checks they're exact duplicates of a matching basename file without the (N) suffix with\n the exact same checksum for safety. Prompts to delete per file. To auto-accept deletions, do\n `yes | delete_duplicate_files.sh`. This is a fast way of cleaning up your `~/Downloads` directory and can be put your\n user crontab\n- `disk_speed_read_sequential_dd.sh` - runs a sequential read speed test from the given file using dd and bypassing filesystem cache for a more accurate test\n- `disk_speed_read_random_dd.sh` - runs a random I/O read speed test from the given file using dd and bypassing filesystem cache for a more accurate test\n- `disk_speed_write_sequential_dd.sh` - runs a sequential write speed test to a file in the given or current directory using dd and bypassing filesystem cache for a more accurate test\n- `disk_speed_read_sequential_fio.sh` - runs a sequential read speed test in the current or given directory using fio\n- `disk_speed_read_random_fio.sh` - runs a random I/O read test in the current or given directory using fio\n- `disk_speed_write_sequential_fio.sh` - runs a sequential write speed test to the current or given directory using fio\n- `disk_speed_write_random_fio.sh` - runs a sequential write speed test to the current or given directory using fio\n- `download_url_file.sh` - downloads a file from a URL using wget with no clobber and continue support, or curl with atomic replacement to avoid race conditions. Used by `github/github_download_release_file.sh`, `github_download_release_jar.sh`, and `install/download_*_jar.sh`\n- `curl_auth.sh` - shortens `curl` command by auto-loading your OAuth2 / JWT API token or username & password from environment variables or interactive starred password prompt through a ram file descriptor to avoid placing them on the command line (which would expose your credentials in the process list or OS audit log files). Used by many other adjacent API querying scripts\n- `curl_with_cookies.sh` - extracts cookies for a given URL from your `\\$BROWSER`'s cookie jar and passes them to the `curl` command along with the rest of the args (workaround for older curl builds and Homebrew builds that don't have the newer `--cookies-from-browser functionality)\n- `find_duplicate_files*.sh` - finds duplicate files by size and/or checksum in given directory trees. Checksums are only done on files that already have matching byte counts for efficiency\n- `find_broken_links.sh` - find broken links with delays to avoid tripping defenses\n- `find_broken_symlinks.sh` - find broken symlinks pointing to non-existent files/directories\n- `find_lock.sh` - tries to find if a lockfile is used in the given or current working directory by taking snapshots of the file list before and after a prompt in which you should open/close an application\n- `foreach_path_bin.sh` - runs each binary of the given name found in `$PATH` with the args given. Useful to find all the installed versions of a program in different paths eg. `~/bin/` vs `/usr/local/bin/` eg. `foreach_path_bin.sh terraform --version`\n- `http_duplicate_urls.sh` - find duplicate URLs in a given web page\n- `htmldecode.sh` - decodes HTML encoding. Detects available tools such as Perl, Python or xmlstarlet and uses whatever is available\n- `ldapsearch.sh` - shortens `ldapsearch` command by inferring switches from environment variables\n- `ldap_user_recurse.sh` / `ldap_group_recurse.sh` - recurse Active Directory LDAP users upwards to find all parent groups, or groups downwards to find all nested users (useful for debugging LDAP integration and group-based permissions)\n- `linux_distro_versions.sh` - quickly returns the list of major versions for a given Linux distro\n- `diff_line_threshold.sh` - compares two files vs a line count diff threshold to determine if they are radically different. Used to avoid overwriting files which are not mere updates but completely different files\n- `mv.sh` - moves directory trees resumably and removes the source files as they're copied over. Useful to migrate data from one disk to another, optionally with checksums. Uses rsync and shows the overall % of files transferred and the MB/s data transfer rate\n- `network_gateway.sh` - get the network gateway IP address on Linux or Mac\n- `open.sh` - opens given arg, file or URL using whatever default system opener is available for Linux or Mac\n- `organize_downloads.sh` - moves files of well-known extensions in the `$HOME/Downloads` directory older than 1 week to capitalized subdirectories of their type to keep the `$HOME/Downloads/` directory tidy\n- `copy_to_clipboard.sh` - copies stdin or string arg to system clipboard on Linux or Mac\n- `paste_from_clipboard.sh` - pastes from system clipboard to stdout on Linux or Mac\n- `paste_from_clipboard_upon_changes.sh` - pastes from system clipboard to stdout on Linux or Mac whenever the clipboard changes\n- `paste_diff_settings.sh` - takes snapshots of before and after clipboard changes and diffs them to show config changes\n- `processes_ram_sum.sh` - sums the RAM usage of all processes matching a given regex in GB to one decimal place\n- `pldd.sh` - parses `/proc` on Linux to show the runtime `.so` loaded dynamic shared libraries a program pid is using. Runtime equivalent of the classic static `ldd` command and because the system `pldd` command often fails to attach to a process\n- `random_select.sh` - selects one of given args at random. Useful for sampling, running randomized subsets of large test suites etc.\n- `random_number.sh` - prints a random integer between two integer arguments (inclusive)\n- `random_string.sh` - prints a random alphanumeric string of a given length\n- `screen_terminal_to_stdout.sh` - dumps the GNU Screen terminal output to stdout\n- `screen_terminal_to_clipboard.sh` - dumps the GNU Screen terminal output to a temp file and copies to clipboard for sharing & debugging purposes\n- `shields_embed_logo.sh` - base64 encodes a given icon file or url and prints the `logo=...` url parameter you need to add the [shields.io](https://shields.io/) badge url\n- `shorten_text_selection.sh` - shortens the selected text in the prior window. Replaces `and` with `&` and crushes out multiple blank lines. I use this for LinkedIn comments due to the short 1250 character limit\n- `shred_file.sh` - overwrites a file 7 times to DoD standards before deleting it to prevent recovery of sensitive information\n- `shred_free_space.sh` - overwrites free space to prevent recovery of sensitive information for files that have already been deleted\n- `split.sh` - split large files into N parts (defaults to the number of your CPU cores) to parallelize operations on them\n- `ssl_get_cert.sh` - gets a remote `host:port` server's SSL cert in a format you can pipe, save and use locally, for example in Java truststores\n- `ssl_verify_cert.sh` - verifies a remote SSL certificate (battle tested more feature-rich version `check_ssl_cert.pl` exists in the [Advanced Nagios Plugins](https://github.com/HariSekhon/Nagios-Plugins) repo)\n- `ssl_verify_cert_by_ip.sh` - verifies SSL certificates on specific IP addresses, useful to test SSL source addresses for CDNs, such as Cloudflare Proxied sources before enabling SSL Full-Strict Mode for end-to-end, or Kubernetes ingresses (see also `curl_k8s_ingress.sh`)\n- `text_filter_ending_substrings.sh` - for a given patterns file of substring endings, print all lines that match in the following files. Uses awk to safely handle all characters as literals, unlike grep, while also maintaining end anchoring which you cannot do using `grep -F`. Optimized awk code uses a bucketing hash for performance to not attempt matching lines which are shorter than patterns, reducing the number of match attempts\n- `tmux_vertical.sh` - launches tmux with N-way vertical shell split or commands given as args in equally balanced vertical panes. Fast way to launch a bunch of shell or commands in an easily reviewable side-by-side way\n- `tmux_horizontal.sh` - same as above but split horizontally\n- `tmux_square.sh` - same as above but with 4 panes in a square tiled view\n- `urlencode.sh` / `urldecode.sh` - URL encode/decode quickly on the command line, in pipes etc.\n- `urlextract.sh` - extracts the URLs from a given string arg, file or standard input\n- `url_extract_redirects.sh` - extracts the URLs from a given string arg, file or standard input, queries each one and outputs the redirected urls instead to stdout\n- `url_replace_redirects.sh` - extracts the URLs from a given string arg, file or standard input, queries each one and outputs the entire contents to stdout with the urls replaced by the redirected urls\n- `urlopen.sh` - opens the URL given as an arg, or first URL found from stdin or a given file.\n Uses the system's default browser\n- `vagrant_hosts.sh` - generate `/etc/hosts` output from a `Vagrantfile`\n- `vagrant_total_mb.sh` - calculate the RAM committed to VMs in a `Vagrantfile`\n\nSee also [Knowledge Base notes for Linux](https://github.com/HariSekhon/Knowledge-Base/blob/main/linux.md)\nand [Mac](https://github.com/HariSekhon/Knowledge-Base/blob/main/mac.md).\n\n### Mac & AppleScript\n\nMac automation scripts to automate the Mac UI and settings\n\n`bin/` directory:\n\n- `mac_diff_settings.sh` - takes before and after snapshots of UI setting changes and diffs them to make it easy to find `defaults` keys to add to `setup/mac_settings.sh` to save settings\n- `mac_restore_file.sh` - checks all the backup mount points for the latest backup that has a given file and then restores it\n- `mac_backup_du_in_progress.sh` - find large files in the currently in-progress Time Machine backup to find out what is taking so long and racking up so many more GB of changes than you expect. This helps discover large but unnecessary files that you might want to exclude using the adjacent script `mac_backup_exclude_paths.sh`\n- `mac_backup_exclude_paths.sh` - excludes many common large caches, docker and VM paths from macOS Time Machine backups\n- `mac_backup_find_excluded_paths.sh` - does a deep search for macOS Time Machine excluded backup paths on file/folder attributes. See [HariSekhon/Knowledge-Base Mac page](https://github.com/HariSekhon/Knowledge-Base/blob/main/mac.md#time-machine) for why\n- `mac_rmdir.sh` - safely delete a directory on Mac only if it is empty of actual data, by first removing macOS hidden metadata files and dirs such as `.fseventsd/`, `.Spotlight-V100/` and `.DS_Store` - straight `rmdir` fails otherwise\n- `mac_iso_to_usb.sh` - converts a given ISO file to a USB bootable image and burns it onto a given or detected inserted USB drive\n- `mac_ramdisk.sh` - creates a mac ramdisk of given MB size. Useful for performance, or even testing disk write scripts such as `disk_speed_write_*.sh` without wearing out your SSD\n- `mac_delete_local_snapshots.sh` - deletes local macOS snapshots to free up disk space. When there is a substantial discrepancy between what the `df -h` command and the Finder UI shows, this is often the cause\n- `copy_to_clipboard.sh` - copies stdin or string arg to system clipboard on Linux or Mac\n- `paste_from_clipboard.sh` - pastes from system clipboard to stdout on Linux or Mac\n- `paste_from_clipboard_upon_changes.sh` - pastes from system clipboard to stdout on Linux or Mac whenever the clipboard changes\n- `paste_diff_settings.sh` - Takes snapshots of before and after clipboard changes and diffs them to show config changes\n\n`applescript/` directory:\n\n- `keystrokes.sh` - send N keystroke combinations\n- `mouse_clicks.sh` - send N mouse click combinations to sequence of screen coordinates\n - `get_mouse_coordinates.sh` - print the current mouse coordinates - to know what to pass to above script\n- `mouse_clicks_remote_desktop.sh` - switches to Microsoft Remote Desktop, waits 10 seconds and then clicks the mouse\n once a minute to prevent the screensaver from coming on. Workaround to Active Directory Group Policies that don't let\n you disable the screensaver. Point your mouse to an area that will have no mouse click effect, the Cmd-Tab to Terminal\n and run this\n- `get_frontmost_process_title.scpt` - detect the frontmost window\n - to detect if you should send keystrokes / mouse clicks)\n- `set_frontmost_process.scpt` - switch to bring the given app to the foreground to send keystrokes / mouse clicks to it\n - `browser_get_default.scpt` - get the default configured browser in format passable to Applescript (for above script)\n- `is_screen_locked.py` - detect if the screen is locked to stop sending keystrokes or mouse clicks\n- `is_screensaver_running.scpt` - detect if the screensaver is running to stop sending keystrokes or mouse clicks\n- `reopen_app.sh` - relaunch a given app\n (used to reload Shazam to detect DB changes after removing tracks programmatically from its DB)\n- `spotify_app_search.sh` - runs a search in the Spotify App on Mac using Applescript\n- `shazam_app_dump_tracks.sh` - dumps `artist - track` one per line from the Shazam local sqlite DB\n- `shazam_app_delete_track.sh` - deletes a given `\"artist\" \"track\"` from the Shazam local sqlite DB\n- `shazam_search_spotify_then_delete_track.sh` - searches for each Shazam'd track in the local Spotify desktop app,\n then prompts to delete each track from the local Shazam DB once you've saved it in Spotify.\n Useful to migrate Shazam'd tracks to Spotify after Apple removed the integration\n- `screensaver_activate.scpt` - activate screensaver\n- `shorten_text_selection.scpt` - shortens the selected text in the prior window. Replaces `and` with `&` and crushes\n out multiple blank lines. I use this for LinkedIn comments due to the short 1250 character limit\n- `start_app_at_login.sh` - adds an app to the Login items to auto-start\n\nHammerspoon code has been moved to its own repo:\n\n[![Readme Card](https://github-readme-stats.vercel.app/api/pin/?username=HariSekhon&repo=Hammerspoon&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Hammerspoon)\n\nSee also [Mac](https://github.com/HariSekhon/Knowledge-Base/blob/main/mac.md) page\nin [HariSekhon/Knowledge-Base](https://github.com/HariSekhon/Knowledge-Base).\n\n### Monitoring\n\n`monitoring/` directory:\n\n- `dump_stats.sh` - dumps common command outputs to text files in a local tarball. Useful to collect support information\n for vendor support cases\n- `grafana_api.sh` - queries the [Grafana](https://grafana.com/) API with authentication\n- `log_timestamp_large_intervals.sh` - finds log lines whose timestamp intervals exceed the given number of seconds and\n outputs those log lines with the difference between the last and current timestamps. Useful to find actions that are\n taking a long time from log files such as CI/CD logs\n- `prometheus.sh` - starts [Prometheus](https://prometheus.io/) locally, downloading it if not found in `$PATH`\n- `prometheus_docker.sh` - starts [Prometheus](https://prometheus.io/) in Docker using `docker-compose`\n- `prometheus_node_exporter.sh` - starts Prometheus `node_exporter` locally, downloading it if not found in `$PATH`\n- `ssh_dump_stats.sh` - uses SSH and `dump_stats.sh` to dump common command outputs from remote servers to a local\n tarball. Useful for vendor support cases\n- `ssh_dump_logs.sh` - Uses SSH to dump logs from server to local text files for uploading to vendor support cases\n\nSee doc pages in [HariSekhon/Knowledge-Base](https://github.com/HariSekhon/Knowledge-Base) on Grafana,\nPrometheus, OpenTSDB, InfluxDB etc.\n\n### Databases\n\n`mysql/`, `postgres/`, `sql/` and `bin/` directories:\n\n- [sql/](https://github.com/HariSekhon/SQL-scripts) - 100+ SQL scripts for [PostgreSQL](https://www.postgresql.org/), [MySQL](https://www.mysql.com/), [Google BigQuery](https://cloud.google.com/bigquery) and [AWS Athena](https://aws.amazon.com/athena/) [CloudTrail](https://aws.amazon.com/cloudtrail/) logs integration\n- `sqlite.sh` - one-touch [SQLite](https://www.sqlite.org/index.html), starts sqlite3 shell with sample 'chinook' database loaded\n- `mysql*.sh` - [MySQL](https://www.mysql.com/) scripts:\n - `mysql.sh` - shortens `mysql` command to connect to [MySQL](https://www.mysql.com/) by auto-populating switches from both standard environment variables like `$MYSQL_TCP_PORT`, `$DBI_USER`, `$MYSQL_PWD` (see [doc](https://dev.mysql.com/doc/refman/8.0/en/environment-variables.html)) and other common environment variables like `$MYSQL_HOST` / `$HOST`, `$MYSQL_USER` / `$USER`, `$MYSQL_PASSWORD` / `$PASSWORD`, `$MYSQL_DATABASE` / `$DATABASE`\n - `mysql_foreach_table.sh` - executes a SQL query against every table, replacing `{db}` and `{table}` in each iteration eg. `select count(*) from {table}`\n - `mysql_*.sh` - various scripts using `mysql.sh` for row counts, iterating each table, or outputting clean lists of databases and tables for quick scripting\n - `mysqld.sh` - one-touch [MySQL](https://www.mysql.com/), boots docker container + drops in to `mysql` shell, with `/sql` scripts mounted in container for easy sourcing eg. `source /sql/.sql`. Optionally loads sample 'chinook' database\n - see also the [SQL Scripts](https://github.com/HariSekhon/SQL-scripts) repo for many more straight MySQL SQL scripts\n- `mariadb.sh` - one-touch [MariaDB](https://mariadb.org/), boots docker container + drops in to `mysql` shell, with `/sql` scripts mounted in container for easy sourcing eg. `source /sql/.sql`. Optionally loads sample 'chinook' database\n- `postgres*.sh` / `psql.sh` - [PostgreSQL](https://www.postgresql.org/) scripts:\n - `postgres.sh` - one-touch [PostgreSQL](https://www.postgresql.org/), boots docker container + drops in to `psql` shell, with `/sql` scripts mounted in container for easy sourcing eg. `\\i /sql/.sql`. Optionally loads sample 'chinook' database\n - `psql.sh` - shortens `psql` command to connect to [PostreSQL](https://www.postgresql.org/) by auto-populating switches from environment variables, using both standard postgres supported environment variables like `$PG*` (see [doc](https://www.postgresql.org/docs/12/libpq-envars.html)) as well as other common environment variables like `$POSTGRESQL_HOST` / `$POSTGRES_HOST` / `$HOST`, `$POSTGRESQL_USER` / `$POSTGRES_USER` / `$USER`, `$POSTGRESQL_PASSWORD` / `$POSTGRES_PASSWORD` / `$PASSWORD`, `$POSTGRESQL_DATABASE` / `$POSTGRES_DATABASE` / `$DATABASE`\n - `postgres_foreach_table.sh` - executes a SQL query against every table, replacing `{db}`, `{schema}` and `{table}` in each iteration eg. `select count(*) from {table}`\n - `postgres_*.sh` - various scripts using `psql.sh` for row counts, iterating each table, or outputting clean lists of databases, schemas and tables for quick scripting\n - `checks/check_sqlfluff.sh` - recursively iterates all SQL code files found in the given or current directory and runs SQLFluff linter against them, inferring the different SQL dialects from each path/filename/extension\n\n### AWS - Amazon Web Services\n\n`aws/` directory:\n\n- [AWS](https://aws.amazon.com/) scripts - `aws_*.sh`:\n - `aws_profile.sh` - switches to an AWS Profile selected from a convenient interactive menu list of AWS profiles from `$AWS_CONFIG_FILE` - useful when you have lots of AWS work profiles\n - see also [HariSekhon/Environments](https://github.com/HariSekhon/Environments) for automated switching using direnv when `cd`ing into relevant directories\n - `aws_cli_create_credential.sh` - creates an AWS service account user for CI/CD or CLI with Admin permissions (or other group or policy), creates an AWS Access Key, saves a credentials CSV and even prints the shell export commands and aws credentials file config to configure your environment to start using it. Useful trick to avoid CLI reauth to `aws sso login` every day.\n - `aws_terraform_create_credential.sh` - creates a AWS terraform service account with Administrator permissions for Terraform Cloud or other CI/CD systems to run Terraform plan and apply, since no CI/CD systems can work with AWS SSO workflows. Stores the access key as both CSV and prints shell export commands and credentials file config as above\n - `.envrc-aws` - copy to `.envrc` for [direnv](https://direnv.net/) to auto-load AWS configuration settings such as AWS Profile, Compute Region, EKS cluster kubectl context etc.\n - calls `.envrc-kubernetes` to set the `kubectl` context isolated to current shell to prevent race conditions between shells and scripts caused by otherwise naively changing the global `~/.kube/config` context\n - `aws_sso_ssh.sh` - launches local AWS SSO authentication pop-up (if not already authenticated), then scp's the latest resultant `~/.aws/sso/cache/` file to the remote server and SSH's there so that you can use AWS CLI or kubectl to EKS remotely on that server easily, without having to copy and paste the token from remote aws sso login to your local web browser\n - `aws_terraform_create_s3_bucket.sh` - creates a Terraform S3 bucket for storing the backend state, locks out public access, enables versioning, encryption, and locks out Power Users role and optionally any given user/group/role ARNs via a bucket policy for safety\n - `aws_terraform_create_dynamodb_table.sh` - creates a Terraform locking table in DynamoDB for use with the S3 backend, plus custom IAM policy which can be applied to less privileged accounts\n - `aws_terraform_create_all.sh` - runs all of the above, plus also applies the custom DynamoDB IAM policy to the user to ensure if the account is less privileged it can still get the Terraform lock (useful for GitHub Actions environment secret for a read only user to generate Terraform Plans in Pull Request without needing approval)\n - `aws_terraform_iam_grant_s3_dynamodb.sh` - creates IAM policies to access any S3 buckets and DynamoDB tables with `terraform-state` or `tf-state` in their names, and attaches them to the given user. Useful for limited permissions CI/CD accounts that run Terraform Plan eg. in GitHub Actions pull requests\n - `aws_account_summary.sh` - prints AWS account summary in `key = value` pairs for easy viewing / grepping of things like `AccountMFAEnabled`, `AccountAccessKeysPresent`, useful for checking whether the root account has MFA enabled and no access keys, comparing number of users vs number of MFA devices etc. (see also `check_aws_root_account.py` in [Advanced Nagios Plugins](https://github.com/HariSekhon/Nagios-Plugins))\n - `aws_billing_alarm.sh` - creates a [CloudWatch](https://aws.amazon.com/cloudwatch/) billing alarm and [SNS](https://aws.amazon.com/sns/) topic with subscription to email you when you incur charges above a given threshold. This is often the first thing you want to do on an account\n - `aws_budget_alarm.sh` - creates an [AWS Budgets](https://aws.amazon.com/cloudwatch/) billing alarm and [SNS](https://aws.amazon.com/sns/) topic with subscription to email you when both when you start incurring forecasted charges of over 80% of your budget, and 90% actual usage. This is often the first thing you want to do on an account\n - `aws_batch_stale_jobs.sh` - lists [AWS Batch](https://aws.amazon.com/batch/) jobs that are older than N hours in a given queue\n - `aws_batch_kill_stale_jobs.sh` - finds and kills [AWS Batch](https://aws.amazon.com/batch/) jobs that are older than N hours in a given queue\n - `aws_cloudfront_distribution_for_origin.sh` - returns the AWS CloudFront ARN of the distribution which serves origins containing a given substring. Useful for quickly finding the CloudFront ARN needed to give permissions to a private S3 bucket exposed via CloudFront\n - `aws_cloudtrails_cloudwatch.sh` - lists [Cloud Trails](https://aws.amazon.com/cloudtrail/) and their last delivery to [CloudWatch](https://aws.amazon.com/cloudwatch/features/) Logs (should be recent)\n - `aws_cloudtrails_event_selectors.sh` - lists [Cloud Trails](https://aws.amazon.com/cloudtrail/) and their event selectors to check each one has at least one event selector\n - `aws_cloudtrails_s3_accesslogging.sh` - lists [Cloud Trails](https://aws.amazon.com/cloudtrail/) buckets and their Access Logging prefix and target bucket. Checks [S3 access logging](https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html) is enabled\n - `aws_cloudtrails_s3_kms.sh` - lists [Cloud Trails](https://aws.amazon.com/cloudtrail/) and whether their [S3](https://aws.amazon.com/s3/) buckets are [KMS](https://aws.amazon.com/kms/) secured\n - `aws_cloudtrails_status.sh` - lists [Cloud Trails](https://aws.amazon.com/cloudtrail/) status - if logging, multi-region and log file validation enabled\n - `aws_config_all_types.sh` - lists [AWS Config](https://aws.amazon.com/config/) recorders, checking all resource types are supported (should be true) and includes global resources (should be true)\n - `aws_config_recording.sh` - lists [AWS Config](https://aws.amazon.com/config/) recorders, their recording status (should be true) and their last status (should be success)\n - `aws_csv_creds.sh` - prints AWS credentials from a CSV file as shell export statements. Useful to quickly switch your shell to some exported credentials from a service account for testing permissions or pipe to upload to a CI/CD system via an API (eg. `jenkins_cred_add*.sh`, `github_actions_repo*_set_secret.sh`, `gitlab_*_set_env_vars.sh`, `circleci_*_set_env_vars.sh`, `bitbucket_*_set_env_vars.sh`, `terraform_cloud_*_set_vars.sh`, `kubectl_kv_to_secret.sh`). Supports new user and new access key csv file formats.\n - `aws_codecommit_csv_creds.sh` - prints AWS [CodeCommit](https://aws.amazon.com/codecommit/) Git credentials from a CSV file as shell export statements. Similar use case and chaining as above\n - `aws_ec2_*.sh` - AWS [EC2](https://aws.amazon.com/ec2/) scripts:\n - `aws_ec2_instance_*.sh` - AWS EC2 [Instance](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Instances.html) scripts:\n - `aws_ec2_instance_name_to_id.sh` - looks up an EC2 instance ID from an instance name with extra safety checks that only a single instance ID is returned and a reverse lookup on that instance ID to re-verify it matches the name. This level of safety is important when wanting to terminate an EC2 instance by name. If an instance ID is passed, returns it as is for convenience. Used by adjacent scripts\n - `aws_ec2_instances.sh` - lists AWS EC2 instances, their DNS names and States in an easy to read table output\n - `aws_ec2_instance_ip.sh` - determines an EC2 instance IP address, trying first for a public IP, or failing that a private IP\n - `aws_ec2_instance_clone.sh` - clones an AWS EC2 instance by creating an AMI from the original and then booting a new instance from the AMI with the same settings as the original instance. Useful to testing risky things on a separate EC2 instance, such as Server Administrator recovery of Tableau\n - `aws_ec2_instance_wait_for_ready.sh` - polls an AWS EC2 instance and waits for it to finish initializing to a ready state. Used by adjacent scripts\n - `aws_ec2_instance_terminate_by_name.sh` - terminate an AWS EC2 instance by name for convenience, resolves its instance ID, verifies unique and then terminates by ID\n - `aws_ec2_ami*.sh` - AWS EC2 [AMI](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AMIs.html) scripts:\n - `aws_ec2_amis.sh` - list AWS EC2 AMIs belonging to your account in an easy to read table output\n - `aws_ec2_ami_ids.sh` - lists AWS EC2 AMI IDs only, one per line, to be used in adjacent scripts that creating mapping tables and translate AMI IDs to names in inventory scripts `aws_info_ec2*.sh`\n - `aws_ec2_ami_name_to_id.sh` - looks up an EC2 AMI ID from a name with extra safety checks that only a single AMI ID is returned and a reverse lookup on that AMI ID to re-verify it matches the name\n - `aws_ec2_ami_boot.sh` - boots a personal EC2 instance of a given AMI for testing\n - `aws_ec2_ami_boot_ssh.sh` - boots a personal EC2 instance of a given AMI, determines the public or private IP, and drops you into an SSH shell\n - `aws_ec2_ami_create_from_instance.sh` - creates an AWS EC2 AMI from an EC2 instance and waits for it to become available for use\n - `aws_ec2_ami_share_to_account.sh` - shares an AMI with another AWS account. Can specify AMI by name or id\n - `aws_ec2_ebs_*.sh` - AWS EC2 [EBS](https://aws.amazon.com/ebs/) scripts:\n - `aws_ec2_ebs_volumes.sh` - list EC2 instances and their EBS volumes in the current region\n - `aws_ec2_ebs_create_snapshot_and_wait.sh - creates a snapshot of a given EBS volume ID and waits for it to complete with exponential backoff\n - `aws_ec2_ebs_resize_and_wait.sh - resizes an EBS volume and waits for it to complete modifying and optionally optimizing with exponential backoff\n - `aws_ec2_ebs_volumes_unattached.sh` - list an unattached EBS volumes in a table format\n - `aws_ec2_launch_templates_ami_id.sh` - for each Launch Template lists the AMI ID of the latest version. Useful to check EKS upgrades of node groups via Terragrunt have taken effect\n - `aws_ecr_*.sh` - AWS [ECR](https://aws.amazon.com/ecr/) docker image management scripts:\n - `aws_ecr_docker_login.sh` - authenticates Docker to AWS ECR, inferring the ECR registry from the current AWS Account ID and Region\n - `aws_ecr_docker_build_push.sh` - builds a docker image and pushes it to ECR with not just the `latest` docker tag but also the current Git hashref and Git tags\n - `aws_ecr_list_repos.sh` - lists ECR repos, and their docker image mutability and whether image scanning is enabled\n - `aws_ecr_list_tags.sh` - lists all the tags for a given ECR docker image\n - `aws_ecr_newest_image_tags.sh` - lists the tags for the given ECR docker image with the newest creation date (can use this to determine which image version to tag as `latest`)\n - `aws_ecr_alternate_tags.sh` - lists all the tags for a given ECR docker `image:tag` (use arg `:latest` to see what version / build hashref / date tag has been tagged as `latest`)\n - `aws_ecr_tag_image.sh` - tags an ECR image with another tag without pulling and pushing it\n - `aws_ecr_tag_image_by_digest.sh` - same as above but tags an ECR image found via digest (more accurate as reference by existing tag can be a moving target). Useful to recover images that have become untagged\n - `aws_ecr_tag_latest.sh` - tags a given ECR docker `image:tag` as `latest` without pulling or pushing the docker image\n - `aws_ecr_tag_branch.sh` - tags a given ECR `image:tag` with the current Git branch without pulling or pushing the docker image\n - `aws_ecr_tag_datetime.sh` - tags a given ECR docker image with its creation date and UTC timestamp (when it was uploaded to ECR) without pulling or pushing the docker image\n - `aws_ecr_tag_newest_image_as_latest.sh` - finds and tags the newest build of a given ECR docker image as `latest` without pulling or pushing the docker image\n - `aws_ecr_tags_timestamps.sh` - lists all the tags and their timestamps for a given ECR docker image\n - `aws_ecr_tags_old.sh` - lists tags older than N days for a given ECR docker image\n - `aws_ecr_delete_old_tags.sh` - deletes tags older than N days for a given ECR docker image. Lists the image:tags to be deleted and prompts for confirmation safety\n - `aws_emr_clusters_last_steps.sh` - shows the last N steps executed on each EMR cluster and their EndTime to find idle clusters that should be removed. Also checks CloudWatch for number of steps running within the last few months to catch directly submitted jobs such as Spark, Hive, Glue or Athena which won't show up in the native steps list\n - `aws_foreach_profile.sh` - executes a templated command across all AWS named profiles configured in AWS CLIv2, replacing `{profile}` in each iteration. Combine with other scripts for powerful functionality, auditing, setup etc. eg. `aws_kube_creds.sh` to configure `kubectl` config to all EKS clusters in all environments\n - `aws_foreach_region.sh` - executes a templated command against each AWS region enabled for the current account, replacing `{region}` in each iteration. Combine with AWS CLI or scripts to find resources across regions\n - `aws_iam_*.sh` - AWS [IAM](https://aws.amazon.com/iam/) scripts:\n - `aws_iam_password_policy.sh` - prints [AWS password policy](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_account-policy.html) in `key = value` pairs for easy viewing / grepping (used by `aws_harden_password_policy.sh` before and after to show the differences)\n - `aws_iam_harden_password_policy.sh` - strengthens [AWS password policy](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_account-policy.html) according to [CIS Foundations Benchmark](https://d1.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf) recommendations\n - `aws_iam_replace_access_key.sh` - replaces the non-current IAM access key (Inactive, Not Used, longer time since used, or an explicitly given key), outputting the new key as shell export statements (useful for piping to the same tools listed for `aws_csv_creds.sh` above)\n - `aws_iam_policies_attached_to_users.sh` - finds [AWS IAM policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage.html) directly attached to users (anti-best practice) instead of groups\n - `aws_iam_policies_granting_full_access.sh` - finds [AWS IAM policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage.html) granting full access (anti-best practice)\n - `aws_iam_policies_unattached.sh` - lists unattached [AWS IAM policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage.html)\n - `aws_iam_policy_attachments.sh` - finds all users, groups and roles where a given IAM policy is attached, so that you can remove all these references in your Terraform code and avoid this error `Error: error deleting IAM policy arn:aws:iam::***:policy/mypolicy: DeleteConflict: Cannot delete a policy attached to entities.`\n - `aws_iam_policy_delete.sh` - deletes an IAM policy, by first handling all prerequisite steps of deleting all prior versions and all detaching all users, groups and roles\n - `aws_iam_generate_credentials_report_wait.sh` - generates an AWS IAM [credentials report](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html)\n - `aws_iam_users.sh` - list your IAM users\n - `aws_iam_users_access_key_age.sh` - prints AWS users [access key](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html) status and age (see also `aws_users_access_key_age.py` in [DevOps Python tools](https://github.com/HariSekhon/DevOps-Python-tools) which can filter by age and status)\n - `aws_iam_users_access_key_age_report.sh` - prints AWS users [access key](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html) status and age using a bulk credentials report (faster for many users)\n - `aws_iam_users_access_key_last_used.sh` - prints AWS users [access keys](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html) last used date\n - `aws_iam_users_access_key_last_used_report.sh` - same as above using bulk credentials report (faster for many users)\n - `aws_iam_users_last_used_report.sh` - lists AWS users password/access keys last used dates\n - `aws_iam_users_mfa_active_report.sh` - lists AWS users password enabled and [MFA](https://aws.amazon.com/iam/features/mfa/) enabled status\n - `aws_iam_users_without_mfa.sh` - lists AWS users with password enabled but no MFA\n - `aws_iam_users_mfa_serials.sh` - lists AWS users [MFA](https://aws.amazon.com/iam/features/mfa/) serial numbers (differentiates Virtual vs Hardware MFAs)\n - `aws_iam_users_pw_last_used.sh` - lists AWS users and their password last used date\n - `aws_ip_ranges.sh` - get all AWS IP ranges for a given Region and/or Service using the IP range API\n - `aws_info*.sh`:\n - `aws_info_all_profiles.sh` - calls `aws_info.sh` for all AWS profiles using `aws_foreach_profile.sh`\n - `aws_info.sh` - lists AWS deployed resources in the current or specified AWS account profile\n - `aws_info_ec2.sh` - lists AWS EC2 Instances resources deployed in the current AWS account\n - `aws_info_ec2_csv.sh` - lists AWS EC2 Instances in quoted CSV format in the current AWS account\n - `aws_info_ec2_all_profiles_csv.sh` - lists AWS EC2 Instances in quoted CSV format across all configured AWS profiles for their configured region\n - `aws_eks_cloudwatch_logs.sh` - enables and fetches AWS EKS Master logs via CloudWatch\n - `aws_eks_ssh_dump_logs.sh` - fetch system logs from EKS Worker Nodes EC2 VMs (eg. for support debug requests by vendors)\n - `aws_eks_cluster_versions.sh` - iterates EKS clusters to list each AWS EKS cluster name and version in the current account. Combine with `aws_foreach_profile.sh` and `aws_foreach_region.sh` to audit your EKS cluster versions across accounts and regions\n - `aws_eks_addon_versions.sh` - lists the EKS addon versions available for the given cluster by checking its version before checking addons\n - `aws_eks_available_ips.sh` - lists the number of available IP addresses in the EKS subnets for the given cluster (5 required for an EKS upgrade)\n - `aws_eks_ami_create.sh` - creates a custom EKS AMI quickly off the base EKS template and then running a shell script in it before saving it to a new AMI. See also [HariSekhon/Packer](https://github.com/HariSekhon/Packer) for more advanced build\n - `aws_kms_key_rotation_enabled.sh` - lists [AWS KMS](https://aws.amazon.com/kms/) keys and whether they have key rotation enabled\n - `aws_kube_creds.sh` - auto-loads all [AWS EKS](https://aws.amazon.com/eks/) clusters credentials in the current --profile and --region so your kubectl is ready to rock on AWS\n - `aws_kubectl.sh` - runs kubectl commands safely fixed to a given [AWS EKS](https://aws.amazon.com/eks/) cluster using config isolation to avoid concurrency race conditions\n - `aws_logs_*.sh` - some useful log queries in last N hours (24 hours by default):\n - `aws_logs_batch_jobs.sh` - lists AWS Batch job submission requests and their callers\n - `aws_logs_ec2_spot.sh` - lists AWS EC2 Spot fleet creation requests, their caller and first tag value for origin hint\n - `aws_logs_ecs_tasks.sh` - lists AWS ECS task run requests, their callers and job definitions\n - `aws_meta.sh` - AWS [EC2 Metadata API](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html) query shortcut. See also the official [ec2-metadata](https://aws.amazon.com/code/ec2-instance-metadata-query-tool/) shell script with more features\n - `aws_nat_gateways_public_ips.sh` - lists the public IPs of all NAT gateways. Useful to give to clients to permit through firewalls for webhooks or similar calls\n - `aws_rds_list.sh` - list RDS instances with select fields - Name, Status, Engine, AZ, Instance Type, Storage\n - `aws_rds_open_port_to_my_ip.sh` - adds a security group to an RDS DB instance to open its native database SQL port to your public IP address\n - `aws_rds_get_version.sh` - quickly retrieve the version of an RDS database to know which JDBC jar version to download using `install/download_*_jdbc.sh` when setting up connections\n - `aws_route53_check_ns_records.sh` - checks AWS [Route 53](https://aws.amazon.com/route53/) public hosted zones NS servers are delegated in the public DNS hierarchy and that there are no rogue NS servers delegated not matching the Route 53 zone configuration\n - `aws_sso_accounts.sh` - lists all AWS SSO accounts the current SSO user has access to\n - `aws_sso_configs.sh` - generates AWS SSO configs for all AWS SSO accounts the currently logged in SSO user has access to\n - `aws_sso_configs_save.sh` - saves AWS SSO configs generated by `aws_sso_configs.sh` to `~/.aws/config` if they're not already found\n - `aws_sso_account_id_names.sh` - parses AWS config for AWS SSO and outputs Account IDs and Profile names\n - `aws_sso_config_duplicate_sections.sh` - lists duplicate AWS SSO config sections that are using the same sso_account_id. Useful to deduplicate configs containing a mix of hand crafted and automatically generated `aws_sso_configs.sh`\n - `aws_sso_config_duplicate_profile_names.sh` - lists duplicate AWS SSO config profile names that are using the same sso_account_id\n - `aws_accounts_missing_from_config.sh` - for a list of AWS Account IDs in stdin or files, finds those missing from AWS config\n - `aws_sso_accounts_missing_from_list.sh` - for a list of AWS Account IDs in stdin or files, finds AWS SSO accounts in AWS config missing from the provided list\n - `aws_sso_env_creds.sh` - retrieves AWS SSO session credentials in the format of environment export commands for copying to other systems like Terraform Cloud\n - `aws_sso_role_arn.sh` - determines the currently authenticated AWS SSO user's base role ARN in IAM policy usable format\n - `aws_sso_role_arns.sh` - prints all AWS SSO role ARNs in IAM policy usable format\n - `aws_profile_config_add_if_missing.sh` - reads AWS profile config blocks from stdin and appends them to the `~/.aws/config` file if the profile section is not found\n - `aws_profile_generate_direnvs.sh` - generates subdirectories containing the `config.ini` and `.envrc` for every AWS profile found in the given file or `$AWS_CONFIG_FILE` or `~/.aws/config`. Useful to take a large generated AWS `config.ini` from `aws_sso_configs.sh` and then split it into subdirectories for direnvs\n - `aws_s3_bucket.sh` - creates an S3 bucket, blocks public access, enables versioning, encryption, and optionally locks out any given user/group/role ARNs via a bucket policy for safety (eg. to stop Power Users accessing a sensitive bucket like Terraform state)\n - `aws_s3_buckets_block_public_access.sh` - blocks public access to one or more given S3 buckets or files containing bucket names, one per line\n - `aws_s3_account_block_public_access.sh` - blocks S3 public access at the AWS account level\n - `aws_s3_check_buckets_public_blocked.sh` - iterates each S3 bucket and checks it has public access fully blocked via policy. Parallelized for speedup\n - `aws_s3_check_account_public_blocked.sh` - checks S3 public access is blocked at the AWS account level\n - `aws_s3_sync.sh` - syncs multiple AWS S3 URLs from file lists. Validates S3 URLs, source and destination list lengths matches, and optionally that path suffixes match, to prevent off-by-one human errors spraying data all over the wrong destination paths\n - `aws_s3_access_logging.sh` - lists [AWS S3](https://aws.amazon.com/s3/) buckets and their [access logging](https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html) status\n - `aws_s3_delete_bucket_with_versions.sh` - deletes a bucket including all versions. Use with caution!\n - `aws_spot_when_terminated.sh` - executes commands when the [AWS EC2](https://aws.amazon.com/ec2/) instance running this script is notified of [Spot Termination](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-instances.html), acts as a latch mechanism that can be set any time after boot\n - `aws_sqs_check.sh` - sends a test message to an [AWS SQS](https://aws.amazon.com/sqs/) queue, retrieves it to check and then deletes it via the receipt handle id\n - `aws_sqs_delete_message.sh` - deletes 1-10 messages from a given [AWS SQS](https://aws.amazon.com/sqs/) queue (to help clear out test messages)\n - `aws_ssm_put_param.sh` - reads a value from a command line argument or non-echo prompt and saves it to AWS [Systems Manager Parameter Store](https://docs.aws.amazon.com/systems-manager/latest/userguide/what-is-systems-manager.html). Useful for uploading a password without exposing it on your screen\n - `aws_secret*.sh` - AWS [Secrets Manager](https://aws.amazon.com/secrets-manager/) scripts:\n - `aws_secret_list.sh` - returns the list of secrets, one per line\n - `aws_secret_add.sh` - reads a value from a command line argument or non-echo prompt and saves it to Secrets Manager. Useful for uploading a password without exposing it on your screen\n - `aws_secret_add_binary.sh` - base64 encodes a given file's contents and saves it to Secrets Manager as a binary secret. Useful for uploading things like QR code screenshots for sharing MFA to recovery admin accounts\n - `aws_secret_update.sh` - reads a value from a command line argument or non-echo prompt and updates a given Secrets Manager secret. Useful for updating a password without exposing it on your screen\n - `aws_secret_update_binary.sh` - base64 encodes a given file's contents and updates a given Secrets Manager secret. Useful for updating a QR code screenshot for a root account\n - `aws_secret_get.sh` - gets a secret value for a given secret from Secrets Manager, retrieving either a secure string or secure binary depending on which is available\n - `eksctl_cluster.sh` - downloads [eksctl](https://eksctl.io/) and creates an [AWS EKS](https://aws.amazon.com/eks/) Kubernetes cluster\n\nSee also [Knowledge Base notes for AWS](https://github.com/HariSekhon/Knowledge-Base/blob/main/aws.md).\n\n### GCP - Google Cloud Platform\n\n`gcp/` directory:\n\n- [Google Cloud](https://cloud.google.com/) scripts - `gcp_*.sh` / `gce_*.sh` / `gke_*.sh` / `gcr_*.sh` / `bigquery_*.sh`:\n - `.envrc-gcp` - copy to `.envrc` for [direnv](https://direnv.net/) to auto-load GCP configuration settings such as Project, Region, Zone, GKE cluster kubectl context or any other GCloud SDK settings to shorten `gcloud` commands. Applies to the local shell environment only to avoid race conditions caused by naively changing the global gcloud config at `~/.config/gcloud/active_config`\n - calls `.envrc-kubernetes` to set the `kubectl` context isolated to current shell to prevent race conditions between shells and scripts caused by otherwise naively changing the global `~/.kube/config` context\n - `gcp_terraform_create_credential.sh` - creates a service account for [Terraform](https://www.terraform.io/) with full permissions, creates and downloads a credential key json and even prints the `export GOOGLE_CREDENTIALS` command to configure your environment to start using Terraform immediately. Run once for each project and combine with [direnv](https://direnv.net/) for fast easy management of multiple GCP projects\n - `gcp_ansible_create_credential.sh` - creates an [Ansible](https://www.ansible.com/) service account with permissions on the current project, creates and downloads a credential key json and prints the environment variable to immediately use it\n - `gcp_cli_create_credential.sh` - creates a GCloud SDK CLI service account with full owner permissions to all projects, creates and downloads a credential key json and even prints the `export GOOGLE_CREDENTIALS` command to configure your environment to start using it. Avoids having to reauth to `gcloud auth login` every day.\n - `gcp_spinnaker_create_credential.sh` - creates a [Spinnaker](https://spinnaker.io/) service account with permissions on the current project, creates and downloads a credential key json and even prints the Halyard CLI configuration commands to use it\n - `gcp_info.sh` - huge [Google Cloud](https://cloud.google.com/) inventory of deployed resources within the current project - Cloud SDK info plus all of the following (detects which services are enabled to query):\n - `gcp_info_compute.sh` - [GCE](https://cloud.google.com/compute/) Virtual Machine instances, [App Engine](https://cloud.google.com/appengine) instances, [Cloud Functions](https://cloud.google.com/functions), [GKE](https://cloud.google.com/kubernetes-engine) clusters, all [Kubernetes](https://kubernetes.io/) objects across all GKE clusters (see `kubernetes_info.sh` below for more details)\n - `gcp_info_storage.sh` - [Cloud SQL](https://cloud.google.com/sql) info below, plus: [Cloud Storage](https://cloud.google.com/storage) Buckets, [Cloud Filestore](https://cloud.google.com/filestore), [Cloud Memorystore Redis](https://cloud.google.com/memorystore), [BigTable](https://cloud.google.com/bigtable) clusters and instances, [Datastore](https://cloud.google.com/datastore) indexes\n - `gcp_info_cloud_sql.sh` - [Cloud SQL](https://cloud.google.com/sql) instances, whether their backups are enabled, and all databases on each instance\n - `gcp_info_cloud_sql_databases.sh` - lists databases inside each [Cloud SQL](https://cloud.google.com/sql) instance. Included in `gcp_info_cloud_sql.sh`\n - `gcp_info_cloud_sql_backups.sh` - lists backups for each [Cloud SQL](https://cloud.google.com/sql) instance with their dates and status. Not included in `gcp_info_cloud_sql.sh` for brevity. See also `gcp_sql_export.sh` further down for more durable backups to [GCS](https://cloud.google.com/storage)\n - `gcp_info_cloud_sql_users.sh` - lists users for each running [Cloud SQL](https://cloud.google.com/sql) instance. Not included in `gcp_info_cloud_sql.sh` for brevity but useful to audit users\n - `gcp_info_networking.sh` - VPC Networks, Addresses, Proxies, Subnets, Routers, Routes, VPN Gateways, VPN Tunnels, Reservations, Firewall rules, Forwarding rules, [Cloud DNS](https://cloud.google.com/dns) managed zones and verified domains\n - `gcp_info_bigdata.sh` - [Dataproc](https://cloud.google.com/dataproc) clusters and jobs in all regions, [Dataflow](https://cloud.google.com/dataflow) jobs in all regions, [PubSub](https://cloud.google.com/pubsub) messaging topics, [Cloud IOT](https://cloud.google.com/iot-core) registries in all regions\n - `gcp_info_tools.sh` - [Cloud Source Repositories](https://cloud.google.com/source-repositories), [Cloud Builds](https://cloud.google.com/cloud-build), [Container Registry](https://cloud.google.com/container-registry) images across all major repos (`gcr.io`, `us.gcr.io`, `eu.gcr.io`, `asia.gcr.io`), [Deployment Manager](https://cloud.google.com/deployment-manager) deployments\n - `gcp_info_auth_config.sh` - Auth Configurations, Organizations & Current Config\n - `gcp_info_projects.sh` - Projects names and IDs\n - `gcp_info_services.sh` - Services & APIs enabled\n - `gcp_service_apis.sh` - lists all available [GCP](https://cloud.google.com/) Services, APIs and their states (enabled/disabled), and provides `is_service_enabled()` function used throughout the adjacent scripts to avoid errors and only show relevant enabled services\n - `gcp_info_accounts_secrets.sh` - [IAM](https://cloud.google.com/iam) Service Accounts, [Secret Manager](https://cloud.google.com/secret-manager) secrets\n - `gcp_info_all_projects.sh` - same as above but for all detected projects\n - `gcp_foreach_project.sh` - executes a templated command across all GCP projects, replacing `{project_id}` and `{project_name}` in each iteration (used by `gcp_info_all_projects.sh` to call `gcp_info.sh`)\n - `gcp_find_orphaned_disks.sh` - lists orphaned disks across one or more GCP projects (not attached to any compute instance)\n - `gcp_secret*.sh` - Google [Secret Manager](https://cloud.google.com/secret-manager) scripts:\n - `gcp_secret_add.sh` - reads a value from a command line argument or non-echo prompt and saves it to GCP Secrets Manager. Useful for uploading a password without exposing it on your screen\n - `gcp_secret_add_binary.sh` - uploads a binary file to GCP Secrets Manager by base64 encoding it first. Useful for uploading QR code screenshots. Useful for uploading things like QR code screenshots for sharing MFA to recovery admin accounts\n - `gcp_secret_update.sh` - reads a value from a command line argument or non-echo prompt and updates a given GCP Secrets Manager secret. Useful for uploading a password without exposing it on your screen\n - `gcp_secret_get.sh` - finds the latest version of a given GCP Secret Manager secret and returns its value. Used by adjacent scripts\n - `gcp_secret_label_k8s.sh` - labels a given existing GCP secret with the current kubectl cluster name and namespace for later use by `gcp_secrets_to_kubernetes.sh`\n - `gcp_secrets_to_kubernetes.sh` - loads GCP secrets to Kubernetes secrets in a 1-to-1 mapping. Can specify a list of secrets or auto-loads all GCP secrets with labels `kubernetes-cluster` and `kubernetes-namespace` matching the current `kubectl` context (`kcd` to the right namespace first, see `.bash.d/kubernetes`). See also `kubernetes_get_secret_values.sh` to debug the actual values that got loaded. See also [Sealed Secrets](https://github.com/bitnami-labs/sealed-secrets) / [External Secrets](https://external-secrets.io/) in my [Kubernetes repo](https://github.com/HariSekhon/Kubernetes-configs)\n - `gcp_secrets_to_kubernetes_multipart.sh` - creates a Kubernetes secret from multiple GCP secrets (used to put `private.pem` and `public.pem` into the same secret to appear as files on volume mounts for apps in pods to use). See also [Sealed Secrets](https://github.com/bitnami-labs/sealed-secrets) / [External Secrets](https://external-secrets.io/) in my [Kubernetes repo](https://github.com/HariSekhon/Kubernetes-configs)\n - `gcp_secrets_labels.sh` - lists GCP Secrets and their labels, one per line suitable for quick views or shell pipelines\n - `gcp_secrets_update_lable.sh` - updates all GCP secrets in current project matching label key=value with a new label value\n - `gcp_service_account_credential_to_secret.sh` - creates GCP service account and exports a credential key to GCP Secret Manager (useful to stage or combine with `gcp_secrets_to_kubernetes.sh`)\n - `gke_*.sh` - Google [Kubernetes Engine](https://cloud.google.com/kubernetes-engine) scripts\n - `gke_kube_creds.sh` - auto-loads all GKE clusters credentials in the current / given / all projects so your kubectl is ready to rock on GCP\n - `gke_kubectl.sh` - runs kubectl commands safely fixed to a given GKE cluster using config isolation to avoid concurrency race conditions\n - `gke_firewall_rule_cert_manager.sh` - creates a GCP firewall rule for a given GKE cluster's masters to access [Cert Manager](https://cert-manager.io/) admission webhook (auto-determines the master cidr, network and target tags)\n - `gke_firewall_rule_kubeseal.sh` - creates a GCP firewall rule for a given GKE cluster's masters to access [Sealed Secrets](https://github.com/bitnami-labs/sealed-secrets) controller for `kubeseal` to work (auto-determines the master cidr, network and target tags)\n - `gke_nodepool_nodes.sh` - lists all nodes in a given nodepool on the current GKE cluster via kubectl labels (fast)\n - `gke_nodepool_nodes2.sh` - same as above via GCloud SDK (slow, iterates instance groups)\n - `gke_nodepool_taint.sh` - taints/untaints all nodes in a given GKE nodepool on the current cluster (see `kubectl_node_taints.sh` for a quick way to see taints)\n - `gke_nodepool_drain.sh` - drains all nodes in a given nodepool (to decommission or rebuild the node pool, for example with different taints)\n - `gke_persistent_volumes_disk_mappings.sh` - lists GKE kubernetes persistent volumes to GCP persistent disk names, along with PVC and namespace, useful when investigating, resizing PVs etc.\n - `gcr_*.sh` - Google [Container Registry](https://cloud.google.com/container-registry) scripts:\n - `gcr_list_tags.sh` - lists all the tags for a given GCR docker image\n - `gcr_newest_image_tags.sh` - lists the tags for the given GCR docker image with the newest creation date (can use this to determine which image version to tag as `latest`)\n - `gcr_alternate_tags.sh` - lists all the tags for a given GCR docker `image:tag` (use arg `:latest` to see what version / build hashref / date tag has been tagged as `latest`)\n - `gcr_tag_latest.sh` - tags a given GCR docker `image:tag` as `latest` without pulling or pushing the docker image\n - `gcr_tag_branch.sh` - tags a given GCR docker `image:tag` with the current Git branch without pulling or pushing the docker image\n - `gcr_tag_datetime.sh` - tags a given GCR docker image with its creation date and UTC timestamp (when it was uploaded or created by [Google Cloud Build](https://cloud.google.com/cloud-build)) without pulling or pushing the docker image\n - `gcr_tag_newest_image_as_latest.sh` - finds and tags the newest build of a given GCR docker image as `latest` without pulling or pushing the docker image\n - `gcr_tags_timestamps.sh` - lists all the tags and their timestamps for a given GCR docker image\n - `gcr_tags_old.sh` - lists tags older than N days for a given GCR docker image\n - `gcr_delete_old_tags.sh` - deletes tags older than N days for a given GCR docker image. Lists the image:tags to be deleted and prompts for confirmation safety\n - see also [cloudbuild.yaml](https://github.com/HariSekhon/Templates/blob/master/cloudbuild.yaml) in the [Templates](https://github.com/HariSekhon/Templates) repo\n - CI/CD on GCP - trigger Google Cloud Build and GKE Kubernetes deployments from orthogonal CI/CD systems like Jenkins / TeamCity:\n - `gcp_ci_build.sh` - script template for CI/CD to trigger Google Cloud Build to build docker container image with extra datetime and latest tagging\n - `gcp_ci_deploy_k8s.sh` - script template for CI/CD to deploy GCR docker image to GKE Kubernetes using Kustomize\n - `gce_*.sh` - Google [Compute Engine](https://cloud.google.com/compute/) scripts:\n - `gce_foreach_vm.sh` - run a command for each GCP VM instance matching the given name/ip regex in the current GCP project\n - `gce_host_ips.sh` - prints the IPs and hostnames of all or a regex match of GCE VMs for use in /etc/hosts\n - `gce_ssh.sh` - Runs `gcloud compute ssh` to a VM while auto-determining its zone first to override any inherited zone config and make it easier to script iterating through VMs\n - `gcs_ssh_keyscan.sh` - SSH keyscans all the GCE VMs returned from the above `gce_host_ips.sh` script and adds them to `~/.ssh/known_hosts`\n - `gce_meta.sh` - simple script to query the GCE metadata API from within Virtual Machines\n - `gce_when_preempted.sh` - GCE VM preemption latch script - can be executed any time to set one or more commands to execute upon preemption\n - `gce_is_preempted.sh` - GCE VM return true/false if preempted, callable from other scripts\n - `gce_instance_service_accounts.sh` - lists GCE VM instance names and their service accounts\n - `gcp_firewall_disable_default_rules.sh` - disables those lax GCP default network \"allow all\" firewall rules\n - `gcp_firewall_risky_rules.sh` - lists risky GCP firewall rules that are enabled and allow traffic from 0.0.0.0/0\n - `gcp_sql_*.sh` - [Cloud SQL](https://cloud.google.com/sql) scripts:\n - `gcp_sql_backup.sh` - creates Cloud SQL backups\n - `gcp_sql_export.sh` - creates Cloud SQL exports to [GCS](https://cloud.google.com/storage)\n - `gcp_sql_enable_automated_backups.sh` - enable automated daily Cloud SQL backups\n - `gcp_sql_enable_point_in_time_recovery.sh` - enable point-in-time recovery with write-ahead logs\n - `gcp_sql_proxy.sh` - boots a [Cloud SQL Proxy](https://cloud.google.com/sql/docs/postgres/sql-proxy) to all Cloud SQL instances for fast convenient direct `psql` / `mysql` access via local sockets. Installs Cloud SQL Proxy if necessary\n - `gcp_sql_running_primaries.sh` - lists primary running Cloud SQL instances\n - `gcp_sql_service_accounts.sh` - lists Cloud SQL instance service accounts. Useful for copying to [IAM](https://cloud.google.com/iam) to grant permissions (eg. Storage Object Creator for SQL export backups to GCS)\n - `gcp_sql_create_readonly_service_account.sh` - creates a service account with read-only permissions to Cloud SQL eg. to run export backups to GCS\n - `gcp_sql_grant_instances_gcs_object_creator.sh` - grants minimal GCS objectCreator permission on a bucket to primary Cloud SQL instances for exports\n - `gcp_cloud_schedule_sql_exports.sh` - creates Google [Cloud Scheduler](https://cloud.google.com/scheduler) jobs to trigger a [Cloud Function](https://cloud.google.com/functions) via [PubSub](https://cloud.google.com/pubsub) to run [Cloud SQL](https://cloud.google.com/sql) exports to [GCS](https://cloud.google.com/storage) for all [Cloud SQL](https://cloud.google.com/sql) instances in the current GCP project\n - the Python [GCF](https://cloud.google.com/functions) function is in the [DevOps Python tools](https://github.com/HariSekhon/DevOps-Python-tools) repo\n - `bigquery_*.sh` - [BigQuery](https://cloud.google.com/bigquery) scripts:\n - `bigquery_list_datasets.sh` - lists BigQuery datasets in the current GCP project\n - `bigquery_list_tables.sh` - lists BigQuery tables in a given dataset\n - `bigquery_list_tables_all_datasets.sh` - lists tables for all datasets in the current GCP project\n - `bigquery_foreach_dataset.sh` - executes a templated command for each dataset\n - `bigquery_foreach_table.sh` - executes a templated command for each table in a given dataset\n - `bigquery_foreach_table_all_datasets.sh` - executes a templated command for each table in each dataset in the current GCP project\n - `bigquery_table_row_count.sh` - gets the row count for a given table\n - `bigquery_tables_row_counts.sh` - gets the row counts for all tables in a given dataset\n - `bigquery_tables_row_counts_all_datasets.sh` - gets the row counts for all tables in all datasets in the current GCP project\n - `bigquery_generate_query_biggest_tables_across_datasets_by_row_count.sh` - generates a BigQuery SQL query to find the top 10 biggest tables by row count\n - `bigquery_generate_query_biggest_tables_across_datasets_by_size.sh` - generates a BigQuery SQL query to find the top 10 biggest tables by size\n - see also the [SQL Scripts](https://github.com/HariSekhon/SQL-scripts) repo for many more straight BigQuery SQL scripts\n - GCP [IAM](https://cloud.google.com/iam) scripts:\n - `gcp_service_account*.sh`:\n - `gcp_service_account_credential_to_secret.sh` - creates GCP service account and exports a credential key to GCP Secret Manager (useful to stage or combine with `gcp_secrets_to_kubernetes.sh`)\n - `gcp_service_accounts_credential_keys.sh` - lists all service account credential keys and expiry dates, can `grep 9999-12-31T23:59:59Z` to find non-expiring keys\n - `gcp_service_accounts_credential_keys_age.sh` - lists all service account credential keys age in days\n - `gcp_service_accounts_credential_keys_expired.sh` - lists expired service account credential keys that should be removed and recreated if needed\n - `gcp_service_account_members.sh` - lists all members and roles authorized to use any service accounts. Useful for finding GKE Workload Identity mappings\n - `gcp_iam_*.sh`:\n - `gcp_iam_roles_in_use.sh` - lists GCP IAM roles in use in the current or all projects\n - `gcp_iam_identities_in_use.sh` - lists GCP IAM identities (users/groups/serviceAccounts) in use in the current or all projects\n - `gcp_iam_roles_granted_to_identity.sh` - lists GCP IAM roles granted to identities matching the regex (users/groups/serviceAccounts) in the current or all projects\n - `gcp_iam_roles_granted_too_widely.sh` - lists GCP IAM roles which have been granted to allAuthenticatedUsers or even worse allUsers (unauthenticated) in one or all projects\n - `gcp_iam_roles_with_direct_user_grants.sh` - lists GCP IAM roles which have been granted directly to users in violation of best-practice group-based management\n - `gcp_iam_serviceaccount_members.sh` - lists members with permissions to use each GCP service account\n - `gcp_iam_serviceaccounts_without_permissions.sh` - finds service accounts without IAM permissionns, useful to detect obsolete service accounts after a 90 day unused permissions clean out\n - `gcp_iam_workload_identities.sh` - lists GKE Workload Identity integrations, uses `gcp_iam_serviceaccount_members.sh`\n - `gcp_iam_users_granted_directly.sh` - lists GCP IAM users which have been granted roles directly in violation of best-practice group-based management\n - `gcs_bucket_project.sh` - finds the GCP project that a given bucket belongs to using the GCP Storage API\n - `gcs_curl_file.sh` - retrieves a GCS file's contents from a given bucket and path using the GCP Storage API. Useful for starting shell pipelines or being called from other scripts\n - `firebase_foreach_project.sh` - executes a templated command across all Firebase projects, replacing `{project_id}`, `{project_number}` and `{project_name}` in each iteration\n\nSee also [Knowledge Base notes for GCP](https://github.com/HariSekhon/Knowledge-Base/blob/main/gcp.md).\n\n### Kubernetes\n\n`kubernetes/` directory:\n\n- `.envrc-kubernetes` - copy to `.envrc` for [direnv](https://direnv.net/) to auto-load the right Kubernetes `kubectl` context isolated to current shell to prevent race conditions between shells and scripts caused by otherwise naively changing the global `~/.kube/config` context\n- `aws/eksctl_cluster.sh` - quickly spins up an [AWS EKS](https://aws.amazon.com/eks/) cluster using `eksctl` with some sensible defaults\n- `kubernetes_info.sh` - huge [Kubernetes](https://kubernetes.io/) inventory listing of deployed resources across all namespaces in the current cluster / kube context:\n - cluster-info\n - master component statuses\n - nodes\n - namespaces\n - deployments, replicasets, replication controllers, statefulsets, daemonsets, horizontal pod autoscalers\n - storage classes, persistent volumes, persistent volume claims\n - service accounts, resource quotas, network policies, pod security policies\n - container images running\n - container images running counts descending\n - pods (might be too much detail if you have high replica counts, so done last, comment if you're sure nobody has deployed pods outside deployments)\n- `kubectl.sh` - runs kubectl commands safely fixed to a given context using config isolation to avoid concurrency race conditions\n- `kubectl_diff_apply.sh` - generates a kubectl diff and prompts to apply\n- `kustomize_diff_apply.sh` - runs Kustomize build, precreates any namespaces, shows a kubectl diff of the proposed changes, and prompts to apply\n- `kustomize_diff_branch.sh` - runs Kustomize build against the current and target base branch for current or all given directories, then shows the diff for each directory. Useful to detect differences when refactoring, such as switching to tagged bases\n- `kubectl_create_namespaces.sh` - creates any namespaces in yaml files or stdin, a prerequisite for a diff on a blank install, used by adjacent scripts for safety\n- `kubernetes_check_objects_namespaced.sh` - checks Kubernetes yaml(s) for objects which aren't explicitly namespaced, which can easily result in deployments to the wrong namespace. Reads the API resources from your current Kubernetes cluster and if successful excludes cluster-wide objects\n- `kustomize_check_objects_namespaced.sh` - checks Kustomize build yaml output for objects which aren't explicitly namespaced (uses above script)\n- `kubectl_deployment_pods.sh` - gets the pod names with their unpredictable suffixes for a given deployment by querying the deployment's selector labels and then querying pods that match those labels\n- `kubectl_get_all.sh` - finds all namespaced Kubernetes objects and requests them for the current or given namespace. Useful because `kubectl get all` misses a lof of object types\n- `kubectl_get_annotation.sh` - find a type of object with a given annotation\n- `kubectl_restart.sh` - restarts all or filtered deployments/statefulsets in the current or given namespace. Useful when debugging or clearing application problems\n- `kubectl_logs.sh` - tails all containers in all pods or filtered pods in the current or given namespace. Useful when debugging a distributed set of pods in live testing\n- `kubectl_kv_to_secret.sh` - creates a Kuberbetes secret from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n- `kubectl_secret_values.sh` - prints the keys and base64 decoded values within a given Kubernetes secret for quick debugging of Kubernetes secrets. See also: `gcp_secrets_to_kubernetes.sh`\n- `kubectl_secrets_download.sh` - downloads all secrets in current or given namespace to local files of the same name, useful as a backup before migrating to Sealed Secrets\n- `kubernetes_secrets_compare_gcp_secret_manager.sh` - compares each Kubernetes secret to the corresponding secret in GCP Secret Manager. Useful to safety check GCP Secret Manager values align before enabling [External Secrets](https://external-secrets.io/latest/) to replace them\n- `kubernetes_secret_to_external_secret.sh` - generates an [External Secret](https://external-secrets.io/latest/) from an existing Kubernetes secret\n- `kubernetes_secrets_to_external_secrets.sh` - generates [External Secrets](https://external-secrets.io/latest/) from all existing Kubernetes secrets found in the current or given namespace\n- `kubernetes_secret_to_sealed_secret.sh` - generates a [Bitnami Sealed Secret](https://github.com/bitnami-labs/sealed-secrets) from an existing Kubernetes secret\n- `kubernetes_secrets_to_sealed_secrets.sh` - generates [Bitnami Sealed Secrets](https://github.com/bitnami-labs/sealed-secrets) from all existing Kubernetes secrets found in the current or given namespace\n- `kubectl_secrets_annotate_to_be_sealed.sh` - annotates secrets in current or given namespace to allow being overwritten by Sealed Secrets (useful to sync ArgoCD health)\n- `kubectl_secrets_not_sealed.sh` - finds secrets with no SealedSecret ownerReferences\n- `kubectl_secrets_to_be_sealed.sh` - finds secrets pending overwrite by Sealed Secrets with the managed annotation\n- `kubernetes_yaml_strip_live_fields.sh` - strips live fields from Kubernetes yaml object dumps. Useful so you can do `kubectl diff` or `kubectl apply` without hitting annoying errors about immutable fields left in exports from `kubectl get ... -o yaml`\n- `kubernetes_foreach_context.sh` - executes a command across all kubectl contexts, replacing `{context}` in each iteration (skips lab contexts `docker` / `minikube` / `minishift` to avoid hangs since they're often offline)\n- `kubernetes_foreach_namespace.sh` - executes a command across all kubernetes namespaces in the current cluster context, replacing `{namespace}` in each iteration\n - Can be chained with `kubernetes_foreach_context.sh` and useful when combined with `gcp_secrets_to_kubernetes.sh` to load all secrets from GCP to Kubernetes for the current cluster, or combined with `gke_kube_creds.sh` and `kubernetes_foreach_context.sh` for all clusters!\n- `kubernetes_api.sh` - finds Kubernetes API and runs your curl arguments against it, auto-getting authorization token and auto-populating OAuth authentication header\n- `kubernetes_autoscaler_release.sh` - finds the latest Kubernetes Autoscaler release that matches your local Kubernetes cluster version using kubectl and the GitHub API. Useful for quickly finding the image override version for `eks-cluster-autoscaler-kustomization.yaml` in the [Kubernetes configs](https://github.com/HariSekhon/Kubernetes-configs) repo\n- `kubernetes_etcd_backup.sh` - creates a timestamped backup of the Kubernetes Etcd database for a kubeadm cluster\n- `kubernetes_delete_stuck_namespace.sh` - to forcibly delete those pesky kubernetes namespaces of 3rd party apps like Knative that get stuck and hang indefinitely on the finalizers during deletion\n- `kubeadm_join_cmd.sh` - outputs `kubeadm join` command (generates new token) to join an existing Kubernetes cluster (used in [vagrant kubernetes](https://github.com/HariSekhon/DevOps-Bash-tools/tree/master/vagrant/kubernetes) provisioning scripts)\n- `kubeadm_join_cmd2.sh` - outputs `kubeadm join` command manually (calculates cert hash + generates new token) to join an existing Kubernetes cluster\n- `kubernetes_nodes_ssh_dump_logs.sh` - fetch logs from Kubernetes nodes (eg. for support debug requests by vendors)\n- `kubectl_exec.sh` - finds and execs to the first Kubernetes pod matching the given name regex, optionally specifying the container name regex to exec to, and shows the full generated `kubectl exec` command line for clarity\n- `kubectl_exec2.sh` - finds and execs to the first Kubernetes pod matching given pod filters, optionally specifying the container to exec to, and shows the full generated `kubectl exec` command line for clarity\n- `kubectl_pods_per_node.sh` - lists number of pods per node sorted descending\n- `kubectl_pods_important.sh` - lists important pods and their nodes to check on scheduling\n- `kubectl_pods_colocated.sh` - lists pods from deployments/statefulsets that are colocated on the same node\n- `kubectl_node_labels.sh` - lists nodes and their labels, one per line, easier to read visually or pipe in scripting\n- `kubectl_pods_running_with_labels.sh` - lists running pods with labels matching key=value pair arguments\n- `kubectl_node_taints.sh` - lists nodes and their taints\n- `kubectl_jobs_stuck.sh` - finds Kubernetes jobs stuck for hours or days with no completions\n- `kubectl_jobs_delete_stuck.sh` - prompts for confirmation to delete stuck Kubernetes jobs found by script above\n- `kubectl_images.sh` - lists Kubernetes container images running on the current cluster\n- `kubectl_image_counts.sh` - lists Kubernetes container images running counts sorted descending\n- `kubectl_image_deployments.sh` - lists which deployments, statefulsets or daemonsets container images belong to. Useful to find which deployment, statefulset or daemonset to upgrade to replace a container image eg. when replacing deprecated the k8s.gcr.io registry with registry.k8s.io\n- `kubectl_pod_count.sh` - lists Kubernetes pods total running count\n- `kubectl_pod_labels.sh` - lists Kubernetes pods and their labels, one label per line for easier shell script piping for further actions\n- `kubectl_pod_ips.sh` - lists Kubernetes pods and their pod IP addresses\n- `kubectl_container_count.sh` - lists Kubernetes containers total running count\n- `kubectl_container_counts.sh` - lists Kubernetes containers running counts by name sorted descending\n- `kubectl_pods_dump_*.sh` - dump stats / logs / jstacks from all pods matching a given regex and namespace to txt files for support debugging\n - `kubectl_pods_dump_stats.sh` - dump stats\n - `kubectl_pods_dump_logs.sh` - dump logs\n - `kubectl_pods_dump_jstacks.sh` - dump Java jstacks\n - `kubectl_pods_dump_all.sh` - calls the above `kubectl_pods_dump_*.sh` scripts for N iterations with a given interval\n- `kubectl_empty_namespaces.sh` - finds namespaces without any of the usual objects using `kubectl get all`\n- `kubectl_delete_empty_namespaces.sh` - removes empty namespaces, uses `kubectl_empty_namespaces.sh`\n- `kubectl_.sh` - quick launch one-off pods for interactive debuggging in Kubernetes\n - `kubectl_alpine.sh`\n - `kubectl_busybox.sh`\n - `kubectl_curl.sh`\n - `kubectl_dnsutils.sh`\n - `kubectl_gcloud_sdk.sh`\n - `kubectl_run_sa.sh` - launch a quick pod with the given service account to test private repo pull & other permissions\n- `kubectl_port_forward.sh` - launches `kubectl port-forward` to a given pod's port with an optional label or name filter. If more than one pod is found, prompts with an interactive dialogue to choose one. Optionally automatically opens the forwarded localhost URL in the default browser\n - `kubectl_port_forward_spark.sh` - does the above for Spark UI\n- `helm_template.sh` - templates a Helm chart for Kustomize deployments\n- `kustomize_parse_helm_charts.sh` - parses the [Helm](https://helm.sh/) charts from one or more `kustomization.yaml` files into TSV format for further shell pipe processing\n- `kustomize_install_helm_charts.sh` - installs the [Helm](https://helm.sh/) charts from one or more `kustomization.yaml` files the old fashioned Helm CLI way so that tools like [Nova](https://github.com/FairwindsOps/nova) can be used to detect outdated charts (used in [Kubernetes-configs](https://github.com/HariSekhon/Kubernetes-configs) repo's [CI](https://github.com/HariSekhon/Kubernetes-configs/actions/workflows/nova.yaml))\n- `kustomize_update_helm_chart_versions.sh` - updates one or more `kustomization.yaml` files to the latest versions of any charts they contain\n- `kustomize_materialize.sh` - recursively materializes all `kustomization.yaml` to `kustomization.materialized.yaml` in the same directories for scanning with tools like [Pluto](https://github.com/FairwindsOps/pluto) to detect deprecated API objects inherited from embedded Helm charts. Parallelized for performance\n- ArgoCD:\n - `argocd_auto_sync.sh` - toggle Auto-sync on/off to allow repairs and maintenance operation for a given app and also disables / re-enables the App-of-Apps base apps to stop then re-enabling the app\n - `argocd_apps_sync.sh` - sync's all [ArgoCD](https://argo-cd.readthedocs.io/en/stable/) apps matching an optional ERE regex filter on their names using the ArgoCD CLI\n - `argocd_apps_wait_sync.sh` - sync's all [ArgoCD](https://argo-cd.readthedocs.io/en/stable/) apps matching an optional ERE regex filter on their names using the ArgoCD CLI's while also checking their health and operation\n - `argocd_generate_resource_whitelist.sh` - generates a yaml cluster and namespace resource whitelist for ArgoCD project config. If given an existing yaml, will merge in its original whitelists, dedupe, and write them back into the file using an in-place edit. Useful because ArgoCD 2.2+ doesn't show resources that aren't explicitly allowed, such as ReplicaSets and Pods\n- Pluto:\n - `pluto_detect_helm_materialize.sh` - recursively materializes all helm `Chart.yaml` and runs [Pluto](https://github.com/FairwindsOps/pluto) on each directory to work around [this issue](https://github.com/FairwindsOps/pluto/issues/444)\n - `pluto_detect_kustomize_materialize.sh` - recursively materializes all `kustomization.yaml` and runs [Pluto](https://github.com/FairwindsOps/pluto) on each directory to work around [this issue](https://github.com/FairwindsOps/pluto/issues/444)\n - `pluto_detect_kubectl_dump_objects.sh` - dumps all live Kubernetes objects to /tmp and runs [Pluto](https://github.com/FairwindsOps/pluto) to detect deprecated API objects on the cluster from any source\n- Rancher:\n - `rancher_api.sh` - queries the Rancher API with authentication\n - `rancher_kube_creds.sh` - downloads all Rancher clusters credentials into subdirectories matching cluster names, with `.envrc` in each, so a quick `cd` into one and your kubectl is ready to rock\n- see also Google Kubernetes Engine scripts in the [GCP - Google Cloud Platform](https://github.com/HariSekhon/DevOps-Bash-tools/#gcp---google-cloud-platform) section above\n- see also the [Kubernetes configs](https://github.com/HariSekhon/Kubernetes-configs) repo\n\nSee also [Knowledge Base notes for Kubernetes](https://github.com/HariSekhon/Knowledge-Base/blob/main/kubernetes.md).\n\n### Docker\n\n`docker/` directory:\n\n- `docker_*.sh` / `dockerhub_*.sh` - [Docker](https://www.docker.com/) / [DockerHub](https://hub.docker.com/) API scripts:\n - `dockerhub_api.sh` - queries DockerHub API v2 with or without authentication (`$DOCKERHUB_USER` & `$DOCKERHUB_PASSWORD` / `$DOCKERHUB_TOKEN`)\n - `docker_api.sh` - queries a Docker Registry with optional basic authentication if `$DOCKER_USER` & `$DOCKER_PASSWORD` are set\n - `docker_build_hashref.sh` - runs `docker build` and auto-generates docker image name and tag from relative Git path and commit short SHA hashref and a dirty sha suffix if git contents are modified. Useful to compare docker image sizes between your clean and modified versions of `Dockerfile` or contents\n - `docker_package_check.sh` - runs package installs on major versions of a docker image to check given packages are available before adding them and breaking builds across linux distro versions\n - `docker_registry_list_images.sh` - lists images in a given private Docker Registry\n - `docker_registry_list_tags.sh` - lists tags for a given image in a private Docker Registry\n - `docker_registry_get_image_manifest.sh` - gets a given image:tag manifest from a private Docker Registry\n - `docker_registry_tag_image.sh` - tags a given image with a new tag in a private Docker Registry via the API without pulling and pushing the image data (must faster and more efficient)\n - `dockerhub_list_tags.sh` - lists tags for a given DockerHub repo. See also [dockerhub_show_tags.py](https://github.com/HariSekhon/DevOps-Python-tools/blob/master/dockerhub_show_tags.py) in the [DevOps Python tools](https://github.com/HariSekhon/DevOps-Python-tools) repo.\n - `dockerhub_list_tags_by_last_updated.sh` - lists tags for a given DockerHub repo sorted by last updated timestamp descending\n - `dockerhub_search.sh` - searches with a configurable number of returned items (older docker cli was limited to 25 results)\n - `clean_caches.sh` - cleans out OS package and programming language caches, call near end of `Dockerfile` to reduce Docker image size\n - see also the [Dockerfiles](https://github.com/HariSekhon/Dockerfiles) repo\n- `quay_api.sh` - queries the [Quay.io](https://quay.io/) API with OAuth2 authentication token `$QUAY_TOKEN`\n\nSee also [Knowledge Base notes for Docker](https://github.com/HariSekhon/Knowledge-Base/blob/main/docker.md).\n\n### Data\n\n`data/` directory:\n\n- `avro_tools.sh` - runs Avro Tools jar, downloading it if not already present (determines latest version when\n downloading)\n- `parquet_tools.sh` - runs Parquet Tools jar, downloading it if not already present (determines latest version\n when downloading)\n- `csv_header_indices.sh` - list CSV headers with their zero indexed numbers, useful reference when coding against\n column positions\n- `ini_config_add_if_missing.sh` - reads INI config blocks from stdin and appends them to the specified file if the section is not found. Used by `aws_profile_config_add_if_missing.sh`\n- `ini_config_duplicate_sections.sh` - lists duplicate INI config sections that are using the same value for a given key in the given .ini file\n- `ini_config_duplicate_section_names.sh` - lists duplicate INI config section names that are using the same value for a given key in the given .ini file\n- `ini_grep_section.sh` - prints the named section from a given .ini file to stdout\n- `wordcount.sh` - counts and ranks words by their frequency in file(s) or stdin\n- Data format validation `validate_*.py` from [DevOps Python Tools repo](https://github.com/HariSekhon/DevOps-Python-tools):\n\n - CSV\n - JSON\n - [Avro](https://avro.apache.org/)\n - [Parquet](https://parquet.apache.org/)\n - INI / Properties files (Java)\n - LDAP LDIF\n - XML\n - YAML\n\n- `json2yaml.sh` - converts JSON to YAML\n- `yaml2json.sh` - converts YAML to JSON - needed for some APIs like GitLab CI linting\n (see [Gitlab](#git---github-gitlab-bitbucket-azure-devops) section above)\n\n### Big Data & NoSQL\n\n`bigdata/` and `kafka/` directories:\n\n- `kafka_*.sh` - scripts to make [Kafka](http://kafka.apache.org/) CLI usage easier including auto-setting Kerberos to source TGT from environment and auto-populating broker and zookeeper addresses. These are auto-added to the `$PATH` when `.bashrc` is sourced. For something similar for [Solr](https://lucene.apache.org/solr/), see `solr_cli.pl` in the [DevOps Perl Tools](https://github.com/HariSekhon/DevOps-Perl-tools) repo.\n- `zookeeper*.sh` - [Apache ZooKeeper](https://zookeeper.apache.org/) scripts:\n - `zookeeper_client.sh` - shortens `zookeeper-client` command by auto-populating the zookeeper quorum from the environment variable `$ZOOKEEPERS` or else parsing the zookeeper quorum from `/etc/**/*-site.xml` to make it faster and easier to connect\n - `zookeeper_shell.sh` - shortens Kafka's `zookeeper-shell` command by auto-populating the zookeeper quorum from the environment variable `$KAFKA_ZOOKEEPERS` and optionally `$KAFKA_ZOOKEEPER_ROOT` to make it faster and easier to connect\n- `hive_*.sh` / `beeline*.sh` - [Apache Hive](https://hive.apache.org/) scripts:\n - `beeline.sh` - shortens `beeline` command to connect to [HiveServer2](https://cwiki.apache.org/confluence/display/Hive/HiveServer2+Overview) by auto-populating Kerberos and SSL settings, zookeepers for HiveServer2 HA discovery if the environment variable `$HIVE_HA` is set or using the `$HIVESERVER_HOST` environment variable so you can connect with no arguments (prompts for HiveServer2 address if you haven't set `$HIVESERVER_HOST` or `$HIVE_HA`)\n - `beeline_zk.sh` - same as above for [HiveServer2](https://cwiki.apache.org/confluence/display/Hive/HiveServer2+Overview) HA by auto-populating SSL and ZooKeeper service discovery settings (specify `$HIVE_ZOOKEEPERS` environment variable to override). Automatically called by `beeline.sh` if either `$HIVE_ZOOKEEPERS` or `$HIVE_HA` is set (the latter parses `hive-site.xml` for the ZooKeeper addresses)\n - `hive_foreach_table.sh` - executes a SQL query against every table, replacing `{db}` and `{table}` in each iteration eg. `select count(*) from {table}`\n - `hive_list_databases.sh` - list Hive databases, one per line, suitable for scripting pipelines\n - `hive_list_tables.sh` - list Hive tables, one per line, suitable for scripting pipelines\n - `hive_tables_metadata.sh` - lists a given DDL metadata field for each Hive table (to compare tables)\n - `hive_tables_location.sh` - lists the data location per Hive table (eg. compare external table locations)\n - `hive_tables_row_counts.sh` - lists the row count per Hive table\n - `hive_tables_column_counts.sh` - lists the column count per Hive table\n- ` impala*.sh` - [Apache Impala](https://impala.apache.org/) scripts:\n - `impala_shell.sh` - shortens `impala-shell` command to connect to [Impala](https://impala.apache.org/) by parsing the Hadoop topology map and selecting a random datanode to connect to its Impalad, acting as a cheap CLI load balancer. For a real load balancer see [HAProxy config for Impala](https://github.com/HariSekhon/HAProxy-configs) (and many other Big Data & NoSQL technologies). Optional environment variables `$IMPALA_HOST` (eg. point to an explicit node or an HAProxy load balancer) and `IMPALA_SSL=1` (or use regular impala-shell `--ssl` argument pass through)\n - `impala_foreach_table.sh` - executes a SQL query against every table, replacing `{db}` and `{table}` in each iteration eg. `select count(*) from {table}`\n - `impala_list_databases.sh` - list Impala databases, one per line, suitable for scripting pipelines\n - `impala_list_tables.sh` - list Impala tables, one per line, suitable for scripting pipelines\n - `impala_tables_metadata.sh` - lists a given DDL metadata field for each Impala table (to compare tables)\n - `impala_tables_location.sh` - lists the data location per Impala table (eg. compare external table locations)\n - `impala_tables_row_counts.sh` - lists the row count per Impala table\n - `impala_tables_column_counts.sh` - lists the column count per Impala table\n- `hdfs_*.sh` - Hadoop [HDFS](https://en.wikipedia.org/wiki/Apache_Hadoop#Hadoop_distributed_file_system) scripts:\n - `hdfs_checksum*.sh` - walks an HDFS directory tree and outputs HDFS native checksums (faster) or portable externally comparable CRC32, in serial or in parallel to save time\n - `hdfs_find_replication_factor_1.sh` / `hdfs_set_replication_factor_3.sh` - finds HDFS files with replication factor 1 / sets HDFS files with replication factor <=2 to replication factor 3 to repair replication safety and avoid no replica alarms during maintenance operations (see also Python API version in the [DevOps Python Tools](https://github.com/HariSekhon/DevOps-Python-tools) repo)\n - `hdfs_file_size.sh` / `hdfs_file_size_including_replicas.sh` - quickly differentiate HDFS files raw size vs total replicated size\n - `hadoop_random_node.sh` - picks a random Hadoop cluster worker node, like a cheap CLI load balancer, useful in scripts when you want to connect to any worker etc. See also the read [HAProxy Load Balancer configurations](https://github.com/HariSekhon/HAProxy-configs) which focuses on master nodes\n- `cloudera_*.sh` - [Cloudera](https://www.cloudera.com/) scripts:\n - `cloudera_manager_api.sh` - script to simplify querying [Cloudera Manager](https://www.cloudera.com/products/product-components/cloudera-manager.html) API using environment variables, prompts, authentication and sensible defaults. Built on top of `curl_auth.sh`\n - `cloudera_manager_impala_queries*.sh` - queries [Cloudera Manager](https://www.cloudera.com/products/product-components/cloudera-manager.html) for recent [Impala](https://impala.apache.org/) queries, failed queries, exceptions, DDL statements, metadata stale errors, metadata refresh calls etc. Built on top of `cloudera_manager_api.sh`\n - `cloudera_manager_yarn_apps.sh` - queries [Cloudera Manager](https://www.cloudera.com/products/product-components/cloudera-manager.html) for recent [Yarn](https://hadoop.apache.org/docs/current/hadoop-yarn/hadoop-yarn-site/YARN.html) apps. Built on top of `cloudera_manager_api.sh`\n - `cloudera_navigator_api.sh` - script to simplify querying [Cloudera Navigator](https://www.cloudera.com/products/product-components/cloudera-navigator.html) API using environment variables, prompts, authentication and sensible defaults. Built on top of `curl_auth.sh`\n - `cloudera_navigator_audit_logs.sh` - fetches [Cloudera Navigator](https://www.cloudera.com/products/product-components/cloudera-navigator.html) audit logs for given service eg. hive/impala/hdfs via the API, simplifying date handling, authentication and common settings. Built on top of `cloudera_navigator_api.sh`\n - `cloudera_navigator_audit_logs_download.sh` - downloads [Cloudera Navigator](https://www.cloudera.com/products/product-components/cloudera-navigator.html) audit logs for each service by year. Skips existing logs, deletes partially downloaded logs on failure, generally retry safe (while true, Control-C, not `kill -9` obviously). Built on top of `cloudera_navigator_audit_logs.sh`\n\nSee also [Knowledge Base notes for Hadoop](https://github.com/HariSekhon/Knowledge-Base/blob/main/hadoop.md).\n\n### Git - GitHub, GitLab, Bitbucket, Azure DevOps\n\n`git/`, `github/`, `gitlab/`, `bitbucket/` and `azure_devops/` directories:\n\n- `git/*.sh` - [Git](https://git-scm.com/) scripts:\n - `precommit_run_changed_files.sh` - runs pre-commit on all files changed on the current branch vs the default branch. Useful to reproduce `pre-commit` checks that are failing in pull requests to get your PRs to pass\n - `git_diff_commit.sh` - quickly commits added or updated files to Git, showing a diff and easy enter prompt for each file. Super convenient for fast commits on the command line, and in vim and IDEs via hotkeys\n - `git_review_push.sh` - shows diff of what would be pushed upstream and prompts to push. Convenient for fast reviewed pushes via vim or IDEs hotkeys\n - `git_branch_delete_squash_merged.sh` - carefully detects if a squash merged branch you want to delete has no changes with the default trunk branch before deleting it.\n See [Squash Merges](https://github.com/HariSekhon/Knowledge-Base/blob/main/git.md#squash-merges-require-force-deleting-branches) in knowledge-base about why this is necessary.\n - `git_tag_release.sh` - creates a Git tag, auto-incrementing a `.N` suffix on the year/month/day date format if no exact version given\n - `git_foreach_branch.sh` - executes a command on all branches (useful in heavily version branched repos like in my [Dockerfiles](https://github.com/HariSekhon/Dockerfiles) repo)\n - `git_foreach_repo.sh` - executes a command against all adjacent repos from a given repolist (used heavily by many adjacent scripts)\n - `git_foreach_modified.sh` - executes a command against each file with git modified status\n - `git_foreach_repo_replace_readme_actions.sh` - updates the `README.md` badges for GitHub Actions to match the local repo name. Useful to bulk fix copied badges quickly and easily\n - `git_foreach_repo_update_readme.sh` - git-diff-commits the `README.md` for each Git repo checkout using adjacent `git_foreach_repo.sh` and `git_diff_commit.sh` scripts. Useful to quickly bulk update `README.md` in all your projects, such as when references need updating\n - `git_push_stats.sh` - shows the Git push stats to the remote origin for the current branch - number of commits and lines of diff, using the following `git_origin_*.sh` scripts:\n - `git_origin_log_to_push.sh` - shows the Git log in local branch that would be pushed to remote origin\n - `git_origin_files_to_push.sh` - shows the Git files in local branch that would be pushed to remote origin\n - `git_origin_diff_to_push.sh` - shows the Git diff of lines in local branch that would be pushed to remote origin\n - `git_origin_commit_count_to_push.sh` - shows the number of Git commits in local branch that would be pushed to remote origin\n - `git_origin_line_count_to_push.sh` - shows the Git number of lines changed in local branch that would be pushed to remote origin. These are lines actually added / changed / removed without surrounding context lines\n - `git_merge_all.sh` / `git_merge_master.sh` / `git_merge_master_pull.sh` - merges updates from master branch to all other branches to avoid drift on longer lived feature branches / version branches (eg. [Dockerfiles](https://github.com/HariSekhon/Dockerfiles) repo)\n - `git_remotes_add_origin_providers.sh` - auto-creates remotes for the 4 major public repositories ([GitHub](https://github.com/)/[GitLab](https://gitlab.com/)/[Bitbucket](https://bitbucket.org)/[Azure DevOps](https://dev.azure.com/)), useful for `git pull -all` to fetch and merge updates from all providers in one command\n - `git_remotes_set_multi_origin.sh` - sets up multi-remote origin for unified push to automatically keep the 4 major public repositories in sync (especially useful for [Bitbucket](https://bitbucket.org) and [Azure DevOps](https://dev.azure.com/) which don't have [GitLab](https://gitlab.com/)'s auto-mirroring from [GitHub](https://github.com/) feature)\n - `git_remotes_set_https_to_ssh.sh` - converts local repo's remote URLs from https to ssh (more convenient with SSH keys instead of https auth tokens, especially since Azure DevOps expires personal access tokens every year)\n - `git_remotes_set_ssh_to_https.sh` - converts local repo's remote URLs from ssh to https (to get through corporate firewalls or hotels if you travel a lot)\n - `git_remotes_set_https_creds_helpers.sh` - adds Git credential helpers configuration to the local git repo to use http API tokens dynamically from environment variables if they're set\n - `git_repos_pull.sh` - pull multiple repos based on a source file mapping list - useful for easily sync'ing lots of Git repos among computers\n - `git_repos_update.sh` - same as above but also runs the `make update` build to install the latest dependencies, leverages the above script\n - `git_grep_env_vars.sh` - find environment variables in the current git repo's code base in the format `SOME_VAR` (useful to find undocumented environment variables in internal or open source projects such as ArgoCD eg. [argoproj/argocd-cd #8680](https://github.com/argoproj/argo-cd/pull/8680))\n - `git_log_empty_commits.sh` - find empty commits in git history (eg. if a `git filter-branch` was run but `--prune-empty` was forgotten, leaking metadata like subjects containing file names or other sensitive info)\n - `git_log_me.sh` - shows only commits in the Git log done by you. Useful to remind yourself what parts the current Git repo you've been working on for periodic reviews, reports or even updating your CV!\n - `git_log_me_added.sh` - same as above but only file addition commits\n - `git_graph_commit_history_gnuplot.sh` - generates GNUplot graphs of Git commits per year and per month for the entire history of the local Git repo checkout\n - `git_graph_commit_history_mermaidjs.sh` - generates MermaidJS graphs of Git commits per year and per month for the entire history of the local Git repo checkout\n - `git_graph_commit_times_gnuplot.sh` - generates a GNUplot graph of Git commit times from the current Git repo checkout's `git log`\n - `git_graph_commit_times_mermaidjs.sh` - generates a MermaidJS graph of Git commit times from the current Git repo checkout's `git log`\n - `git_graph_commit_times_gnuplot_all_repos.sh` - generates GNUplot graph of the GitHub commit times from all local adjacent Git repo checkouts listed in `setup/repos.txt` using Git log in each checkout\n - `git_graph_commit_times_mermaidjs_all_repos.sh` - generates MermaidJS graph of the GitHub commit times from all local adjacent Git repo checkouts listed in `setup/repos.txt` using Git log in each checkout\n - `github_public_lines_of_code.sh` - checks out all public original source GitHub repos for the current or given user and then counts all lines of code for them with breakdowns of languages, files, code, comments and blanks\n - `git_revert_line.sh` - reverts the first line that matches a given regex from the Git head commit's version of the same line number. Useful to revert some changes caused by over zealous sed'ing scripts, where you want to cherry-pick revert a single line change\n - `git_files_no_uncommitted_changes.sh` - returns zero if given file(s) don't have uncommitted changes to Git, either staged or unstaged. Useful to be able to iterate over git files with in-place edits only if safe to do so without other uncommitted changes that would be at risk of being lost\n - `git_files_in_history.sh` - finds all filename / file paths in the git log history, useful for prepping for `git filter-branch`\n - `git_filter_branch_fix_author.sh` - rewrites Git history to replace author/committer name & email references (useful to replace default account commits). Powerful, read `--help` and `man git-filter-branch` carefully. Should only be used by Git Experts\n - `git_filter_repo_replace_text.sh` - rewrites Git history to replace a given text to scrub a credential or other sensitive token from history. Refuses to operate on tokens less than 8 chars for safety\n - `git_submodules_update.sh` - updates all submodules in the local git repo to the latest commit of their detected default trunk branch\n - `git_submodules_update_repos.sh` - updates submodules for all repos given as args or saved in the `setup/repos.txt` file\n - `git_askpass.sh` - credential helper script to use environment variables for git authentication\n- `github/*.sh` - [GitHub](https://github.com/) API / CLI scripts:\n - `github_api.sh` - queries the GitHub [API](https://docs.github.com/en/rest/reference). Can infer GitHub user, repo and authentication token from local checkout or environment (`$GITHUB_USER`, `$GITHUB_TOKEN`)\n - `github_install_binary.sh` - installs a binary from GitHub releases into $HOME/bin or /usr/local/bin. Auto-determines the latest release if no version specified, detects and unpacks any tarball or zip files\n - `github_foreach_repo.sh` - executes a templated command for each non-fork GitHub repo, replacing the `{owner}`/`{name}` or `{repo}` placeholders in each iteration\n - `github_graph_commit_times_gnuplot.sh` - generates GNUplot graph of GitHub commit times from all public GitHub repos for a given user. Fetches the commit data via the GitHub API\n - `github_graph_commit_times_mermaidjs.sh` - generates MermaidJS graph of the GitHub commit times from all public GitHub repos for a given user. Fetches the commit data via the GitHub API\n - `github_clone_or_pull_all_repos.sh` - git clones or pulls all repos for a user or organization into directories of the same name under the current directory\n - `github_download_release_file.sh` - downloads a file from GitHub Releases, optionally determining the latest version, uses `bin/download_url_file.sh`\n - `github_download_release_jar.sh` - downloads a JAR file from GitHub Releases (used by `install/download_*_jar.sh` for things like [JDBC](https://github.com/HariSekhon/Knowledge-Base/blob/main/jdbc.md) drivers or [Java](#java) [decompilers](https://github.com/HariSekhon/Knowledge-Base/blob/main/java.md#java-decompilers)), optionally determines latest version to download, and finally validates the downloaded file's format\n - `github_invitations.sh` - lists / accepts repo invitations. Useful to accept a large number of invites to repos generated by automation\n - `github_mirror_repos_to_gitlab.sh` - creates/syncs GitHub repos to GitLab for migrations or to cron fast free Disaster Recovery, including all branches and tags, plus the repo descriptions. Note this doesn't include PRs/wikis/releases\n - `github_mirror_repos_to_bitbucket.sh` - creates/syncs GitHub repos to BitBucket for migrations or to cron fast free Disaster Recovery, including all branches and tags, plus the repo descriptions. Note this doesn't include PRs/wikis/releases\n - `github_mirror_repos_to_aws_codecommit.sh` - creates/syncs GitHub repos to AWS CodeCommit for migrations or to cron fast almost free Disaster Recovery (close to $0 compared to $100-400+ per month for [Rewind BackHub](https://rewind.com/products/backups/github/)), including all branches and tags, plus the repo descriptions. Note this doesn't include PRs/wikis/releases\n - `github_mirror_repos_to_gcp_source_repos.sh` - creates/syncs GitHub repos to GCP Source Repos for migrations or to cron fast almost free Disaster Recovery (close to $0 compared to $100-400+ per month for [Rewind BackHub](https://rewind.com/products/backups/github/)), including all branches and tags. Note this doesn't include repo description/PRs/wikis/releases\n - `github_pull_request_create.sh` - creates a Pull Request idempotently by first checking for an existing PR between the branches, and also checking if there are the necessary commits between the branches, to avoid common errors from blindly raising PRs. Useful to automate code promotion across environment branches. Also works across repo forks and is used by `github_repo_fork_update.sh`. Even populates github pull request template and does Jira ticket number replacement from branch prefix\n - `github_pull_request_preview.sh` - opens a GitHub Pull Request preview page from the current local branch to the given or default branch\n - `github_push_pr_preview.sh` - pushes to GitHub origin, sets upstream branch, then open a Pull Request preview from current branch to the given or default trunk branch in your browser\n - `github_push_pr.sh` - pushes to GitHub origin, sets upstream branch, then idemopotently creates a Pull Request from current branch to the given or default trunk branch and opens the generated PR in your browser for review\n - `github_merge_branch.sh` - merges one branch into another branch via a Pull Request for full audit tracking all changes. Useful to automate feature PRs, code promotion across environment branches, or backport hotfixes from Production or Staging to trunk branches such as master, main, dev or develop\n - `github_remote_set_upstream.sh` - in a forked GitHub repo's checkout, determine the origin of the fork using GitHub CLI and configure a git remote to the upstream. Useful to be able to easily pull updates from the original source repo\n - `github_pull_merge_trunk.sh` - pulls the origin or fork upstream repo's trunk branch and merges it into the local branch, In a forked GitHub repo's checkout, determines the origin of the fork using GitHub CLI, configures a git remote to the upstream, pulls the default branch and if on a branch other than the default then merges the default branch to the local current branch. Simplifies and automates keeping your checkout or forked repo up to date with the original source repo to quickly resolve merge conflicts locally and submit updated Pull Requests\n - `github_forked_add_remote.sh` - quickly adds a forked repo as a remote from an interactive men list of forked repos\n - `github_forked_checkout_branch.sh` - quickly check out a forked repo's branch from an interactive menu lists of forked repos and their branches\n - `github_tag_hashref.sh` - Returns the GitHub commit hashref for a given GitHub Actions `owner/repo@tag` or `https://github.com/owner/repo@tag`. Useful for pinning 3rd party GitHub Actions to hashref instead of tag to follow [GitHub Actions Best Practices](https://github.com/HariSekhon/Knowledge-Base/blob/main/github-actions.md#github-actions-best-practices)\n - `github_actions_foreach_workflow.sh` - executes a templated command for each workflow in a given GitHub repo, replacing `{name}`, `{id}` and `{state}` in each iteration\n - `github_actions_aws_create_load_credential.sh` - creates an AWS user with group/policy, generates and downloads access keys, and uploads them to the given repo\n - `github_actions_in_use.sh` - lists GitHub Actions directly referenced in the .github/workflows in the current local repo checkout\n - `github_actions_in_use_repo.sh` - lists GitHub Actions for a given repo via the API, including following imported reusable workflows\n - `github_actions_in_use_across_repos.sh` - lists GitHub Actions in use across all your repos\n - `github_actions_repos_lockdown.sh` - secures GitHub Actions settings across all user repos to only GitHub, verified partners and selected 3rd party actions\n - `github_actions_repo_set_secret.sh` - sets a secret in the given repo from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `github_actions_repo_env_set_secret.sh` - sets a secret in the given repo and environment from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `github_actions_repo_secrets_overriding_org.sh` - finds any secrets for a repo that are overriding organization level secrets. Useful to combine with `github_foreach_repo.sh` for auditing\n - `github_actions_repo_restrict_actions.sh` - restricts GitHub Actions in the given repo to only running actions from GitHub and verfied partner companies (.eg AWS, Docker)\n - `github_actions_repo_actions_allow.sh` - allows select 3rd party GitHub Actions in the given repo\n - `github_actions_runner.sh` - generates a [GitHub Actions](https://github.com/features/actions) self-hosted runner token for a given Repo or Organization via the GitHub API and then runs a dockerized GitHub Actions runner with the appropriate configuration\n - `github_actions_runner_local.sh` - downloads, configures and runs a local GitHub Actions Runner for Linux or Mac\n - `github_actions_runner_token.sh` - generates a GitHub Actions runner token to register a new self-hosted runner\n - `github_actions_runners.sh` - lists GitHub Actions self-hosted runners for a given Repo or Organization\n - `github_actions_delete_offline_runners.sh` - deletes offline GitHub Actions self-hosted runners. Useful to clean up short-lived runners eg. Docker, Kubernetes\n - `github_actions_workflows.sh` - lists GitHub Actions workflows for a given repo (or auto-infers local repository)\n - `github_actions_workflow_runs.sh` - lists GitHub Actions workflow runs for a given workflow id or name\n - `github_actions_workflows_status.sh` - lists all GitHub Actions workflows and their statuses for a given repo\n - `github_actions_workflows_state.sh` - lists GitHub Actions workflows enabled/disabled states (GitHub now disables workflows after 6 months without a commit)\n - `github_actions_workflows_disabled.sh` - lists GitHub Actions workflows that are disabled. Combine with `github_foreach_repo.sh` to scan all repos to find disabled workflows\n - `github_actions_workflow_enable.sh` - enables a given GitHub Actions workflow\n - `github_actions_workflows_enable_all.sh` - enables all GitHub Actions workflows in a given repo. Useful to undo GitHub disabling all workflows in a repo after 6 months without a commit\n - `github_actions_workflows_trigger_all.sh` - triggers all workflows for the given repo\n - `github_actions_workflows_cancel_all_runs.sh` - cancels all workflow runs for the given repo\n - `github_actions_workflows_cancel_waiting_runs.sh` - cancels workflow runs that are in waiting state, eg. waiting for old deployment approvals\n - `github_actions_log.sh` - outputs the text log for a given GitHub Actions workflow run to the terminal. Fetches the last 10 runs and drops you into an interactive menu to hit enter on the one you want. Useful when the logs are too big for the UI and you have to open it in another tab which is very slow in browser\n - `github_actions_latest_log.sh` - same as above, but just fetches the latest workflow run log without any prompting\n - `github_ssh_get_user_public_keys.sh` - fetches a given GitHub user's public SSH keys via the API for piping to `~/.ssh/authorized_keys` or adjacent tools\n - `github_ssh_get_public_keys.sh` - fetches the currently authenticated GitHub user's public SSH keys via the API, similar to above but authenticated to get identifying key comments\n - `github_ssh_add_public_keys.sh` - uploads SSH keys from local files or standard input to the currently authenticated GitHub account. Specify pubkey files (default: `~/.ssh/id_rsa.pub`) or read from standard input for piping from adjacent tools\n - `github_ssh_delete_public_keys.sh` - deletes given SSH keys from the currently authenticated GitHub account by key id or title regex match\n - `github_gpg_get_user_public_keys.sh` - fetches a given GitHub user's public GPG keys via the API\n - `github_generate_status_page.sh` - generates a [STATUS.md](https://harisekhon.github.io/CI-CD/) page by merging all the README.md headers for all of a user's non-forked GitHub repos or a given list of any repos etc.\n - `github_purge_camo_cache.sh` - send HTTP Purge requests to all camo urls (badge caches) for the current or given GitHub repo's landing/README.md page\n - `github_ip_ranges.sh` - returns GitHub's IP ranges, either all by default or for a select given service such as hooks or actions\n - `github_sync_repo_descriptions.sh` - syncs GitHub repo descriptions to GitLab & BitBucket repos\n - `github_release.sh` - creates a GitHub Release, auto-incrementing a `.N` suffix on the year/month/day date format if no exact version given\n - `github_repo_check_pat_token.sh` - checks the given PAT token can access the given GitHub repo. Useful to test a PAT token used for integrations like ArgoCD\n - `github_repo_description.sh` - fetches the given repo's description (used by `github_sync_repo_descriptions.sh`)\n - `github_repo_find_files.sh` - finds files matching a regex in the current or given GitHub repo via the GitHub API\n - `github_repo_latest_release.sh` - returns the latest release tag for a given GitHub repo via the GitHub API\n - `github_repo_latest_release_filter.sh` - returns the latest release tag matching a given regex filter for a given GitHub repo via the GitHub API. Useful for getting the latest version of things like Kustomize which has other releases for kyaml\n - `github_repo_stars.sh` - fetches the stars, forks and watcher counts for a given repo\n - `github_repo_teams.sh` - fetches the GitHub Enterprise teams and their role permisions for a given repo. Combine with `github_foreach_repo.sh` to audit your all your personal or GitHub organization's repos\n - `github_repo_collaborators.sh` - fetches a repo's granted users and outside invited collaborators as well as their role permisions for a given repo. Combine with `github_foreach_repo.sh` to audit your all your personal or GitHub organization's repos\n - `github_repo_protect_branches.sh` - enables branch protections on the given repo. Can specify one or more branches to protect, otherwise finds and applies to any of `master`, `main`, `develop`, `dev`, `staging`, `production`\n - `github_repos_find_files.sh` - finds files matching a regex across all repos in the current GitHub organization or user account\n - `github_repo_fork_sync.sh` - sync's current or given fork, then runs `github_repo_fork_update.sh` to cascade changes to major branches via Pull Requests for auditability\n - `github_repo_fork_update.sh` - updates a forked repo by creating pull requests for full audit tracking and auto-merges PRs for non-production branches\n - `github_repos_public.sh` - lists public repos for a user or organization. Useful to periodically scan and account for any public repos\n - `github_repos_disable_wiki.sh` - disables the Wiki on one or more given repos to prevent documentation fragmentation and make people use the centralized documentation tool eg. Confluence or Slite\n - `github_repos_with_few_users.sh` - finds repos with few or no users (default: 1), which in Enterprises is a sign that a user has created a repo without assigning team privileges\n - `github_repos_with_few_teams.sh` - finds repos with few or no teams (default: 0), which in Enterprises is a sign that a user has created a repo without assigning team privileges\n - `github_repos_without_branch_protections.sh` - finds repos without any branch protection rules (use `github_repo_protect_branches.sh` on such repos)\n - `github_repos_not_in_terraform.sh` - finds all non-fork repos for current or given user/organization which are not found in `$PWD/*.tf` Terraform code\n - `github_teams_not_in_terraform.sh` - finds all teams for given organization which are not found in `$PWD/*.tf` Terraform code\n - `github_repos_sync_status.sh` - determines whether each GitHub repo's mirrors on GitLab / BitBucket / Azure DevOps are up to date with the latest commits, by querying all 3 APIs and comparing master branch hashrefs\n - `github_teams_not_idp_synced.sh` - finds GitHub teams that aren't sync'd from an IdP like Azure AD. These should usually be migrated or removed\n - `github_user_repos_stars.sh` - fetches the total number of stars for all original source public repos for a given user\n - `github_user_repos_forks.sh` - fetches the total number of forks for all original source public repos for a given user\n - `github_user_repos_count.sh` - fetches the total number of original source public repos for a given username\n - `github_user_followers.sh` - fetches the number of followers for a given username\n - `github_url_clipboard.sh` - copies a GitHub URL file's contents to the clipboard, converting the URL to a raw GitHub content URL where necessary\n- `gitlab/*.sh` - [GitLab](https://gitlab.com/) API scripts:\n - `gitlab_api.sh` - queries the GitLab [API](https://docs.gitlab.com/ee/api/api_resources.html). Can infer GitLab user, repo and authentication token from local checkout or environment (`$GITLAB_USER`, `$GITLAB_TOKEN`)\n - `gitlab_install_binary.sh` - installs a binary from GitLab releases into $HOME/bin or /usr/local/bin. Auto-determines the latest release if no version specified, detects and unpacks any tarball or zip files\n - `gitlab_push_mr_preview.sh` - pushes to GitLab origin, sets upstream branch, then open a Merge Request preview from current to default branch\n - `github_push_mr.sh` - pushes to GitLab origin, sets upstream branch, then idemopotently creates a Merge Request from current branch to the given or default trunk branch and opens the generated MR in your browser for review\n - `gitlab_foreach_repo.sh` - executes a templated command for each GitLab project/repo, replacing the `{user}` and `{project}` in each iteration\n - `gitlab_project_latest_release.sh` - returns the latest release tag for a given GitLab project (repo) via the GitLab API\n - `gitlab_project_set_description.sh` - sets the description for one or more projects using the GitLab API\n - `gitlab_project_set_env_vars.sh` - adds / updates GitLab project-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `gitlab_group_set_env_vars.sh` - adds / updates GitLab group-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `gitlab_project_create_import.sh` - creates a GitLab repo as an import from a given URL, and mirrors if on GitLab Premium (can only manually configure for public repos on free tier, API doesn't support configuring even public repos on free)\n - `gitlab_project_protect_branches.sh` - enables branch protections on the given project. Can specify one or more branches to protect, otherwise finds and applies to any of `master`, `main`, `develop`, `dev`, `staging`, `production`\n - `gitlab_project_mirrors.sh` - lists each GitLab repo and whether it is a mirror or not\n - `gitlab_pull_mirror.sh` - trigger a GitLab pull mirroring for a given project's repo, or auto-infers project name from the local git repo\n - `gitlab_ssh_get_user_public_keys.sh` - fetches a given GitLab user's public SSH keys via the API, with identifying comments, for piping to `~/.ssh/authorized_keys` or adjacent tools\n - `gitlab_ssh_get_public_keys.sh` - fetches the currently authenticated GitLab user's public SSH keys via the API\n - `gitlab_ssh_add_public_keys.sh` - uploads SSH keys from local files or standard input to the currently authenticated GitLab account. Specify pubkey files (default: `~/.ssh/id_rsa.pub`) or read from standard input for piping from adjacent tools\n - `gitlab_ssh_delete_public_keys.sh` - deletes given SSH keys from the currently authenticated GitLab account by key id or title regex match\n - `gitlab_validate_ci_yaml.sh` - validates a `.gitlab-ci.yml` file via the GitLab API\n- `bitbucket/*.sh` - [BitBucket](https://bitbucket.org/) API scripts:\n - `bitbucket_api.sh` - queries the BitBucket [API](https://developer.atlassian.com/bitbucket/api/2/reference/resource/). Can infer BitBucket user, repo and authentication token from local checkout or environment (`$BITBUCKET_USER`, `$BITBUCKET_TOKEN`)\n - `bitbucket_foreach_repo.sh` - executes a templated command for each BitBucket repo, replacing the `{user}` and `{repo}` in each iteration\n - `bitbucket_workspace_set_env_vars.sh` - adds / updates Bitbucket workspace-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `bitbucket_repo_set_env_vars.sh` - adds / updates Bitbucket repo-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `bitbucket_repo_set_description.sh` - sets the description for one or more repos using the BitBucket API\n - `bitbucket_enable_pipelines.sh` - enables the CI/CD pipelines for all repos\n - `bitbucket_disable_pipelines.sh` - disables the CI/CD pipelines for all repos\n - `bitbucket_repo_enable_pipeline.sh` - enables the CI/CD pipeline for a given repo\n - `bitbucket_repo_disable_pipeline.sh` - disables the CI/CD pipeline for a given repo\n - `bitbucket_ssh_get_public_keys.sh` - fetches the currently authenticated BitBucket user's public SSH keys via the API for piping to `~/.ssh/authorized_keys` or adjacent tools\n - `bitbucket_ssh_add_public_keys.sh` - uploads SSH keys from local files or standard input to the currently authenticated BitBucket account. Specify pubkey files (default: `~/.ssh/id_rsa.pub`) or read from standard input for piping from adjacent tools\n - `bitbucket_ssh_delete_public_keys.sh` - uploads SSH keys from local files or standard input to the currently authenticated BitBucket account. Specify pubkey files (default: `~/.ssh/id_rsa.pub`) or read from standard input for piping from adjacent tools\n\nSee also [Knowledge Base notes for Git](https://github.com/HariSekhon/Knowledge-Base/blob/main/git.md).\n\n### Markdown\n\nMaintain your Git `README.md` and similar Markdown documentation well.\n\n- `markdown/*`:\n - `markdown_generate_index.sh` - generates a markdown index list from the headings in a given markdown file such as `README.md`\n - `markdown_replace_index.sh` - replaces a markdown index section in a given markdown file using `markdown_generate_index.sh`\n - `markdown_replace_repos.sh` - replaces the repos block of a given markdown file. Used to keep my GitHub repos Other Repos sections updated\n - `mdl_list_indentations.sh`- runs Markdownlint `mdl` command and prefixes the spaces count to each offending line of MD005 (inconsistent list indentations). Workaround for [Markdownlint issue #520](https://github.com/markdownlint/markdownlint/issues/520)\n - `markdown_list_indentations.sh` - prefixes number of spaces before each list item for comparison to MarkdownLint MD005 inconsistent list indentation error\n - `markdown_columns_to_table.sh` - converts text columns separated by whitespace to a Markdown table with vertically aligned column pipe chars. Combine with scripts like `domains_subdomains_environments.sh` to generate the markdown documentation of your domains and subdomains per project and environment\n - `markdown_octocat_github_links.sh` - converts GitHub links like\n `` to shorthand links with an OctoCat emoji and without the redundant `https://github.com/` prefix such as\n [:octocat: HariSekhon/Knowledge-Base](https://github.com/HariSekhon/Knowledge-Base)\n - `markdown_replace_links_with_jsdelivr.sh` - replaces local GitHub repo file links in the given markdown file(s) with JSDelivr CDN links\n\n### CI/CD - Continuous Integration / Continuous Deployment\n\n`jenkins/`, `terraform/`, `teamcity/`, `buildkite/`, `circlci/`, `travis/`, `azure_devops/`, ..., `cicd/` directories:\n\n- `appveyor_api.sh` - queries [AppVeyor](https://www.appveyor.com/)'s API with authentication\n- `azure_devops/*.sh` - [Azure DevOps](https://dev.azure.com/) scripts:\n - `azure_devops_api.sh` - queries Azure DevOps's API with authentication\n - `azure_devops_foreach_repo.sh` - executes a templated command for each Azure DevOps repo, replacing `{user}`, `{org}`, `{project}` and `{repo}` in each iteration\n - `azure_devops_to_github_migration.sh` - migrates one or all Azure DevOps git repos to GitHub, including all branches and sets the default branch to match via the APIs to maintain the same checkout behaviour\n - `azure_devops_disable_repos.sh` - disables one or more given Azure DevOps repos (to prevent further pushes to them after migration to GitHub)\n- `circleci/*.sh` - [CircleCI](https://circleci.com/) scripts:\n - `circleci_api.sh` - queries CircleCI's API with authentication\n - `circleci_project_set_env_vars.sh` - adds / updates CircleCI project-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `circleci_context_set_env_vars.sh` - adds / updates CircleCI context-level environment variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `circleci_project_delete_env_vars.sh` - deletes CircleCI project-level environment variable(s) via the API\n - `circleci_context_delete_env_vars.sh` - deletes CircleCI context-level environment variable(s) via the API\n - `circleci_local_execute.sh` - installs CircleCI CLI and executes `.circleci/config.yml` locally\n - `circleci_public_ips.sh` - lists [CircleCI](https://circleci.com) public IP addresses via dnsjson.com\n- `codeship_api.sh` - queries [CodeShip](https://codeship.com/)'s API with authentication\n- `drone_api.sh` - queries [Drone.io](https://drone.io/)'s API with authentication\n- `shippable_api.sh` - queries [Shippable](https://www.shippable.com/)'s API with authentication\n- `wercker_app_api.sh` - queries [Wercker](https://app.wercker.com/)'s Applications API with authentication\n- `gocd_api.sh` - queries [GoCD](https://www.gocd.org/)'s API\n- `gocd.sh` - one-touch [GoCD CI](https://www.gocd.org/):\n - launches in Docker\n - (re)creates config repo (`$PWD/setup/gocd_config_repo.json`) from which to source pipeline(s) (`.gocd.yml`)\n - detects and enables agent(s) to start building\n - call from any repo top level directory with a `.gocd.yml` config (all mine have it), mimicking structure of fully managed CI systems\n- `concourse.sh` - one-touch [Concourse CI](https://concourse-ci.org/):\n - launches in Docker\n - configures pipeline from `$PWD/.concourse.yml`\n - triggers build\n - tails results in terminal\n - prints recent build statuses at end\n - call from any repo top level directory with a `.concourse.yml` config (all mine have it), mimicking structure of fully managed CI systems\n- `fly.sh` - shortens [Concourse](https://concourse-ci.org/) `fly` command to not have to specify target all the time\n- `jenkins/*.sh` - [Jenkins CI](https://jenkins.io/) scripts:\n - `jenkins.sh` - one-touch [Jenkins CI](https://jenkins.io/):\n - launches Docker container\n - installs plugins\n - validates `Jenkinsfile`\n - configures job from `$PWD/setup/jenkins-job.xml`\n - sets Pipeline to git remote origin's `Jenkinsfile`\n - triggers build\n - tails results in terminal\n - call from any repo top level directory with a `Jenkinsfile` pipeline and `setup/jenkins-job.xml` (all mine have it)\n - `jenkins_api.sh` - queries the Jenkins Rest API, handles authentication, pre-fetches CSFR protection token crumb, supports many environment variables such as `$JENKINS_URL` for ease of use\n - `jenkins_jobs.sh` - lists Jenkins jobs (pipelines)\n - `jenkins_foreach_job.sh` - runs a templated command for each Jenkins job\n - `jenkins_jobs_download_configs.sh` - downloads all Jenkins job configs to xml files of the same name\n - `jenkins_job_config.sh` - gets or sets a Jenkins job's config\n - `jenkins_job_description.sh` - gets or sets a Jenkins job's description\n - `jenkins_job_enable.sh` - enables a Jenkins job by name\n - `jenkins_job_disable.sh` - disables a Jenkins job by name\n - `jenkins_job_trigger.sh` - triggers a Jenkins job by name\n - `jenkins_job_trigger_with_params.sh` - triggers a Jenkins job with parameters which can be passed as `--data KEY=VALUE`\n - `jenkins_jobs_enable.sh` - enables all Jenkins jobs/pipelines with names matching a given regex\n - `jenkins_jobs_disable.sh` - disables all Jenkins jobs/pipelines with names matching a given regex\n - `jenkins_builds.sh` - lists Jenkins latest builds for every job\n - `jenkins_cred_add_cert.sh` - creates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_add_kubernetes_sa.sh` - creates a Jenkins Kubernetes service account credential\n - `jenkins_cred_add_secret_file.sh` - creates a Jenkins secret file credential from a file\n - `jenkins_cred_add_secret_text.sh` - creates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_add_ssh_key.sh` - creates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_add_user_pass.sh` - creates a Jenkins username/password credential\n - `jenkins_cred_delete.sh` - deletes a given Jenkins credential by id\n - `jenkins_cred_list.sh` - lists Jenkins credentials IDs and Names\n - `jenkins_cred_update_cert.sh` - updates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_update_kubernetes_sa.sh` - updates a Jenkins Kubernetes service account credential\n - `jenkins_cred_update_secret_file.sh` - updates a Jenkins secret file credential from a file\n - `jenkins_cred_update_secret_text.sh` - updates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_update_ssh_key.sh` - updates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_update_user_pass.sh` - updates a Jenkins username/password credential\n - `jenkins_cred_set_cert.sh` - creates or updates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_set_kubernetes_sa.sh` - creates or updates a Jenkins Kubernetes service account credential\n - `jenkins_cred_set_secret_file.sh` - creates or updates a Jenkins secret file credential from a file\n - `jenkins_cred_set_secret_text.sh` - creates or updates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_set_ssh_key.sh` - creates or updates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_set_user_pass.sh` - creates or updates a Jenkins username/password credential\n - `jenkins_cli.sh` - shortens `jenkins-cli.jar` command by auto-inferring basic configuations, auto-downloading the CLI if absent, inferrings a bunch of Jenkins related variables like `$JENKINS_URL`, `$JENKINS_CLI_ARGS` and authentication using `$JENKINS_USER`/`$JENKINS_PASSWORD`, or finds admin password from inside local docker container. Used heavily by `jenkins.sh` one-shot setup and the following scripts:\n - `jenkins_foreach_job_cli.sh` - runs a templated command for each Jenkins job\n - `jenkins_create_job_parallel_test_runs.sh` - creates a freestyle parameterized test sleep job and launches N parallel runs of it to test scaling and parallelization of [Jenkins on Kubernetes](https://github.com/HariSekhon/Kubernetes-configs#jenkins-on-kubernetes) agents\n - `jenkins_create_job_check_gcp_serviceaccount.sh` - creates a freestyle test job which runs a GCP Metadata query to determine the GCP serviceaccount the agent pod is operating under to check GKE Workload Identity integration\n - `jenkins_jobs_download_configs_cli.sh` - downloads all Jenkins job configs to xml files of the same name\n - `jenkins_cred_cli_add_cert.sh` - creates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_cli_add_kubernetes_sa.sh` - creates a Jenkins Kubernetes service account credential\n - `jenkins_cred_cli_add_secret_file.sh` - creates a Jenkins secret file credential from a file\n - `jenkins_cred_cli_add_secret_text.sh` - creates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_cli_add_ssh_key.sh` - creates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_cli_add_user_pass.sh` - creates a Jenkins username/password credential\n - `jenkins_cred_cli_delete.sh` - deletes a given Jenkins credential by id\n - `jenkins_cred_cli_list.sh` - lists Jenkins credentials IDs and Names\n - `jenkins_cred_cli_update_cert.sh` - updates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_cli_update_kubernetes_sa.sh` - updates a Jenkins Kubernetes service account credential\n - `jenkins_cred_cli_update_secret_file.sh` - updates a Jenkins secret file credential from a file\n - `jenkins_cred_cli_update_secret_text.sh` - updates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_cli_update_ssh_key.sh` - updates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_cli_update_user_pass.sh` - updates a Jenkins username/password credential\n - `jenkins_cred_cli_set_cert.sh` - creates or updates a Jenkins certificate credential from a PKCS#12 keystore\n - `jenkins_cred_cli_set_kubernetes_sa.sh` - creates or updates a Jenkins Kubernetes service account credential\n - `jenkins_cred_cli_set_secret_file.sh` - creates or updates a Jenkins secret file credential from a file\n - `jenkins_cred_cli_set_secret_text.sh` - creates or updates a Jenkins secret string credential from a string or a file\n - `jenkins_cred_cli_set_ssh_key.sh` - creates or updates a Jenkins SSH key credential from a string or an SSH private key file\n - `jenkins_cred_cli_set_user_pass.sh` - creates or updates a Jenkins username/password credential\n - `jenkins_password.sh` - gets Jenkins admin password from local docker container. Used by `jenkins_cli.sh`\n - `jenkins_plugins_latest_versions.sh` - finds the latest versions of given Jenkins plugins. Useful to programmatically upgrade your Jenkins on Kubernetes plugins defined in [values.yaml](https://github.com/HariSekhon/Kubernetes-configs/blob/6d9e34b74d3fa8f353b0fe56e74cea3af439e01a/jenkins/base/values.yaml#L145)\n - `check_jenkinsfiles.sh` - validates all `*Jenkinsfile*` files in the given directory trees using the online Jenkins validator\n - See also [Knowledge Base notes for Jenkins](https://github.com/HariSekhon/Knowledge-Base/blob/main/jenkins.md).\n- `teamcity/*.sh` - [TeamCity CI](https://www.jetbrains.com/teamcity/) scripts:\n - `teamcity.sh` - one-touch [TeamCity CI](https://www.jetbrains.com/teamcity/) cluster:\n - launches Docker containers with server and 1 agent\n - click proceed and accept the EULA\n - waits for server to initialize\n - waits for agent to register\n - authorizes agent\n - creates a VCS Root if `$PWD` has a `.teamcity.vcs.json` / `.teamcity.vcs.ssh.json` / `.teamcity.vcs.oauth.json` and corresponding `$TEAMCITY_SSH_KEY` or `$TEAMCITY_GITHUB_CLIENT_ID`+`$TEAMCITY_GITHUB_CLIENT_SECRET` environment variables\n - creates a Project and imports all settings and builds from the VCS Root\n - creates an admin user and an API token for you\n - see also: [TeamCity CI](https://github.com/HariSekhon/TeamCity-CI) config repo for importing pipelines\n - `teamcity_api.sh` - queries TeamCity's API, auto-handling authentication and other quirks of the API\n - `teamcity_create_project.sh` - creates a TeamCity project using the API\n - `teamcity_create_github_oauth_connection.sh` - creates a TeamCity GitHub OAuth VCS connection in the Root project, useful for bootstrapping projects from VCS configs\n - `teamcity_create_vcs_root.sh` - creates a TeamCity VCS root from a save configuration (XML or JSON), as downloaded by `teamcity_export_vcs_roots.sh`\n - `teamcity_upload_ssh_key.sh` - uploads an SSH private key to a TeamCity project (for use in VCS root connections)\n - `teamcity_agents.sh` - lists TeamCity agents, their connected state, authorized state, whether enabled and up to date\n - `teamcity_builds.sh` - lists the last 100 TeamCity builds along with the their state (eg. `finished`) and status (eg. `SUCCESS`/`FAILURE`)\n - `teamcity_buildtypes.sh` - lists TeamCity buildTypes (pipelines) along with the their project and IDs\n - `teamcity_buildtype_create.sh` - creates a TeamCity buildType from a local JSON configuration (see `teamcity_buildtypes_download.sh`)\n - `teamcity_buildtype_set_description_from_github.sh` - sync's a TeamCity buildType's description from its Github repo description\n - `teamcity_buildtypes_set_description_from_github.sh` - sync's all TeamCity buildType descriptions from their GitHub repos where available\n - `teamcity_export.sh` - downloads TeamCity configs to local JSON files in per-project directories mimicking native TeamCity directory structure and file naming\n - `teamcity_export_project_config.sh` - downloads TeamCity project config to local JSON files\n - `teamcity_export_buildtypes.sh` - downloads TeamCity buildType config to local JSON files\n - `teamcity_export_vcs_roots.sh` - downloads TeamCity VCS root config to local JSON files\n - `teamcity_projects.sh` - lists TeamCity project IDs and Names\n - `teamcity_project_set_versioned_settings.sh` - configures a project to track all changes to a VCS (eg. GitHub)\n - `teamcity_project_vcs_versioning.sh` - quickly toggle VCS versioning on/off for a given TeamCity project (useful for testing without auto-committing)\n - `teamcity_vcs_roots.sh` - lists TeamCity VCS root IDs and Names\n- `travis/*.sh` - [Travis CI](https://travis-ci.org/) API scripts (one of my all-time favourite CI systems):\n - `travis_api.sh` - queries the Travis CI API with authentication using `$TRAVIS_TOKEN`\n - `travis_repos.sh` - lists Travis CI repos\n - `travis_foreach_repo.sh` - executes a templated command against all Travis CI repos\n - `travis_repo_build.sh` - triggers a build for the given repo\n - `travis_repo_caches.sh` - lists caches for a given repo\n - `travis_repo_crons.sh` - lists crons for a given repo\n - `travis_repo_env_vars.sh` - lists environment variables for a given repo\n - `travis_repo_settings.sh` - lists settings for a given repo\n - `travis_repo_create_cron.sh` - creates a cron for a given repo and branch\n - `travis_repo_delete_crons.sh` - deletes all crons for a given repo\n - `travis_repo_delete_caches.sh` - deletes all caches for a given repo (sometimes clears build problems)\n - `travis_delete_cron.sh` - deletes a Travis CI cron by ID\n - `travis_repos_settings.sh` - lists settings for all repos\n - `travis_repos_caches.sh` - lists caches for all repos\n - `travis_repos_crons.sh` - lists crons for all repos\n - `travis_repos_create_cron.sh` - creates a cron for all repos\n - `travis_repos_delete_crons.sh` - deletes all crons for all repos\n - `travis_repos_delete_caches.sh` - deletes all caches for all repos\n - `travis_lint.sh` - lints a given `.travis.yml` using the API\n- `buildkite/*.sh` - [BuildKite](https://buildkite.com/) API scripts:\n - `buildkite_api.sh` - queries the BuildKite API, handling authentication using `$BUILDKITE_TOKEN`\n - `buildkite_pipelines.sh` - list buildkite pipelines for your `$BUILDKITE_ORGANIZATION` / `$BUILDKITE_USER`\n - `buildkite_foreach_pipeline.sh` - executes a templated command for each Buildkite pipeline, replacing the `{user}` and `{pipeline}` in each iteration\n - `buildkite_agent.sh` - runs a buildkite agent locally on Linux or Mac, or in Docker with choice of Linux distros\n - `buildkite_agents.sh` - lists the Buildkite agents connected along with their hostname, IP, started dated and agent details\n - `buildkite_pipelines.sh` - lists Buildkite pipelines\n - `buildkite_create_pipeline.sh` - create a Buildkite pipeline from a JSON configuration (like from `buildkite_get_pipeline.sh` or `buildkite_save_pipelines.sh`)\n - `buildkite_get_pipeline.sh` - gets details for a specific Buildkite pipeline in JSON format\n - `buildkite_update_pipeline.sh` - updates a BuildKite pipeline from a configuration provided via stdin or from a file saved via `buildkite_get_pipeline.sh`\n - `buildkite_patch_pipeline.sh` - updates a BuildKite pipeline from a partial configuration provided as an arg, via stdin, or from a file saved via `buildkite_get_pipeline.sh`\n - `buildkite_pipeline_skip_settings.sh` - lists the skip intermediate build settings for one or more given BuildKite pipelines\n - `buildkite_pipeline_set_skip_settings.sh` - configures given or all BuildKite pipelines to skip intermediate builds and cancel running builds in favour of latest build\n - `buildkite_cancel_scheduled_builds.sh` - cancels BuildKite scheduled builds (to clear a backlog due to offline agents and just focus on new builds)\n - `buildkite_cancel_running_builds.sh` - cancels BuildKite running builds (to clear them and restart new later eg. after agent / environment change / fix)\n - `buildkite_pipeline_disable_forked_pull_requests.sh` - disables forked pull request builds on a BuildKite pipeline to protect your build environment from arbitrary code execution security vulnerabilities\n - `buildkite_pipelines_vulnerable_forked_pull_requests.sh` - prints the status of each pipeline, should all return false, otherwise run the above script to close the vulnerability\n - `buildkite_rebuild_cancelled_builds.sh` - triggers rebuilds of last N cancelled builds in current pipeline\n - `buildkite_rebuild_failed_builds.sh` - triggers rebuilds of last N failed builds in current pipeline (eg. after agent restart / environment change / fix)\n - `buildkite_rebuild_all_pipelines_last_cancelled.sh` - triggers rebuilds of the last cancelled build in each pipeline in the organization\n - `buildkite_rebuild_all_pipelines_last_failed.sh` - triggers rebuilds of the last failed build in each pipeline in the organization\n - `buildkite_retry_jobs_dead_agents.sh` - triggers job retries where jobs failed due to killed agents, continuing builds from that point and replacing their false negative failed status with the real final status, slightly better than rebuilding entire jobs which happen under a new build\n - `buildkite_recreate_pipeline.sh` - recreates a pipeline to wipe out all stats (see url and badge caveats in `--help`)\n - `buildkite_running_builds.sh` - lists running builds and the agent they're running on\n - `buildkite_save_pipelines.sh` - saves all BuildKite pipelines in your `$BUILDKITE_ORGANIZATION` to local JSON files in `$PWD/.buildkite-pipelines/`\n - `buildkite_set_pipeline_description.sh` - sets the description of one or more pipelines using the BuildKite API\n - `buildkite_set_pipeline_description_from_github.sh` - sets a Buildkite pipeline description to match its source GitHub repo\n - `buildkite_sync_pipeline_descriptions_from_github.sh` - for all BuildKite pipelines sets each description to match its source GitHub repo\n - `buildkite_trigger.sh` - triggers BuildKite build job for a given pipeline\n - `buildkite_trigger_all.sh` - same as above but for all pipelines\n- `terraform_cloud_*.sh` - [Terraform Cloud](https://www.terraform.io/cloud) API scripts:\n - `terraform_cloud_api.sh` - queries the Cloudflare API, handling authentication using `$TERRAFORM_TOKEN`\n - `terraform_cloud_ip_ranges.sh` - returns the list of IP ranges for Terraform Cloud\n - `terraform_cloud_organizations.sh` - lists Terraform Cloud organizations\n - `terraform_cloud_workspaces.sh` - lists Terraform Cloud workspaces\n - `terraform_cloud_workspace_vars.sh` - lists Terraform Cloud workspace variables\n - `terraform_cloud_workspace_set_vars.sh` - adds / updates Terraform workspace-level sensitive environment/terraform variable(s) via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `terraform_cloud_workspace_delete_vars.sh` - deletes one or more Terraform workspace-level variables\n - `terraform_cloud_varsets.sh` - lists Terraform Cloud variable sets\n - `terraform_cloud_varset_vars.sh` - lists Terraform Cloud variables in on or all variables sets for the given organization\n - `terraform_cloud_varset_set_vars.sh` - adds / updates Terraform sensitive environment/terraform variable(s) in a given variable set via the API from `key=value` or shell export format, as args or via stdin (eg. piped from `aws_csv_creds.sh`)\n - `terraform_cloud_varset_delete_vars.sh` - deletes one or more Terraform variables in a given variable set\n- `terraform_*.sh` - [Terraform](https://www.terraform.io/) scripts:\n - `terraform_gcs_backend_version.sh` - determines the Terraform state version from the tfstate file in a GCS bucket found in a local given `backend.tf`\n - `terraform_gitlab_download_backend_variable.sh` - downloads backend.tf from a GitLab CI/CD variable to be able to quickly iterate plans locally\n - `terraform_import.sh` - finds given resource type in `./*.tf` code or Terraform plan output that are not in Terraform state and imports them\n - `terraform_import_aws_iam_users.sh` - parses Terraform plan output to import new `aws_iam_user` additions into Terraform state\n - `terraform_import_aws_iam_groups.sh` - parses Terraform plan output to import new `aws_iam_group` additions into Terraform state\n - `terraform_import_aws_iam_policies.sh` - parses Terraform plan output to import new `aws_iam_policies` additions, resolves their ARNs and imports them into Terraform state\n - `terraform_import_aws_sso_permission_sets.sh` - finds all `aws_ssoadmin_permission_set` in `./*.tf` code, resolves the ARNs and imports them to Terraform state\n - `terraform_import_aws_sso_account_assignments.sh` - parses Terraform plan output to import new `aws_ssoadmin_account_assignment` additions into Terraform state\n - `terraform_import_aws_sso_managed_policy_attachments.sh` - parses Terraform plan output to import new `aws_ssoadmin_account_assignment` additions into Terraform state\n - `terraform_import_aws_sso_permission_set_inline_policies.sh` - parses Terraform plan output to import new `aws_ssoadmin_permission_set_inline_policy` additions into Terraform state\n - `terraform_import_github_repos.sh` - finds all `github_repository` in `./*.tf` code or Terraform plan output that are not in Terraform state and imports them. See also `github_repos_not_in_terraform.sh`\n - `terraform_import_github_team.sh` - imports a given GitHub team into a given Terraform state resource, by first querying the GitHub API for the team ID needed to import into Terraform\n - `terraform_import_github_teams.sh` - finds all `github_team` in `./*.tf` code or Terraform plan output that are not in Terraform state, then queries the GitHub API for their IDs and imports them. See also `github_teams_not_in_terraform.sh`\n - `terraform_import_github_team_repos.sh` - finds all `github_team_repository` in Terraform plan that would be added, then queries the GitHub API for the repos and team IDs and if they both exist then imports them to Terraform state\n - `terraform_provider_count_sizes.sh` - finds duplicate Terraform providers and their sizes. Useful to find space wastage caused by using Terragrunt without configuring a unified Terraform Plugin Cache\n - `terraform_resources.sh` - external program to get all resource ids and attribute for a given resource type to work around Terraform splat expression limitation ([#19931](https://github.com/hashicorp/terraform/issues/19931))\n - `terraform_managed_resource_types.sh` - quick parse of what Terraform resource types are found in `*.tf` files under the current or given directory tree. Useful to give you a quick glance of what services you are managing\n - `terraform_registry_url_extract.sh` - extracts the Terraform Registry URL in either `tfr://` or `https://registry.terraform.io/` format from a given string, file or standard input. Useful to fast load Terraform Module documentation via editor/IDE hotkeys (see [.vimrc](configs/.vimrc)). Based on `urlextract.sh` above\n - `terraform_registry_url_to_https.sh` - converts one or more Terraform Registry URLs from `tfr://` to `https://registry.terraform.io/` format\n - `terraform_registry_url_open.sh` - opens the Terraform Registry URL given as a string arg, file or standard input in either `tfr://` or `https://registry.terraform.io/` format\n - See also [Knowledge Base notes for Terraform](https://github.com/HariSekhon/Knowledge-Base/blob/main/terraform.md).\n- `checkov_resource_*.sh` - [Checkov](https://www.checkov.io/) resource counts - useful to estimate [Bridgecrew Cloud](https://www.bridgecrew.cloud/) costs which are charged per resource:\n - `checkov_resource_count.sh` - counts the number of resources Checkov is scanning in the current or given directory\n - `checkov_resource_count_all.sh` - counts the total number of resources Checkov is scanning across all given repo checkouts\n- `octopus_api.sh` - queries the [Octopus Deploy](https://octopus.com/) API\n- `sonarlint_generate_config.sh` - generates the `.sonarlint/connectedMode.json` config at the root of the Git repo from the `sonar-project.properties` file\n\nSee also [Knowledge Base notes for CI/CD](https://github.com/HariSekhon/Knowledge-Base/blob/main/ci-cd.md).\n\n### AI & IPaaS\n\n`ai/` and `ipaas/` directories:\n\n- `openai_api.sh` - queries the [OpenAI](https://openai.com/) (ChatGPT) API with authentication\n- `make_api.sh` - queries the [Make.com](https://www.make.com) API with authentication\n\n### Internet Services\n\n`internet/`, `cloudflare/`, `pingdom/`, `terraform/` directories:\n\n- Pastebins - uploads files and copies the resulting URL to your clipboard:\n - code / text only - prompts to approve text / code before upload for safety:\n - `pastebin.sh` - uploads a file to , script auto-determines which syntax highlighting to add since API doesn't auto infer\n - `dpaste.sh` - uploads a file to , script auto-determines which syntax highlighting to add since API doesn't auto infer\n - `termbin.sh` - uploads a file to (site has no syntax highlighting)\n - all files, multimedia or text / code - prompts to approve text / code before upload for safety:\n - `0x0.sh` - uploads a file to (fast)\n - `imgur.sh` - uploads an image file to \n - `file.io.sh` - uploads a file to with 2 weeks, single download retention\n - `catbox.sh` - uploads a file to with permanent retention (slow)\n - `litterbox.sh` - uploads a file to with temporary retention (slow)\n- `digital_ocean_api.sh` / `doapi.sh` - queries the [Digital Ocean](https://www.digitalocean.com/) API with authentication\n - see also the Digital Ocean CLI `doctl` (`install/install_doctl.sh`)\n- `atlassian_ip_ranges.sh` - lists [Atlassian](https://www.atlassian.com/)'s IPv4 and/or IPv6 cidr ranges via its API\n- `circleci_public_ips.sh` - lists [CircleCI](https://circleci.com) public IP addresses via dnsjson.com\n- `cloudflare_*.sh` - [Cloudflare](https://www.cloudflare.com/) API queries and reports:\n - `cloudflare_api.sh` - queries the Cloudflare API with authentication\n - `cloudflare_ip_ranges.sh` - lists Cloudflare's IPv4 and/or IPv6 cidr ranges via its API\n - `cloudflare_custom_certificates.sh` - lists any custom SSL certificates in a given Cloudflare zone along with their status and expiry date\n - `cloudflare_dns_records.sh` - lists any Cloudflare DNS records for a zone, including the type and ttl\n - `cloudflare_dns_records_all_zones.sh` - same as above but for all zones\n - `cloudflare_dns_record_create.sh` - creates a DNS record in the given domain\n - `cloudflare_dns_record_update.sh` - updates a DNS record in the given domain\n - `cloudflare_dns_record_delete.sh` - deletes a DNS record in the given domain\n - `cloudflare_dns_record_details.sh` - lists the details for a DNS record in the given domain in JSON format for further pipe processing\n - `cloudflare_dnssec.sh` - lists the Cloudflare DNSSec status for all zones\n - `cloudflare_firewall_rules.sh` - lists Cloudflare Firewall rules, optionally with filter expression\n - `cloudflare_firewall_access_rules.sh` - lists Cloudflare Firewall Access rules, optionally with filter expression\n - `cloudflare_foreach_account.sh` - executes a templated command for each Cloudflare account, replacing the `{account_id}` and `{account_name}` in each iteration (useful for chaining with `cloudflare_api.sh`)\n - `cloudflare_foreach_zone.sh` - executes a templated command for each Cloudflare zone, replacing the `{zone_id}` and `{zone_name}` in each iteration (useful for chaining with `cloudflare_api.sh`, used by adjacent `cloudflare_*_all_zones.sh` scripts)\n - `cloudflare_purge_cache.sh` - purges the entire Cloudflare cache\n - `cloudflare_ssl_verified.sh` - gets the Cloudflare zone SSL verification status for a given zone\n - `cloudflare_ssl_verified_all_zones.sh` - same as above for all zones\n - `cloudflare_zones.sh` - lists Cloudflare zone names and IDs (needed for writing Terraform Cloudflare code)\n- `datadog_api.sh` - queries the [DataDog](https://www.datadoghq.com/) API with authentication\n- `dnsjson.sh` - queries dnsjson.com for DNS records\n- `domains_subdomains_environments.sh` - for a given list of domains, deduplicate and print dev / staging subdomains as well as root domain for prod. Used to generate a whole bunch of Ad Tech domains and pixel tracker subdomains for a project. Combine with `markdown_columns_to_table.sh` to generate the markdown documentation for your domains and subomains per project and environment\n- `gitguardian_api.sh` - queries the [GitGuardian](https://www.gitguardian.com/) API with authentication\n- `google_maps_link.sh` - queries for a search string, returns the first hit and then generates a stable fixed place ID url to the result. Useful for sharing in documentation links to places like [HariSekhon/Knowledge-Base](https://github.com/HariSekhon/Knowledge-Base) Travel pages\n- `jira_api.sh` - queries [Jira](https://www.atlassian.com/software/jira) API with authentication\n- `kong_api.sh` - queries the [Kong API Gateway](https://docs.konghq.com/gateway/latest/)'s Admin API, handling authentication if enabled\n- `traefik_api.sh` - queries the [Traefik](https://traefik.io/) API, handling authentication if enabled\n- `ngrok_api.sh` - queries the [NGrok](https://ngrok.com/) API with authentication\n- `pingdom_*.sh` - [Pingdom](https://www.pingdom.com/) API queries and reports for status, latency, average response times, latency averages by hour, SMS credits, outages periods and durations over the last year etc.\n - `pingdom_api.sh` - queries the Solarwinds [Pingdom](https://www.pingdom.com/) API with authentication\n - `pingdom_foreach_check.sh` - executes a templated command against each Pingdom check, replacing the `{check_id}` and `{check_name}` in each iteration\n - `pingdom_checks.sh` - show all Pingdom checks, status and latencies\n - `pingdom_checks_outages.sh` / `pingdom_checks_outages.sh` - show one or all Pingdom checks outage histories for the last year\n - `pingdom_checks_average_response_times.sh` - shows the average response times for all Pingdom checks for the last week\n - `pingdom_check_latency_by_hour.sh` / `pingdom_checks_latency_by_hour.sh` - shows the average latency for one or all Pingdom checks broken down by hour of the day, over the last week\n - `pingdom_sms_credits.sh` - gets the remaining number of Pingdom SMS credits\n- `terraform_cloud_api.sh` - queries [Terraform Cloud](https://www.terraform.io/cloud) API with authentication\n- `terraform_cloud_ip_ranges.sh` - returns the list of IP ranges for [Terraform Cloud](https://www.terraform.io/cloud) via the API, or optionally one or more of the ranges used by different functions\n- `wordpress.sh` - boots Wordpress in docker with a MySQL backend, and increases the upload_max_filesize to be able to restore a real world sized export backup\n- `wordpress_api.sh` - queries the Wordpress API with authentication\n- `wordpress_posts_without_category_tags.sh` - checks posts (articles) for categories without corresponding tags and prints the posts and their missing tags\n\n### Java\n\n`java/` directory:\n\n- `java_show_classpath.sh` - shows Java classpaths, one per line, of currently running Java programs\n- `jvm_heaps*.sh` - show all your Java heap sizes for all running Java processes, and their total MB (for performance tuning and sizing)\n- Java Decompilers:\n - `java_decompile_jar.sh` - decompiles a Java JAR in /tmp, finds the main class and runs a Java decompiler on its main .class file using `jd_gui.sh`\n - `jd_gui.sh` - runs Java Decompiler JD GUI, downloading its jar the first time if it's not already present\n - `bytecode_viwer.sh` - runs Bytecode-Viewer GUI Java decompiler, downloading its jar the first time if it's not already present\n - `cfr.sh` - runs CFR command line Java decompiler, downloading its jar the first time if it's not already present\n - `procyon.sh` - runs Procyon command line Java decompiler, downloading its jar the first time if it's not already present\n\nSee also [Knowledge Base notes for Java](https://github.com/HariSekhon/Knowledge-Base/blob/main/java.md)\nand [JVM Performance Tuning](https://github.com/HariSekhon/Knowledge-Base/blob/main/java-jvm-performance-tuning.md).\n\n### Python\n\n`python/` directory:\n\n- `python_compile.sh` - byte-compiles Python scripts and libraries into `.pyo` optimized files\n- `python_pip_install.sh` - bulk installs PyPI modules from mix of arguments / file lists / stdin, accounting for User vs System installs, root vs user sudo, VirtualEnvs / Anaconda / GitHub Workflows/ Google Cloud Shell, Mac vs Linux library paths, and ignore failure option\n- `python_pip_install_if_absent.sh` - installs PyPI modules not already in Python libary path (OS or pip installed) for faster installations only where OS packages are already providing some of the modules, reducing time and failure rates in CI builds\n- `python_pip_install_for_script.sh` - installs PyPI modules for given script(s) if not already installed. Used for dynamic individual script dependency installation in the [DevOps Python tools](https://github.com/HariSekhon/DevOps-Python-tools) repo\n- `python_pip_reinstall_all_modules.sh` - reinstalls all PyPI modules which can fix some issues\n- `pythonpath.sh` - prints all Python libary search paths, one per line\n- `python_find_library_path.sh` - finds directory where a PyPI module is installed - without args finds the Python library base\n- `python_find_library_executable.sh` - finds directory where a PyPI module's CLI program is installed (system vs user, useful when it gets installed to a place that isn't in your `$PATH`, where `which` won't help)\n- `python_find_unused_pip_modules.sh` - finds PyPI modules that aren't used by any programs in the current directory tree\n- `python_find_duplicate_pip_requirements.sh` - finds duplicate PyPI modules listed for install under the directory tree (useful for deduping module installs in a project and across submodules)\n- `python_translate_import_module.sh` - converts Python import modules to PyPI module names, used by `python_pip_install_for_script.sh`\n- `python_translate_module_to_import.sh` - converts PyPI module names to Python import names, used by `python_pip_install_if_absent.sh` and `python_find_unused_pip_modules.sh`\n- `python_pyinstaller.sh` - creates [PyInstaller](https://pypi.org/project/pyinstaller/) self-contained Python programs with Python interpreter and all PyPI modules included\n- `python_pypi_versions.sh` - prints all available versions of a given PyPi module using the API\n\nSee also [Knowledge Base notes for Python](https://github.com/HariSekhon/Knowledge-Base/blob/main/python.md).\n\n### Perl\n\n`perl/` directory:\n\n- `perl_cpanm_install.sh` - bulk installs CPAN modules from mix of arguments / file lists / stdin, accounting for User vs System installs, root vs user sudo, [Perlbrew](https://perlbrew.pl/) / Google Cloud Shell environments, Mac vs Linux library paths, ignore failure option, auto finds and reads build failure log for quicker debugging showing root cause error in CI builds logs etc\n- `perl_cpanm_install_if_absent.sh` - installs CPAN modules not already in Perl libary path (OS or CPAN installed) for faster installations only where OS packages are already providing some of the modules, reducing time and failure rates in CI builds\n- `perl_cpanm_reinstall_all.sh` - re-installs all CPAN modules. Useful for trying to recompile XS modules on Macs after migration assistant from an Intel Mac to an ARM Silicon Mac leaves your home XS libraries broken as they're built for the wrong architecture\n- `perlpath.sh` - prints all Perl libary search paths, one per line\n- `perl_find_library_path.sh` - finds directory where a CPAN module is installed - without args finds the Perl library base\n- `perl_find_library_executable.sh` - finds directory where a CPAN module's CLI program is installed (system vs user, useful when it gets installed to a place that isn't in your `$PATH`, where `which` won't help)\n- `perl_find_unused_cpan_modules.sh` - finds CPAN modules that aren't used by any programs in the current directory tree\n- `perl_find_duplicate_cpan_requirements.sh` - finds duplicate CPAN modules listed for install more than once under the directory tree (useful for deduping module installs in a project and across submodules)\n- `perl_generate_fatpacks.sh` - creates [Fatpacks](https://metacpan.org/pod/App::FatPacker) - self-contained Perl programs with all CPAN modules built-in\n\nSee also [Knowledge Base notes for Perl](https://github.com/HariSekhon/Knowledge-Base/blob/main/perl.md).\n\n### Golang\n\n`packages/` directory:\n\n- `golang_install.sh` - bulk installs Golang modules from mix of arguments / file lists / stdin\n- `golang_install_if_absent.sh` - same as above but only if the package binary isn't already available in `$PATH`\n- `golang_rm_binaries.sh` - deletes binaries of the same name adjacent to `.go` files. Doesn't delete your `bin/` etc as these are often real deployed applications rather than development binaries\n\n### Diagrams\n\nUsed in [HariSekhon/Diagrams-as-Code](https://github.com/HariSekhon/Diagrams-as-Code)\n\n`diagrams/` directory:\n\n- `d2.sh` - generates a D2lang diagram, using its shebang if present for themes etc, and then opens the resulting image\n- `d2_generate_diagrams.sh` - generates all D2lang `.d2` diagrams found under the current or given directory, git reverting or deleting those that didn't generate properly (to work around [d2lang issue #2367](https://github.com/terrastruct/d2/issues/2367))\n- `mermaidjs_generate_diagrams.sh` - generates all MermaidJS `.mmd` diagrams found under the current or given directory, git reverting or deleting those that didn't generate properly\n- `python_mingrammer_generate_diagrams.sh` - generates all Python Mingrammer `.py` diagrams found under the current or given directory\n\n### Media\n\n`media/` directory:\n\n#### Images\n\n- `image_shrink.sh` - shrinks an image by resizing it (default 50%) to be able to upload it against limits on some websites.\n Shows the before and after stats and automatically opens the image to check it\n- `image_reduce_quality.sh` - shrinks an image size by reducing its quality (default to 80%) to be able to upload it against limits on some websites.\n Shows the before and after stats and automatically opens the image to check it\n- `image_trim_pixels.sh` - trims N pixels off one of the sides of an image. Useful to tweak screenshots before sharing them\n- `image_join_vertical.sh` - joins two images top and bottom after matching their widths so they align correctly\n- `image_join_horizontal.sh` - joins two images left and right after matching their heights so they align correctly\n- `imageopen.sh` - opens the given image file using whatever available tool is found on Linux or Mac\n- `d2.sh` - generates [D2lang diagram](https://github.com/HariSekhon/Diagrams-as-Code) and then opens the resulting image\n- `avif_to_png.sh` - converts an Avif image to PNG to be usable on websites that don't support Webp images like LinkedIn\n- `svg_to_png.sh` - converts an SVG image to PNG to be usable on websites that don't support SVG images like LinkedIn, Medium or Reddit\n- `webp_to_png.sh` - converts a Webp image to PNG to be usable on websites that don't support Webp images like Medium. Tries 2 different tools for webp unlike the next generic converter\n- `image_to_png.sh` - try to convert any image to PNG to be usable on fussy websites such as LinkedIn, Medium or Reddit\n\n#### Terminal Gif Capture\n\nEach of these three scripts creates an animated Git from running terminal commands and then opens the resulting gif.\n\n- `ttygif.sh` - uses `ttyrec` and `ttygif`\n- `asciinema.sh` - uses `asciinema` and `agg`\n- `terminalizer.sh` - uses Terminalizer\n\n#### Audio\n\n- `mp3_set_artist.sh` / `mp3_set_album.sh` - set the artist / album tag for all mp3 files under given directories. Useful for grouping artists/albums and audiobook author/books (eg. for correct importing into Mac's Books.app)\n- `mp3_set_track_name.sh` - set the track name metadata for mp3 files under given directories to follow their filenames. Useful for correctly displaying audiobook progress / chapters etc.\n- `mp3_set_track_order.sh` - set the track order metadata for mp3 files under given directories to follow the lexical file naming order. Useful for correctly ordering album songs and audiobook chapters (eg. for Mac's Books.app). Especially useful for enforcing global ordering on multi-CD audiobooks after grouping into a single audiobook using `mp3_set_album.sh` (otherwise default track numbers in each CD interleave in Mac's Books.app)\n\n#### Video\n\n- `avi_to_mp4.sh` - converts avi files to mp4 using ffmpeg. Useful to be able to play videos on devices like smart TVs that may not recognize newer codecs otherwise\n- `mkv_to_mp4.sh` - converts mkv files to mp4 using ffmpeg. Same use case as above\n- `youtube_download_video.sh` - downloads a YouTube video to mp4 with maximum quality and compatibility usng yt-dlp\n - `facebook_download_video.sh` - same as above for Facebook\n - `twitter_download_video.sh` - same as above for Twitter / X\n - `x_download_video.sh` - same as above for X / Twitter\n- `youtube_download_channel.sh` - downloads all videos from a given YouTube channel using yt-dlp\n- `video_to_720p_mp4` - converts one or more video files to 720p mp4 format using ffmpeg. Useful to make good trade-off of quality vs size for social media sharing\n- `vidopen.sh` - opens the given video file using whatever available tool is found on Linux or Mac\n\nSee also [Knowledge Base notes for MultiMedia](https://github.com/HariSekhon/Knowledge-Base/blob/main/multimedia.md).\n\n### Spotify\n\n40+ [Spotify](https://www.spotify.com/) API scripts (used extensively to manage my [Spotify-Playlists](https://github.com/HariSekhon/Spotify-Playlists) repo).\n\n`spotify/` directory:\n\n- `spotify_playlists*.sh` - list playlists in either ` ` or JSON format\n- `spotify_playlist_tracks*.sh` - gets playlist contents as track URIs / `Artists - Track` / CSV format - useful for backups or exports between music systems\n- `spotify_backup.sh` - backs up all Spotify playlists as well as the ordered list of playlists\n- `spotify_backup_playlist*.sh` - backs up Spotify playlists to local files in both human readable `Artist - Track` format and Spotify URI format for easy restores or adding to new playlists\n- `spotify_backup_artists_followed.sh` - backs up the list of artists followed to Spotify URI and Names\n- `spotify_search*.sh` - searches Spotify's library for tracks / albums / artists getting results in human readable format, JSON, or URI formats for easy loading to Spotify playlists\n- `spotify_release_year.sh` - searches for a given track or album and finds the original release year\n- `spotify_uri_json.sh` - takes a Spotify URI and dumps its JSON for inspection. You can pass one of the following formats: `spotify::`, `http://open.spotify.com//`, ``\n- `spotify_uri_to_name.sh` - converts Spotify track / album / artist URIs to human readable `Artist - Track` or CSV format. Takes Spotify URIs, URL links or just IDs similar to `spotify_uri_json.sh` above. Reads URIs from files or standard input\n- `spotify_create_playlist.sh` - creates a Spotify playlist, either public or private\n- `spotify_rename_playlist.sh` - renames a Spotify playlist\n- `spotify_set_playlists_public.sh` / `spotify_set_playlists_private.sh` - sets one or more given Spotify playlists to public / private\n- `spotify_add_to_playlist.sh` - adds tracks to a given playlist. Takes a playlist name or ID and Spotify URIs in any form from files or standard input. Can be combined with many other tools listed here which output Spotify URIs, or appended from other playlists. Can also be used to restore a spotify playlist from backups\n- `spotify_delete_from_playlist.sh` - deletes tracks from a given playlist. Takes a playlist name or ID and Spotify URIs in any form from files or standard input, optionally prefixed with a track position to remove only specific occurrences (useful for removing duplicates from playlists)\n- `spotify_delete_from_playlist_if_in_other_playlists.sh` - deletes tracks from a given playlist if their URIs are found in the subsequently given playlists\n- `spotify_delete_from_playlist_if_track_in_other_playlists.sh` - deletes tracks from a given playlist if their 'Artist - Track' name match are found in the subsequently given playlists (less accurate than exact URI deletion above)\n- `spotify_duplicate_uri_in_playlist.sh` - finds duplicate Spotify URIs in a given playlist (these are guaranteed exact duplicate matches), returns all but the first occurrence and optionally their track positions (zero-indexed to align with the Spotify API for easy chaining with other tools)\n- `spotify_duplicate_tracks_in_playlist.sh` - finds duplicate Spotify tracks in a given playlist (these are idential `Artist - Track` name matches, which may be from different albums / singles)\n- `spotify_delete_duplicate_tracks_in_playlist.sh` - deletes duplicate Spotify tracks (name matched) in a given playlist using `spotify_duplicate_tracks_in_playlist.sh` and `spotify_delete_from_playlist.sh`\n- `spotify_delete_duplicate_track_uris_in_playlist.sh` - deletes duplicate Spotify URI tracks (identical) in a given playlist using `spotify_duplicate_uri_in_playlist.sh` and `spotify_delete_from_playlist.sh`\n- `spotify_delete_any_duplicates_in_playlist.sh` - calls both of the above scripts to first get rid of duplicate URIs and then remove any other duplicates by track name matches\n- `spotify_playlist_tracks_uri_in_year.sh` - finds track URIs in a playlist where their original release date is in a given year or decade (by regex match). This has to do a secondary Spotify track search lookup by name and relies on `normalize_tracknames.pl` from [HariSekhon/Spotify-tools](https://github.com/HariSekhon/Spotify-tools) being built and in the `$PATH`\n- `spotify_playlist_tracks_uri_by_year.sh` - returns track URIs from the given Spotify playlist for a specific year or range of years. Useful for filtering tracks to add to my best of each decade playlists. More efficient than `spotify_playlist_tracks_uri_in_year.sh`, without dependency on [HariSekhon/Spotify-tools](https://github.com/HariSekhon/Spotify-tools), but it only uses the year of the track version, which if an album track may not be the same year if it was first released as a single earlier\n- `spotify_playlist_tracks_uri_batch_by_year.sh` - Returns all track URIs from the given Spotify playlist(s) grouped by year or decade. Copies each batch to the clipboard, prints to stdout, and prompts to continue before printing the next batch. Useful for filtering tracks to add to my best of each year or decade playlists\n- `spotify_playlist_uri_offset.sh` - finds the offset of a given track URI in a given playlist, useful to find positions to resume processing a large playlist\n- `spotify_top_artists*.sh` - lists your top artists in URI or human readable format\n- `spotify_top_tracks*.sh` - lists top tracks in URI or human readable format\n- `spotify_playlist_top_artists.sh` - returns the top artists for a given Spotify playlist by counting unique track names for each artist. If HariSekhon/Spotify-tools is in the $PATH it uses normalize_tracknames.pl for greater accuracy to collapse multiple versions such as Radio Edit and Album Version to only count that same song once\n- `spotify_liked_tracks*.sh` - lists your `Liked Songs` in URI or human readable formats\n- `spotify_liked_artists*.sh` - list artists from `Liked Songs` in URI or human readable formats\n- `spotify_artists_followed*.sh` - lists all followed artists in URI or human readable formats\n- `spotify_artist_tracks.sh` - gets all track URIs for a given artist, from both albums and single for chain loading to playlists\n- `spotify_follow_artists.sh` - follows artists for the given URIs from files or standard input\n- `spotify_follow_top_artists.sh` - follows all artists in your current Spotify top artists list\n- `spotify_follow_liked_artists.sh` - follows artists with N or more tracks in your `Liked Songs`\n- `spotify_set_tracks_uri_to_liked.sh` - sets a list of spotify track URIs to 'Liked' so they appear in the `Liked Songs` playlist. Useful for marking all the tracks in your best playlists as favourite tracks, or for porting historical `Starred` tracks to the newer `Liked Songs`\n- `spotify_foreach_playlist.sh` - executes a templated command against all playlists, replacing `{playlist}` and `{playlist_id}` in each iteration\n- `spotify_playlist_name_to_id.sh` / `spotify_playlist_id_to_name.sh` - convert playlist names <=> IDs\n- `spotify_playlist_snapshot_id.sh` - returns the Snapshot ID of a given Spotify playlist, useful for detecting whether a playlist has changed or not to skip re-downloading it\n- `spotify_api_token.sh` - gets a Spotify authentication token using either [Client Credentials](https://developer.spotify.com/documentation/general/guides/authorization-guide/#client-credentials-flow) or [Authorization Code](https://developer.spotify.com/documentation/general/guides/authorization-guide/#authorization-code-flow) authentication flows, the latter being able to read/modify private user data, automatically used by `spotify_api.sh`\n- `spotify_api.sh` - query any Spotify [API](https://developer.spotify.com/documentation/web-api/reference/) endpoint with authentication, used by adjacent spotify scripts\n\n### More Linux & Mac\n\n`bin/`, `install/`, `packages/`, `setup/` directories:\n\n- [Linux](https://en.wikipedia.org/wiki/Linux) / [Mac](https://en.wikipedia.org/wiki/MacOS) systems administration scripts:\n - `install/` - installation scripts for various OS packages (RPM, Deb, Apk) for various Linux distros ([Redhat RHEL](https://www.redhat.com/en/technologies/linux-platforms/enterprise-linux) / [CentOS](https://www.centos.org/) / [Fedora](https://getfedora.org/), [Debian](https://www.debian.org/) / [Ubuntu](https://ubuntu.com/), [Alpine](https://alpinelinux.org/))\n - install if absent scripts for Python, Perl, Ruby, NodeJS and Golang packages - good for minimizing the number of source code installs by first running the OS install scripts and then only building modules which aren't already detected as installed (provided by system packages), speeding up builds and reducing the likelihood of compile failures\n - install scripts for tarballs, Golang binaries, random 3rd party installers, [Jython](https://www.jython.org/) and build tools like [Gradle](https://gradle.org/) and [SBT](https://www.scala-sbt.org/) for when Linux distros don't provide packaged versions or where the packaged versions are too old\n - `packages/` - OS / Distro Package Management:\n - `install_packages.sh` - installs package lists from arguments, files or stdin on major linux distros and Mac, detecting the package manager and invoking the right install commands, with `sudo` if not root. Works on [RHEL](https://www.redhat.com/en) / [CentOS](https://www.centos.org/) / [Fedora](https://getfedora.org/), [Debian](https://www.debian.org/) / [Ubuntu](https://ubuntu.com/), [Alpine](https://alpinelinux.org/), and [Mac Homebrew](https://brew.sh/). Leverages and supports all features of the distro / OS specific install scripts listed below\n - `install_packages_if_absent.sh` - installs package lists if they're not already installed, saving time and minimizing install logs / CI logs, same support list as above\n - Redhat RHEL / CentOS:\n - `yum_install_packages.sh` / `yum_remove_packages.sh` - installs RPM lists from arguments, files or stdin. Handles Yum + Dnf behavioural differences, calls `sudo` if not root, auto-attempts variations of python/python2/python3 package names. Avoids yum slowness by checking if rpm is installed before attempting to install it, accepts `NO_FAIL=1` env var to ignore unavailable / changed package names (useful for optional packages or attempts for different package names across RHEL/CentOS/Fedora versions)\n - `yum_install_packages_if_absent.sh` - installs RPMs only if not already installed and not a metapackage provided by other packages (eg. `vim` metapackage provided by `vim-enhanced`), saving time and minimizing install logs / CI logs, plus all the features of `yum_install_packages.sh` above\n - `yum_upgrade_packages_if_outdated.sh` - upgrades RPMs only if they're outdated\n - `rpms_filter_installed.sh` / `rpms_filter_not_installed.sh` - pipe filter packages that are / are not installed for easy script piping\n - Debian / Ubuntu:\n - `apt_install_packages.sh` / `apt_remove_packages.sh` - installs Deb package lists from arguments, files or stdin. Auto calls `sudo` if not root, accepts `NO_FAIL=1` env var to ignore unavailable / changed package names (useful for optional packages or attempts for different package names across Debian/Ubuntu distros/versions)\n - `apt_install_packages_if_absent.sh` - installs Deb packages only if not already installed, saving time and minimizing install logs / CI logs, plus all the features of `apt_install_packages.sh` above\n - `apt_upgrade_packages_if_outdated.sh` - upgrades Deb packages only if they're outdated\n - `apt_wait.sh` - blocking wait on concurrent apt locks to avoid failures and continue when available, mimicking yum's waiting behaviour rather than error'ing out\n - `debs_filter_installed.sh` / `debs_filter_not_installed.sh` - pipe filter packages that are / are not installed for easy script piping\n - Alpine:\n - `apk_install_packages.sh` / `apk_remove_packages.sh` - installs Alpine apk package lists from arguments, files or stdin. Auto calls `sudo` if not root, accepts `NO_FAIL=1` env var to ignore unavailable / changed package names (useful for optional packages or attempts for different package names across Alpine versions)\n - `apk_install_packages_if_absent.sh` - installs Alpine apk packages only if not already installed, saving time and minimizing install logs / CI logs, plus all the features of `apk_install_packages.sh` above\n - `apk_upgrade_packages_if_outdated.sh` - upgrades Alpine apk packages only if they're outdated\n - `apk_filter_installed.sh` / `apk_filter_not_installed.sh` - pipe filter packages that are / are not installed for easy script piping\n - Mac:\n - `brew_install_packages.sh` / `brew_remove_packages.sh` - installs Mac Hombrew package lists from arguments, files or stdin. Accepts `NO_FAIL=1` env var to ignore unavailable / changed package names (useful for optional packages or attempts for different package names across versions)\n - `brew_install_packages_if_absent.sh` - installs Mac Homebrew packages only if not already installed, saving time and minimizing install logs / CI logs, plus all the features of `brew_install_packages.sh` above\n - `brew_upgrade_packages_if_outdated.sh` - upgrades Mac Homebrew packages only if they're outdated\n - `brew_filter_installed.sh` / `brew_filter_not_installed.sh` - pipe filter packages that are / are not installed for easy script piping\n - `brew_package_owns.sh` - finds which brew package owns a given filename argument\n- all builds across all my GitHub repos now `make system-packages` before `make pip` / `make cpan` to shorten how many packages need installing, reducing chances of build failures\n\n### Builds, Languages & Linting\n\n`bin/`, `checks/`, `cicd/` or language specific directories:\n\n- `lint.sh` - lints one or more files, auto-determines the file types, parses lint headers and calls appropriate scripts and tools. Integrated with my custom `.vimrc`\n- `run.sh` - runs one or more files, auto-determines the file types, any run or arg headers and executes each file using the appropriate script or CLI tool. Integrated with my custom `.vimrc`\n- `check_*.sh` - extensive collection of generalized tests - these run against all my GitHub repos via [CI](https://harisekhon.github.io/CI-CD/). Some examples:\n\n - Programming language linting:\n\n - [Python](https://www.python.org/) (syntax, pep8, byte-compiling, reliance on asserts which can be disabled at runtime, except/pass etc.)\n - [Perl](https://www.perl.org/)\n - [Java](https://www.java.com/en/)\n - [Scala](https://www.scala-lang.org/)\n - [Ruby](https://www.ruby-lang.org/en/)\n - [Bash](https://www.gnu.org/software/bash/) / Shell\n - Misc (whitespace, custom code checks etc.)\n\n - Build System, Docker & CI linting:\n\n - [Make](https://www.gnu.org/software/make/)\n - [Maven](https://maven.apache.org/)\n - [SBT](https://www.scala-sbt.org/)\n - [Gradle](https://gradle.org/)\n - [Travis CI](https://travis-ci.org/)\n - [Circle CI](https://circleci.com/)\n - [GitLab CI](https://docs.gitlab.com/ee/ci/)\n - [Concourse CI](https://concourse-ci.org/)\n - [Codefresh CI](https://codefresh.io/)\n - [Dockerfiles](https://docs.docker.com/engine/reference/builder/)\n - [Docker Compose](https://docs.docker.com/compose/)\n - [Vagrantfiles](https://www.vagrantup.com/docs/vagrantfile)\n\n## Individual Setup Parts\n\nOptional, only if you don't do the full `make install`.\n\nInstall only OS system package dependencies and [AWS CLI](https://aws.amazon.com/cli/) via Python Pip (doesn't symlink anything to `$HOME`):\n\n```shell\nmake\n```\n\nAdds sourcing to `.bashrc` and `.bash_profile` and symlinks dot config files to `$HOME` (doesn't install OS system package dependencies):\n\n```shell\nmake link\n```\n\nundo via\n\n```shell\nmake unlink\n```\n\nInstall only OS system package dependencies (doesn't include [AWS CLI](https://aws.amazon.com/cli/) or Python packages):\n\n```shell\nmake system-packages\n```\n\nInstall [AWS CLI](https://aws.amazon.com/cli/):\n\n```shell\nmake aws\n```\n\nInstall [Azure CLI](https://docs.microsoft.com/en-us/cli/azure/):\n\n```shell\nmake azure\n```\n\nInstall [GCP GCloud SDK](https://cloud.google.com/sdk) (includes CLI):\n\n```shell\nmake gcp\n```\n\nInstall [GCP GCloud Shell](https://cloud.google.com/shell) environment (sets up persistent OS packages and all home directory configs):\n\n```shell\nmake gcp-shell\n```\n\nInstall generically useful Python CLI tools and modules (includes [AWS CLI](https://aws.amazon.com/cli/), autopep8 etc):\n\n```shell\nmake python\n```\n\n### Full Help\n\n```shell\n> make help\n\n Usage:\n\n Common Options:\n\n make help show this message\n make build installs all dependencies - OS packages and any language libraries via native tools eg. pip, cpanm, gem, go etc that are not available via OS packages\n make build-retry retries 'make build' x 3 until success to try to mitigate temporary upstream repo failures triggering false alerts in CI systems\n make ci prints env, then runs 'build-retry' for more resilient CI builds with debugging\n make printenv prints environment variables, CPU cores, OS release, $PWD, Git branch, hashref etc. Useful for CI debugging\n make system-packages installs OS packages only (detects OS via whichever package manager is available)\n make test run tests\n make clean removes compiled / generated files, downloaded tarballs, temporary files etc.\n\n make submodules initialize and update submodules to the right release (done automatically by build / system-packages)\n make init same as above, often useful to do in CI systems to get access to additional submodule provided targets such as 'make ci'\n\n make cpan install any modules listed in any cpan-requirements.txt files if not already installed\n\n make pip install any modules listed in any requirements.txt files if not already installed\n\n make python-compile compile any python files found in the current directory and 1 level of subdirectory\n make pycompile\n\n make github open browser at github project\n make readme open browser at github's README\n make github-url print github url and copy to clipboard\n make status open browser at Github CI Builds overview Status page for all projects\n\n make ls print list of code files in project\n make wc show counts of files and lines\n\n Repo specific options:\n\n make install builds all script dependencies, installs AWS CLI, symlinks all config files to $HOME and adds sourcing of bash profile\n\n make link symlinks all config files to $HOME and adds sourcing of bash profile\n make unlink removes all symlinks pointing to this repo's config files and removes the sourcing lines from .bashrc and .bash_profile\n\n make python-desktop installs all Python Pip packages for desktop workstation listed in setup/pip-packages-desktop.txt\n make perl-desktop installs all Perl CPAN packages for desktop workstation listed in setup/cpan-packages-desktop.txt\n make ruby-desktop installs all Ruby Gem packages for desktop workstation listed in setup/gem-packages-desktop.txt\n make golang-desktop installs all Golang packages for desktop workstation listed in setup/go-packages-desktop.txt\n make nodejs-desktop installs all NodeJS packages for desktop workstation listed in setup/npm-packages-desktop.txt\n\n make desktop installs all of the above + many desktop OS packages listed in setup/\n\n make mac-desktop all of the above + installs a bunch of major common workstation software packages like Ansible, Terraform, MiniKube, MiniShift, SDKman, Travis CI, CCMenu, Parquet tools etc.\n make linux-desktop\n\n make ls-scripts print list of scripts in this project, ignoring code libraries in lib/ and .bash.d/\n\n make github-cli installs GitHub CLI\n make kubernetes installs Kubernetes kubectl and kustomize to ~/bin/\n make terraform installs Terraform to ~/bin/\n make vim installs Vundle and plugins\n make tmux installs TMUX TPM and plugin for kubernetes context\n make ccmenu installs and (re)configures CCMenu to watch this and all other major HariSekhon GitHub repos\n make status open the Github Status page of all my repos build statuses across all CI platforms\n\n make aws installs AWS CLI tools\n make azure installs Azure CLI\n make gcp installs Google Cloud SDK\n make digital-ocean installs Digital Ocean CLI\n\n make aws-shell sets up AWS Cloud Shell: installs core packages and links configs\n (maintains itself across future Cloud Shells via .aws_customize_environment hook)\n make gcp-shell sets up GCP Cloud Shell: installs core packages and links configs\n (maintains itself across future Cloud Shells via .customize_environment hook)\n make azure-shell sets up Azure Cloud Shell (limited compared to gcp-shell, doesn't install OS packages since there is no sudo)\n\nNow exiting usage help with status code 3 to explicitly prevent silent build failures from stray 'help' arguments\nmake: *** [help] Error 3\n```\n\n(`make help` exits with error code 3 like most of my programs to differentiate from build success to make sure a stray `help` argument doesn't cause silent build failure with exit code 0)\n\n## Star History\n\n[![Star History Chart](https://api.star-history.com/svg?repos=HariSekhon/DevOps-Bash-tools&type=Date)](https://star-history.com/#HariSekhon/DevOps-Bash-tools&Date)\n\n[git.io/bash-tools](https://git.io/bash-tools)\n\n## More Core Repos\n\n\n\n### Knowledge\n\n[![Knowledge-Base](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Knowledge-Base&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Knowledge-Base)\n[![Diagrams-as-Code](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Diagrams-as-Code&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Diagrams-as-Code)\n\n\n\n### DevOps Code\n\n[![DevOps-Bash-tools](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=DevOps-Bash-tools&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/DevOps-Bash-tools)\n[![DevOps-Python-tools](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=DevOps-Python-tools&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/DevOps-Python-tools)\n[![DevOps-Perl-tools](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=DevOps-Perl-tools&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/DevOps-Perl-tools)\n[![DevOps-Golang-tools](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=DevOps-Golang-tools&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/DevOps-Golang-tools)\n\n\n\n### Containerization\n\n[![Kubernetes-configs](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Kubernetes-configs&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Kubernetes-configs)\n[![Dockerfiles](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Dockerfiles&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Dockerfiles)\n\n### CI/CD\n\n[![GitHub-Actions](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=GitHub-Actions&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/GitHub-Actions)\n[![Jenkins](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Jenkins&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Jenkins)\n\n### Databases - DBA - SQL\n\n[![SQL-scripts](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=SQL-scripts&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/SQL-scripts)\n\n### DevOps Reloaded\n\n[![HAProxy-configs](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=HAProxy-configs&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/HAProxy-configs)\n[![Terraform](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Terraform&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Terraform)\n[![Packer](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Packer&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Packer)\n[![Ansible](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Ansible&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Ansible)\n[![Environments](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Environments&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Environments)\n\n### Monitoring\n\n[![Nagios-Plugins](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Nagios-Plugins&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Nagios-Plugins)\n[![Nagios-Plugin-Kafka](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Nagios-Plugin-Kafka&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Nagios-Plugin-Kafka)\n[![Prometheus](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Prometheus&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Prometheus)\n\n### Templates\n\n[![Templates](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Templates&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Templates)\n[![Template-repo](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Template-repo&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Template-repo)\n\n### Desktop\n\n[![TamperMonkey](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=TamperMonkey&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/TamperMonkey)\n[![Hammerspoon](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Hammerspoon&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Hammerspoon)\n[![MPV-Scripts](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=MPV-Scripts&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/MPV-Scripts)\n\n### Spotify\n\n[![Spotify-tools](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Spotify-tools&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Spotify-tools)\n[![Spotify-playlists](https://github-readme-stats-fast.vercel.app/api/pin/?username=HariSekhon&repo=Spotify-playlists&theme=ambient_gradient&description_lines_count=3)](https://github.com/HariSekhon/Spotify-playlists)\n\nThe rest of my original source repos are\n[here](https://github.com/HariSekhon?tab=repositories&q=&type=source&language=&sort=stargazers).\n\nPre-built Docker images are available on my [DockerHub](https://hub.docker.com/u/harisekhon/)\nand can be re-generated using the my [Dockerfiles](https://github.com/HariSekhon/Dockerfiles) repo.\n\n\n" }, { "path": "STARCHARTS.md", "content": "# GitHub StarCharts\n\n![Original Repos](https://img.shields.io/badge/Repos-20-blue?logo=github)\n![Stars](https://img.shields.io/badge/Stars-7542-blue?logo=github)\n![Forks](https://img.shields.io/badge/Forks-2603-blue?logo=github)\n![Followers](https://img.shields.io/badge/Followers-1568-blue?logo=github)\n[![Azure DevOps Profile](https://img.shields.io/badge/Azure%20DevOps-HariSekhon-0078D7?logo=azure%20devops)](https://dev.azure.com/harisekhon/GitHub)\n[![GitHub Profile](https://img.shields.io/badge/GitHub-HariSekhon-2088FF?logo=github)](https://github.com/HariSekhon)\n[![GitLab Profile](https://img.shields.io/badge/GitLab-HariSekhon-FCA121?logo=gitlab)](https://gitlab.com/HariSekhon)\n[![BitBucket Profile](https://img.shields.io/badge/BitBucket-HariSekhon-0052CC?logo=bitbucket)](https://bitbucket.org/HariSekhon)\n\n[![GitStar Ranking Profile](https://img.shields.io/badge/GitStar%20Ranking-HariSekhon-blue?logo=github)](https://gitstar-ranking.com/HariSekhon)\n\n[git.io/hari-starcharts](https://git.io/hari-starcharts) generated by `github_generate_starcharts.md.sh` in [HariSekhon/DevOps-Bash-tools](https://github.com/HariSekhon/DevOps-Bash-tools)\n\n---\n## Hari Sekhon - DevOps Bash Tools\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/DevOps-Bash-tools?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/DevOps-Bash-tools?logo=github)](https://github.com/HariSekhon/DevOps-Bash-tools/network)\n\n1000+ DevOps Bash Scripts - AWS, GCP, Kubernetes, Docker, CI/CD, APIs, SQL, PostgreSQL, MySQL, Hive, Impala, Kafka, Hadoop, Jenkins, GitHub, GitLab, BitBucket, Azure DevOps, TeamCity, Spotify, MP3, LDAP, Code/Build Linting, pkg mgmt for Linux, Mac, Python, Perl, Ruby, NodeJS, Golang, Advanced dotfiles: .bashrc, .vimrc, .gitconfig, .screenrc, tmux..\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/DevOps-Bash-tools.svg)](https://starchart.cc/HariSekhon/DevOps-Bash-tools)\n\n---\n## Dockerfiles for DevOps, CI/CD, Big Data & NoSQL\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Dockerfiles)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Dockerfiles?logo=github)](https://github.com/HariSekhon/Dockerfiles/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Dockerfiles?logo=github)](https://github.com/HariSekhon/Dockerfiles/network)\n\n50+ DockerHub public images for Docker & Kubernetes - DevOps, CI/CD, GitHub Actions, CircleCI, Jenkins, TeamCity, Alpine, CentOS, Debian, Fedora, Ubuntu, Hadoop, Kafka, ZooKeeper, HBase, Cassandra, Solr, SolrCloud, Presto, Apache Drill, Nifi, Spark, Consul, Riak\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Dockerfiles.svg)](https://starchart.cc/HariSekhon/Dockerfiles)\n\n---\n## Advanced Nagios Plugins Collection\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Nagios-Plugins)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Nagios-Plugins?logo=github)](https://github.com/HariSekhon/Nagios-Plugins/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Nagios-Plugins?logo=github)](https://github.com/HariSekhon/Nagios-Plugins/network)\n\n450+ AWS, Hadoop, Cloud, Kafka, Docker, Elasticsearch, RabbitMQ, Redis, HBase, Solr, Cassandra, ZooKeeper, HDFS, Yarn, Hive, Presto, Drill, Impala, Consul, Spark, Jenkins, Travis CI, Git, MySQL, Linux, DNS, Whois, SSL Certs, Yum Security Updates, Kubernetes, Cloudera etc...\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Nagios-Plugins.svg)](https://starchart.cc/HariSekhon/Nagios-Plugins)\n\n---\n## Hari Sekhon - DevOps Python Tools\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/DevOps-Python-tools)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/DevOps-Python-tools?logo=github)](https://github.com/HariSekhon/DevOps-Python-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/DevOps-Python-tools?logo=github)](https://github.com/HariSekhon/DevOps-Python-tools/network)\n\n80+ DevOps & Data CLI Tools - AWS, GCP, GCF Python Cloud Functions, Log Anonymizer, Spark, Hadoop, HBase, Hive, Impala, Linux, Docker, Spark Data Converters & Validators (Avro/Parquet/JSON/CSV/INI/XML/YAML), Travis CI, AWS CloudFormation, Elasticsearch, Solr etc.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/DevOps-Python-tools.svg)](https://starchart.cc/HariSekhon/DevOps-Python-tools)\n\n---\n## Kubernetes configs\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Kubernetes-configs)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Kubernetes-configs?logo=github)](https://github.com/HariSekhon/Kubernetes-configs/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Kubernetes-configs?logo=github)](https://github.com/HariSekhon/Kubernetes-configs/network)\n\nAdvanced Kubernetes YAML configs - Best Practices, Tips & Tricks, Production-Ready Checklist - experience from several production environments. AWS, GCP, Azure, ArgoCD, GKE, EKS, AKS, Nginx, Traefik, Kong, Cert Manager, CI/CD, Jenkins, Artifactory, TeamCity, GitHub Actions, Cloud SQL, FluxCD, Spinnaker, Selenium Grid, Moon, Helm + Kustomize\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Kubernetes-configs.svg)](https://starchart.cc/HariSekhon/Kubernetes-configs)\n\n---\n## SQL Scripts\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/SQL-scripts)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/SQL-scripts?logo=github)](https://github.com/HariSekhon/SQL-scripts/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/SQL-scripts?logo=github)](https://github.com/HariSekhon/SQL-scripts/network)\n\n100+ SQL Scripts - PostgreSQL, MySQL, Google BigQuery, MariaDB, AWS Athena. DBA, Analytics, DevOps, performance engineering. Google BigQuery ML machine learning classification.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/SQL-scripts.svg)](https://starchart.cc/HariSekhon/SQL-scripts)\n\n---\n## Advanced HAProxy Configs for Big Data, NoSQL, Web and Infrastructure technologies\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/HAProxy-configs)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/HAProxy-configs?logo=github)](https://github.com/HariSekhon/HAProxy-configs/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/HAProxy-configs?logo=github)](https://github.com/HariSekhon/HAProxy-configs/network)\n\n80+ HAProxy Configs for Hadoop, Big Data, NoSQL, Docker, Kubernetes, Elasticsearch, SolrCloud, HBase, MySQL, PostgreSQL, Apache Drill, Hive, Presto, Impala, Hue, ZooKeeper, SSH, RabbitMQ, Redis, Riak, Cloudera, OpenTSDB, InfluxDB, Prometheus, Kibana, Graphite, Rancher etc.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/HAProxy-configs.svg)](https://starchart.cc/HariSekhon/HAProxy-configs)\n\n---\n## Hari Sekhon - Diagrams-as-Code\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Diagrams-as-Code)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Diagrams-as-Code?logo=github)](https://github.com/HariSekhon/Diagrams-as-Code/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Diagrams-as-Code?logo=github)](https://github.com/HariSekhon/Diagrams-as-Code/network)\n\nCloud & DevOps Architecture Diagrams-as-Code in Python and D2 languages\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Diagrams-as-Code.svg)](https://starchart.cc/HariSekhon/Diagrams-as-Code)\n\n---\n## Code & Config Templates\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Templates)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Templates?logo=github)](https://github.com/HariSekhon/Templates/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Templates?logo=github)](https://github.com/HariSekhon/Templates/network)\n\n100+ DevOps Code & Config templates for Kubernetes, AWS, GCP, Terraform, Docker, Packer, Jenkins, CircleCI, GitHub Actions, Lambda, AWS CodeBuild, GCP Cloud Build, Vagrant, Puppet, Python, Bash, Go, Perl, Java, Scala, Groovy, Maven, SBT, Gradle, Make, Jenkinsfile, Makefile, Dockerfile, docker-compose.yml, Vagrantfile, M4 etc...\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Templates.svg)](https://starchart.cc/HariSekhon/Templates)\n\n---\n## Hari Sekhon - DevOps Perl Tools\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/DevOps-Perl-tools)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/DevOps-Perl-tools?logo=github)](https://github.com/HariSekhon/DevOps-Perl-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/DevOps-Perl-tools?logo=github)](https://github.com/HariSekhon/DevOps-Perl-tools/network)\n\n25+ DevOps CLI Tools - Anonymizer, SQL ReCaser (MySQL, PostgreSQL, AWS Redshift, Snowflake, Apache Drill, Hive, Impala, Cassandra CQL, Microsoft SQL Server, Oracle, Couchbase N1QL, Dockerfiles), Hadoop HDFS & Hive tools, Solr/SolrCloud CLI, Nginx stats & HTTP(S) URL watchers for load-balanced web farms, Linux tools etc.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/DevOps-Perl-tools.svg)](https://starchart.cc/HariSekhon/DevOps-Perl-tools)\n\n---\n## Spotify Tools\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Spotify-tools)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Spotify-tools?logo=github)](https://github.com/HariSekhon/Spotify-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Spotify-tools?logo=github)](https://github.com/HariSekhon/Spotify-tools/network)\n\nSpotify Tools - Playlists Backups, Spotify CLI, URI translator, duplication detection / removal, API search queries, API automation etc.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Spotify-tools.svg)](https://starchart.cc/HariSekhon/Spotify-tools)\n\n---\n## # Jenkins - Advanced Jenkinsfile & Groovy Shared Library\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Jenkins)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Jenkins?logo=github)](https://github.com/HariSekhon/Jenkins/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Jenkins?logo=github)](https://github.com/HariSekhon/Jenkins/network)\n\nJenkins - Advanced Jenkinsfile & Groovy Shared Library of reusable functions and pipelines - including for AWS, GCP, Docker, Kubernetes, ArgoCD, Slack notifications, Git Merge, Terraform, Cloudflare, Jenkins Job Backups, most major Docker registries, DockerHub, GHCR, ECR, GCR, GAR, ACR, GitLab, Quay\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Jenkins.svg)](https://starchart.cc/HariSekhon/Jenkins)\n\n---\n## Hari Sekhon - Knowledge Base from 20 years in DevOps, Linux, Cloud, Big Data, Security, AWS, GCP etc.\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Knowledge-Base)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Knowledge-Base?logo=github)](https://github.com/HariSekhon/Knowledge-Base/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Knowledge-Base?logo=github)](https://github.com/HariSekhon/Knowledge-Base/network)\n\nIT Knowledge Base from 20 years in DevOps, Linux, Cloud, Big Data, AWS, GCP etc - gradually porting my large private knowledge base to public\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Knowledge-Base.svg)](https://starchart.cc/HariSekhon/Knowledge-Base)\n\n---\n## Hari Sekhon - DevOps Golang Tools\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/DevOps-Golang-tools)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/DevOps-Golang-tools?logo=github)](https://github.com/HariSekhon/DevOps-Golang-tools/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/DevOps-Golang-tools?logo=github)](https://github.com/HariSekhon/DevOps-Golang-tools/network)\n\nDevOps Golang tools\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/DevOps-Golang-tools.svg)](https://starchart.cc/HariSekhon/DevOps-Golang-tools)\n\n---\n## Terraform Templates\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Terraform)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Terraform?logo=github)](https://github.com/HariSekhon/Terraform/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Terraform?logo=github)](https://github.com/HariSekhon/Terraform/network)\n\nTerraform HCL code for AWS / GCP / Azure / GitHub management\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Terraform.svg)](https://starchart.cc/HariSekhon/Terraform)\n\n---\n## GitHub Actions\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/GitHub-Actions)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/GitHub-Actions?logo=github)](https://github.com/HariSekhon/GitHub-Actions/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/GitHub-Actions?logo=github)](https://github.com/HariSekhon/GitHub-Actions/network)\n\nGitHub Actions Reusable Workflows and Master Template\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/GitHub-Actions.svg)](https://starchart.cc/HariSekhon/GitHub-Actions)\n\n---\n## Hari Sekhon - HashiCorp Packer templates\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Packer-templates)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Packer-templates?logo=github)](https://github.com/HariSekhon/Packer-templates/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Packer-templates?logo=github)](https://github.com/HariSekhon/Packer-templates/network)\n\nHashiCorp Packer templates to build portable virtual machines in OVA format for Ubuntu, Debian and Redhat based systems with automated installers Kickstart, Preseed and AutoInstaller / Cloud-Init. Useful for IoT edge sites, Kubernetes base systems and VM appliances to ship to customers\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Packer-templates.svg)](https://starchart.cc/HariSekhon/Packer-templates)\n\n---\n## Hari Sekhon - Spotify Playlists\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/Spotify-Playlists)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/Spotify-Playlists?logo=github)](https://github.com/HariSekhon/Spotify-Playlists/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/Spotify-Playlists?logo=github)](https://github.com/HariSekhon/Spotify-Playlists/network)\n\n240+ playlists, 36,000+ tracks - in both Spotify URI and human-readable formats. Spotify Profile: . Spotify API tools are submodules of this repo.\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/Spotify-Playlists.svg)](https://starchart.cc/HariSekhon/Spotify-Playlists)\n\n---\n## Hari Sekhon - Perl Library\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/lib)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/lib?logo=github)](https://github.com/HariSekhon/lib/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/lib?logo=github)](https://github.com/HariSekhon/lib/network)\n\nPerl Utility Library for my other repos\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/lib.svg)](https://starchart.cc/HariSekhon/lib)\n\n---\n## CI/CD Status Page\n\n[![Repo on GitHub](https://img.shields.io/badge/GitHub-repo-blue?logo=github)](https://github.com/HariSekhon/CI-CD)\n[![GitHub stars](https://img.shields.io/github/stars/HariSekhon/CI-CD?logo=github)](https://github.com/HariSekhon/CI-CD/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/HariSekhon/CI-CD?logo=github)](https://github.com/HariSekhon/CI-CD/network)\n\nCI/CD Status page for Hari Sekhon's GitHub repos\n\n[![Stargazers over time](https://starchart.cc/HariSekhon/CI-CD.svg)](https://starchart.cc/HariSekhon/CI-CD)\n" }, { "path": "STATUS.md", "content": "# CI/CD Status Page\n\nMoved to \n" }, { "path": "ai/openai_api.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: /models\n#\n# Author: Hari Sekhon\n# Date: 2023-06-10 21:45:48 +0100 (Sat, 10 Jun 2023)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nQueries the OpenAI API\n\nAutomatically handles authentication via environment variable \\$OPENAI_API_KEY\nIf a member of multiple organizations then you must also set \\$OPENAI_ORGANIZATION_ID\n\nCan specify \\$CURL_OPTS for options to pass to curl or provide them as arguments\n\n\nSet up your API key here:\n\n https://platform.openai.com/account/api-keys\n\nIf you are a member of multiple organizations, get the Organization ID here:\n\n https://platform.openai.com/account/org-settings\n\n\nAPI Reference:\n\n https://platform.openai.com/docs/api-reference/introduction\n\n\nExamples:\n\n\nList Models:\n\n ${0##*/} /models\n\nRetrieve Model:\n\n ${0##*/} /models/{model_id}\n\n ${0##*/} /models/gpt-3.5-turbo\n\nList Files in our org:\n\n ${0##*/} /files\n\nGet File metadata:\n\n ${0##*/} /files/{file_id}\n\nGet File content:\n\n ${0##*/} /files/{file_id}/content\n\nList fine-tuning jobs:\n\n ${0##*/} /fine-tunes\n\nRetrieve fine-tune:\n\n ${0##*/} /fine-tunes/{fine_tune_id}\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"/path []\"\n\nurl_base=\"https://api.openai.com/v1\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\ncheck_env_defined OPENAI_API_KEY\n\ncurl_api_opts \"$@\"\n\nurl_path=\"$1\"\nshift || :\n\nurl_path=\"${url_path//https:\\\\/\\\\/api.openai.com\\/v1}\"\nurl_path=\"${url_path##/}\"\n\nexport TOKEN=\"$OPENAI_API_KEY\"\n\nif [ -n \"${OPENAI_ORGANIZATION_ID:-}\" ]; then\n CURL_OPTS+=(-H \"OpenAI-Organization: $OPENAI_ORGANIZATION_ID\")\nfi\n\n\"$srcdir/../bin/curl_auth.sh\" \"$url_base/$url_path\" ${CURL_OPTS:+\"${CURL_OPTS[@]}\"} \"$@\" |\njq_debug_pipe_dump\n" }, { "path": "applescript/app_names.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-18 17:03:28 +0400 (Mon, 18 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\nif [ $# -gt 0 ]; then\n cat <\n\n\n \n Label\n com.harisekhon.wakeup_script\n Program\n /Users/hari/github/bash-tools/applescript/wakeup_script.sh\n WatchPaths\n \n /var/db/.AppleSetupDone\n \n RunAtLoad\n \n \n\n" }, { "path": "applescript/get_application_names.scpt", "content": "#!/usr/bin/env osascript\n-- vim:ts=4:sts=4:sw=4:et\n--\n-- Author: Hari Sekhon\n-- Date: 2024-10-13 20:26:31 +0300 (Sun, 13 Oct 2024)\n--\n-- https///github.com/HariSekhon/DevOps-Bash-tools\n--\n-- License: see accompanying Hari Sekhon LICENSE file\n--\n-- If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n--\n-- https://www.linkedin.com/in/HariSekhon\n--\n\n-- ============================================================================ #\n-- A p p l e S c r i p t\n-- ============================================================================ #\n\n-- Gets the list of Applications running in the name format that can be passed to\n-- the adjacent script set_frontmost_process.scpt\n\ntell application \"System Events\"\n set appList to (name of every application process)\nend tell\n\nset output to \"\"\n\nrepeat with appName in appList\n set output to output & appName & \"\\n\"\nend repeat\n\n-- strip trailing newline\nset output to text 1 thru -2 of output\n\n-- doesn't come out right due to carriage returns\n--do shell script \"echo \" & quoted form of output\n-- even this outputs carriage returns\n--do shell script \"echo \" & quoted form of output & \" | tr '\\r' '\\n'\"\n\n-- annoying pop-up\n--display dialog output as text\n\n-- outputs to stderr instead of stdout, use implicit print of last value instead\n--log output\noutput\n\n-- output is unsorted and sorting in Applescript requires crude in-code sorting like Bubblescript to passing array out\n-- to shell sort and back which results in a string formatting output one character per line BS, just wrap this in quick\n-- shell it's simpler\n" }, { "path": "applescript/get_frontmost_process.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-02-28 13:05:26 +0000 (Mon, 28 Feb 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\ntell application \"System Events\"\n set frontmostProcess to first process where it is frontmost\n name of frontmostProcess\nend tell\n" }, { "path": "applescript/get_frontmost_process_title.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-12-05 16:30:05 +0000 (Mon, 05 Dec 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Returns the name and title of the current foreground app\n#\n# Borrowed from:\n#\n# https://stackoverflow.com/questions/5292204/macosx-get-foremost-window-title\n#\n# Tested on macOS 10.7 and 11.7\n\nglobal frontApp, frontAppName, windowTitle\n\nset windowTitle to \"\"\ntell application \"System Events\"\n set frontApp to first application process whose frontmost is true\n set frontAppName to name of frontApp\n tell process frontAppName\n tell (1st window whose value of attribute \"AXMain\" is true)\n set windowTitle to value of attribute \"AXTitle\"\n end tell\n end tell\nend tell\n\nreturn {frontAppName, windowTitle}\n" }, { "path": "applescript/get_mouse_coordinates.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-06-13 20:43:57 +0100 (Sat, 13 Jun 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Gets the coordinates of the mouse cursor\n#\n# other options:\n#\n# Cmd-Shift-4 - to take a select area screenshot displays the coordates, then press Esc to cancel\n#\n# MouseTools -location\n\ntell application \"System Events\"\n # doesn't work due to mouse not being defined\n set mousePosition to position of the mouse\nend tell\n" }, { "path": "applescript/get_mouse_coordinates.sh", "content": "#!/usr/bin/env bash\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\n\nMouseTools -location\n" }, { "path": "applescript/is_screen_locked.py", "content": "#!/usr/bin/env python3\n# coding=utf-8\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-12-05 22:03:56 +0000 (Mon, 05 Dec 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n\"\"\"\n\nDetects whether the macOS screen is locked\n\nIf locked, prints 'true' and returns exit code 0\nIf unlocked, prints 'false' and returns exit code 1\n\nUseful to avoid automated keystrokes or mouse_clicks while on locked screen which can make it hard to login back in\n\n\"\"\"\n\nfrom __future__ import print_function\n\nimport sys\nimport Quartz\n\nif __name__ == '__main__':\n # false positive\n # pylint: disable=no-member\n d = Quartz.CGSessionCopyCurrentDictionary()\n if 'CGSSessionScreenIsLocked' in d and d['CGSSessionScreenIsLocked'] == 1:\n print('true')\n sys.exit(0)\n else:\n print('false')\n sys.exit(1)\n" }, { "path": "applescript/is_screensaver_running.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-12-05 17:44:03 +0000 (Mon, 05 Dec 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Returns 'true' or 'false' as to whether screensaver is running\n#\n# Useful to avoid sending clicks or keystrokes during screensaver, as this makes it hard to login\n#\n# XXX: Caveat: doesn't work on locked screen when screensaver isn't running so not comprehensive\n\ntell application \"System Events\"\n get running of screen saver preferences\nend tell\n" }, { "path": "applescript/keystrokes.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-06-14 17:16:31 +0100 (Sun, 14 Jun 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/../lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nAutomates Keyboard strokes to automate tedious UI actions\n\nPerforms N keyboard key code presses\n\n https://eastmanreference.com/complete-list-of-applescript-key-codes\n\nSleeps for \\$SLEEP_SECS (default: 1) between clicks to allow UIs to update and perform the next keystroke\n\nStarts each keystroke after \\$START_DELAY seconds (default: 5) to give time to alt-tab back to your UI application and position the cursor\n\nIf given num is negative, will run indefinitely until Control-C'd\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ...]\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nmac_only\n\nnum=\"$1\"\nstart_delay=\"${START_DELAY:-5}\"\nsleep_secs=\"${SLEEP_SECS:-1}\"\n\nif ! [[ \"$num\" =~ ^-?[[:digit:]]+$ ]]; then\n usage \"invalid non-integer '$num' given for first argument\"\nfi\n\nif ! is_float \"$start_delay\"; then\n usage \"invalid non-float '$START_DELAY' found in environment for \\$START_DELAY\"\nfi\n\nif ! is_float \"$sleep_secs\"; then\n usage \"invalid non-float '$SLEEP_SECS' found in environment for \\$SLEEP_SECS\"\nfi\n\nshift || :\n\nread -r -a keys <<< \"$@\"\n\ntimestamp \"waiting for $start_delay secs before starting\"\nsleep \"$start_delay\"\ntimestamp \"starting $num keystrokes\"\necho\n\nfor ((i=1; ; i++)); do\n # if given num is negative, will run for infinity until Control-C'd\n if [ \"$num\" -ge 0 ] &&\n [ \"$i\" -gt \"$num\" ]; then\n break\n fi\n for key in \"${keys[@]}\"; do\n if [[ \"$key\" =~ ^[[:digit:]][[:digit:]]+$ ]]; then\n timestamp \"keystroke $i/$num keycode $key\"\n osascript -e \"tell application \\\"System Events\\\" to key code $key\" || :\n else\n timestamp \"keystroke $i/$num key $key\"\n osascript -e \"tell application \\\"System Events\\\" to keystroke \\\"$key\\\"\"\n fi\n sleep \"$sleep_secs.$RANDOM\" # add $RANDOM up to 1 second jitter to make it harder to spot that this is perfectly automated clicking\n done\ndone\n" }, { "path": "applescript/mouse_clicks.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-06-13 20:47:12 +0100 (Sat, 13 Jun 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Click N times at coordinates x,y\n#\n# waits 5 seconds before starting\n#\n# easier to just use 'MouseTools -leftClick' command line, see adjacent mouse_clicks.sh\n\n# Incomplete, doesn't seem to work, use adjacent mouse_clicks.sh instead which works nicely\n\n\nset N to 10\n\n# see adjacent get_mouse_coordinates.scpt for how to get the mouse coordinates\nset x to 2455\nset y to 1273\n\ndo shell script \"echo waiting 5 secs before starting clicking\"\ndelay 5\n\n# repeat N times\n# want loop iterator variable to print the click we're on\nset i to 0\nrepeat while i < N\n tell application \"System Events\"\n click at {x,y}\n end tell\n #do shell script \"echo click \" & i\n #copy \"click \" & i to stdout\n set i to i + 1\n delay 1\nend repeat\n\n# looks like last thing printed overwrites all previous output :-/\ncopy \"DONE\" to stdout\n" }, { "path": "applescript/mouse_clicks.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-06-14 17:16:31 +0100 (Sun, 14 Jun 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/../lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nAutomates Mouse Clicks to automate tedious UI actions\n\nPerforms N mouse clicks at the sequence of X,Y coordinates given or the current mouse location if no coordinates\n\nSleeps for \\$SLEEP_SECS (default: 1) between clicks to allow UIs to update and perform the next click\n\nStarts clicking after \\$START_DELAYS seconds (default: 5) to give time to alt-tab back to your UI application and position the cursor\n\nIf given num is negative, will run indefinitely until Control-C'd\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ...]\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nmac_only\n\nnum=\"$1\"\nstart_delay=\"${START_DELAY:-5}\"\nsleep_secs=\"${SLEEP_SECS:-1}\"\n\nif ! [[ \"$num\" =~ ^-?[[:digit:]]+$ ]]; then\n usage \"invalid non-integer '$num' given for first argument\"\nfi\n\nif ! is_float \"$start_delay\"; then\n usage \"invalid non-float '$START_DELAY' found in environment for \\$START_DELAY\"\nfi\n\nif ! is_float \"$sleep_secs\"; then\n usage \"invalid non-float '$SLEEP_SECS' found in environment for \\$SLEEP_SECS\"\nfi\n\nshift || :\n\nread -r -a coordinates <<< \"$@\"\n\nif ! type -P cliclick &>/dev/null; then\n brew install cliclick\nfi\n\nif [ -n \"${coordinates:-}\" ]; then\n for coordinate in \"${coordinates[@]}\"; do\n if ! [[ \"$coordinate\" =~ ^[[:digit:]]+,[[:digit:]]+$ ]]; then\n usage \"invalid coordinate '$coordinate' given - must be in form x,y\"\n fi\n done\nfi\n\ntimestamp \"Waiting for $start_delay secs before starting\"\nsleep \"$start_delay\"\ntimestamp \"Starting $num mouse clicks every $sleep_secs\"\necho\n\nfor ((i=1; ; i++)); do\n # if given num is negative, will run for infinity until Control-C'd\n if [ \"$num\" -ge 0 ] &&\n [ \"$i\" -gt \"$num\" ]; then\n break\n fi\n if [ -n \"${coordinates:-}\" ]; then\n for coordinate in \"${coordinates[@]}\"; do\n x=\"${coordinate%,*}\"\n y=\"${coordinate#*,}\"\n timestamp \"Mouse click $i/$num at $x , $y\"\n # tool no longer available online\n #MouseTools -leftClick -x \"$x\" -y \"$y\"\n cliclick \"c:$x,$y\"\n sleep \"$sleep_secs.$RANDOM\"\n done\n else\n timestamp \"Mouse click $i/$num at current mouse location\"\n #MouseTools -leftClick\n cliclick \"c:.\"\n sleep \"$sleep_secs.$RANDOM\" # add $RANDOM up to 1 second jitter to make it harder to spot that this is perfectly automated clicking\n fi\ndone\n" }, { "path": "applescript/mouse_clicks_remote_desktop.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-12-06 10:55:58 +0700 (Fri, 06 Dec 2024)\n#\n# https://github.com/HariSekhon\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/../lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nSwitches to Microsoft Remote Desktop, waits 10 seconds and then clicks the mouse once a minute to prevent the screensaver from coming on\n\nWorkaround to Active Directory Group Policies that don't let you disable the screensaver\n\nPoint the mouse to a safe location with no mouse click effect\n\nThen Cmd-Tab to Terminal, run this and let it switch back to Remote Desktop to keep the session open\nminute to prevent the screensaver from coming on\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\nmac_only\n\nexport START_DELAY=\"${START_DELAY:-10}\"\nexport SLEEP_SECS=\"${SLEEP_SECS:-60}\"\n\nif ! is_float \"$START_DELAY\"; then\n usage \"invalid non-float '$START_DELAY' found in environment for \\$START_DELAY\"\nfi\n\nif ! is_float \"$SLEEP_SECS\"; then\n usage \"invalid non-float '$SLEEP_SECS' found in environment for \\$SLEEP_SECS\"\nfi\n\ntimestamp \"Switching foreground window to Remote Desktop\"\n\"$srcdir/set_frontmost_process.scpt\" \"Microsoft Remote Desktop\"\n\nexec \"$srcdir/mouse_clicks.sh\" -1\n" }, { "path": "applescript/mouse_random_movements.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-12-06 08:09:48 +0700 (Fri, 06 Dec 2024)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/../lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nRandomly moves the mouse around the screen\n\nUseful to prevent a screensaver kicking in on a Remote Desktop connection which has Active Directory Group Policies\napplied that doesn't let you disable the screensaver\n\nSleeps for 10 seconds between mouse movements\n\nUPDATE: it turns out this doesn't stop Windows Virtual Desktop from going to screensaver.\n\nWORKAROUND: find a safe area in your WVD session to click without any effect, then Cmd-Tab to Terminal and run this:\n\n mouse_clicks_remote_desktop.sh\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[ ]\"\n\nhelp_usage \"$@\"\n\nmax_args 2 \"$@\"\n\nmac_only\n\nsleep_secs=\"${1:-10}\"\n\nnum=\"${2:--1}\"\n\nif ! is_float \"$sleep_secs\"; then\n usage \"invalid non-float argument given for sleep seconds: $sleep_secs\"\nfi\n\nif [ \"$sleep_secs\" -lt 1 ]; then\n usage \"Sleep seconds cannot be less than 1\"\nfi\n\nif ! [[ \"$num\" =~ ^-?[[:digit:]]+$ ]]; then\n usage \"invalid non-integer num movements given for first argument: $num\"\nfi\n\nif ! type -P cliclick &>/dev/null; then\n brew install cliclick\nfi\n\ntimestamp \"Starting random mouse movements\"\necho\n\nscreen_width=\"$(system_profiler SPDisplaysDataType | grep Resolution | awk '{print $2}')\"\nscreen_height=\"$(system_profiler SPDisplaysDataType | grep Resolution | awk '{print $4}')\"\n\nfor ((i=1; ; i++)); do\n # if given num is negative, will run for infinity until Control-C'd\n if [ \"$num\" -ge 0 ] &&\n [ \"$i\" -gt \"$num\" ]; then\n break\n fi\n x=\"$((RANDOM % screen_width))\"\n y=\"$((RANDOM % screen_height))\"\n timestamp \"Mouse movement $i/$num at $x , $y\"\n cliclick \"m:$x,$y\"\n sleep \"$sleep_secs\"\ndone\n" }, { "path": "applescript/reopen_app.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: Shazam\n#\n# Author: Hari Sekhon\n# Date: 2025-11-02 00:44:40 +0300 (Sun, 02 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nUses Applescript to quit and re-open a given application\n\nWritten to relaunch Shazam after deleting tracks from its DB using adjacent script to reflect the changes\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\napp=\"$1\"\n\nmac_only\n\ntimestamp \"Quitting and re-opening app: $app\"\n\nosascript </dev/null; then\n \"$srcdir/../install/install_homebrew.sh\"\nfi\n\nif ! type SwitchAudioSource &>/dev/null; then\n brew install switchaudio-osx\nfi\n\ninternal_mic=\"$(SwitchAudioSource -a | grep Microphone | grep -v -i -e iPhone -e AirPods || :)\"\n\nif [[ $(wc -l <<< \"$internal_mic\") -ge 2 ]]; then\n die \"ERROR: more than one microphone returned:\n\n$internal_mic\n\"\nfi\n\nif [ -z \"$internal_mic\" ]; then\n die \"ERROR: failed to determine internal mic\"\nfi\n\n#SwitchAudioSource -t input -s \"MacBook Pro Microphone\"\n#timestamp \"Switching to microphone: $internal_mic\"\nSwitchAudioSource -t input -s \"$internal_mic\"\n" }, { "path": "applescript/shazam_app_delete_track.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-11-02 00:22:03 +0300 (Sun, 02 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nDeletes a single track from the local Mac's Shazam app sqlite database\n\nThe Shazam app caches this while running so you will need to quit and re-open the app to see this change\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args='\"\" \"\"'\n\nhelp_usage \"$@\"\n\nnum_args 2 \"$@\"\n\nmac_only\n\nartist=\"$1\"\ntrack=\"$2\"\n\ndbpath=\"$(\n find ~/Library/Group\\ Containers \\\n -type f \\\n -path '*/*group.com.shazam/com.shazam.mac.Shazam/ShazamDataModel.sqlite' 2>/dev/null |\n head -n 1\n )\"\n\nif [ -z \"$dbpath\" ]; then\n die \"Error: Could not locate ShazamDataModel.sqlite\"\nfi\n\ntimestamp \"Found Shazam App DB: $dbpath\"\n\ntimestamp \"Backing up DB before deleting\"\nbackup=\"${dbpath}.bak.$(date +%Y%m%d%H%M%S)\"\ncp -v \"$dbpath\" \"$backup\"\ntimestamp \"Backup created at $backup\"\necho >&2\n\ntimestamp \"Deleting track from DB: '$artist - $track'\"\necho >&2\n\n# Delete from ZSHTAGRESULTMO using JOIN with ZSHARTISTMO\n#\n# sqlite3 `.parameter` is fragile and unsafe for arbitrary text,\n# and we end up with all kinds of shell injection and\n# quoting and newline issues with arbitrary data, so pre-generate\n# the variables with escaping using SQLite's own quoting engine\n\n# also fragile\n#artist_sql=$(sqlite3 ':memory:' \"SELECT quote($(\n# printf \"'%s'\" \"$(printf '%s' \"$artist\" | sed \"s/'/''/g\")\"\n#));\")\n#\n#track_sql=$(sqlite3 ':memory:' \"SELECT quote($(\n# printf \"'%s'\" \"$(printf '%s' \"$track\" | sed \"s/'/''/g\")\"\n#));\")\n\nartist_sql=\"$(\n sqlite3 -batch \\\n -noheader \\\n -list \\\n -cmd \".parameter clear\" \\\n -cmd \".parameter set @v '$(sed \"s/'/''/g\" <<< \"$artist\")'\" \\\n :memory: \\\n \"SELECT quote(@v);\"\n)\"\n\ntrack_sql=\"$(\n sqlite3 -batch \\\n -noheader \\\n -list \\\n -cmd \".parameter clear\" \\\n -cmd \".parameter set @v '$(sed \"s/'/''/g\" <<< \"$track\")'\" \\\n :memory: \\\n \"SELECT quote(@v);\"\n)\"\n\nsqlite3 -batch \\\n -bail \\\n \"$dbpath\" </dev/null |\n head -n 1\n)\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nQueries the local Mac's Shazam app sqlite database and outputs all tracks, one per line\nin format:\n\nArtist - Track\n\nUseful for using in conjunction with the adjacent spotify_app_search.sh script\nsince Apple removed Shazam's Spotify integration\n\nCan optionally specify a number of tracks to stop after as an arg or environment variable \\$SHAZAM_APP_DUMP_NUM_TRACKS\n\nA second arg can specify a path to the Shazam SQLite DB, which otherwise defaults to:\n\n $default_dbpath\n\nTested on Shazam app version 2.11.0 - may need to be modified for other versions as the Shazam DB schema changes\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[ ]\"\n\nhelp_usage \"$@\"\n\nmax_args 2 \"$@\"\n\nmac_only\n\narg=\"${1:-${SHAZAM_APP_DUMP_NUM_TRACKS:--1}}\"\n\ndbpath=\"${2:-$default_dbpath}\"\n\nif [ ! -f \"$dbpath\" ]; then\n die \"Error: Could not locate ShazamDataModel.sqlite - File Not Found: $dbpath\"\nfi\n\ntimestamp \"Found Shazam App DB: $dbpath\"\n\nwhere_clause=\"\"\norder_clause=\"ORDER BY r.ZDATE DESC\"\nlimit_clause=\"\"\n\n# macOS Core Data framework stores dates as seconds 2001-01-01 00:00:00 UTC, not unix epoch of 1970\ncoredata_epoch_offset=978307200\n\n# XXX: localtime strftime() may give off comparisons vs UTC stored date timestamps, so avoided for YYYY-MM-DD\n# keeping local day for today/yesterday/week or last:N though\ncase \"$arg\" in\n today)\n where_clause=\"\n WHERE\n r.ZDATE >= (\n strftime('%s', 'now', 'start of day', 'localtime') - $coredata_epoch_offset\n )\n \"\n order_clause=\"ORDER BY r.ZDATE ASC\"\n ;;\n yesterday)\n where_clause=\"\n WHERE\n r.ZDATE >= (\n strftime('%s', 'now', 'start of day', '-1 day', 'localtime') - $coredata_epoch_offset\n )\n AND\n r.ZDATE < (\n strftime('%s', 'now', 'start of day', 'localtime') - $coredata_epoch_offset\n )\n \"\n order_clause=\"ORDER BY r.ZDATE ASC\"\n ;;\n week)\n where_clause=\"\n WHERE\n r.ZDATE >= (\n strftime('%s', 'now', 'start of day', '-6 days', 'localtime')\n - $coredata_epoch_offset\n )\n \"\n order_clause=\"ORDER BY r.ZDATE ASC\"\n ;;\n last:*)\n days=\"${arg#last:}\"\n\n if ! [[ \"$days\" =~ ^[[:digit:]]+$ ]]; then\n die \"Invalid argument for last:N, must be a positive integer: $arg\"\n fi\n\n where_clause=\"\n WHERE\n r.ZDATE >= (\n strftime('%s', 'now', '-$days days', 'localtime')\n - $coredata_epoch_offset\n )\n \"\n order_clause=\"ORDER BY r.ZDATE ASC\"\n ;;\n ????-??-??)\n where_clause=\"\n WHERE\n r.ZDATE >= (\n strftime('%s', '$arg', 'start of day')\n - $coredata_epoch_offset\n )\n AND\n r.ZDATE < (\n strftime('%s', '$arg', 'start of day', '+1 day')\n - $coredata_epoch_offset\n )\n \"\n order_clause=\"ORDER BY r.ZDATE ASC\"\n ;;\n *)\n num=\"$arg\"\n\n if ! [[ \"$num\" =~ ^-?[[:digit:]]+$ ]]; then\n die \"Invalid argument given, must be an integer, 'today', or 'yesterday': $arg\"\n fi\n\n if [ \"$num\" -gt 0 ]; then\n limit_clause=\"LIMIT $num\"\n fi\n ;;\nesac\n# my ~/.sqliterc forces pretty printing breaking the separator we need so -init /dev/null to ignore it\nsqlite3 \"$dbpath\" -init /dev/null -noheader -separator $'\\t' \\\n\"\n SELECT\n a.ZNAME AS artist,\n r.ZTRACKNAME AS track\n FROM\n ZSHTAGRESULTMO r\n LEFT JOIN\n ZSHARTISTMO a\n ON\n a.ZTAGRESULT = r.Z_PK\n $where_clause\n $order_clause\n $limit_clause;\n\" |\nsed '/^[[:space:]]*$/d' |\nwhile IFS=$'\\t' read -r artist title; do\n # trim leading/trailing whitespace and replace newlines\n artist=\"$(tr -d '\\r' <<< \"$artist\" | sed 's/^ *//;s/ *$//')\"\n title=\"$(tr -d '\\r' <<< \"$title\" | sed 's/^ *//;s/ *$//')\"\n printf \"%s\\t-\\t%s\\n\" \"$artist\" \"$title\"\ndone |\n# from https://github.com/HariSekhon/DevOps-Perl-tools repo - use it if present in $PATH\nif type -P uniq_order_preserved.pl &>/dev/null; then\n uniq_order_preserved.pl\nelse\n cat\nfi\n" }, { "path": "applescript/shazam_search_spotify.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-11-02 00:30:16 +0300 (Sun, 02 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nDumps the local Mac Shazam app's tracks one at a time, searches the Spotify app for each one\n\nShazam to Spotify apps workaround to Apple removing Spotify integration from Shazam\n\nPrompts between each track to proceed to search for the next one\n\nOptionally prompts to delete the track after searh from the Shazam local sqlite DB if this environment variable is set:\n\n export SHAZAM_APP_DELETE_TRACK_AFTER_SEARCH=1\n\nCan optionally specify a number of tracks to stop after as an arg,\nor a timeframe today/yesterday/week/YYYY-MM-DD,\n\nYou can set this args as an environment variable \\$SHAZAM_APP_DUMP_NUM_TRACKS - the arg takes precedence though\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[ ]\"\n\nhelp_usage \"$@\"\n\nmax_args 2 \"$@\"\n\nmac_only\n\nnum_tracks=\"${1:-${SHAZAM_APP_DUMP_NUM_TRACKS:-1}}\"\nsqlite_db_path=\"${2:-}\"\n\ncase \"$num_tracks\" in\n # allow only these args to be passed to shazam_app_dump_tracks.sh\n today|yesterday|week|????-??-??) : ;;\n *)\n if ! [[ \"$num_tracks\" =~ ^-?[[:digit:]]+$ ]]; then\n die \"Invalid argument given, must be an integer or one of today/yesterday/week/YYYY-MM-DD: $num_tracks\"\n fi\n ;;\nesac\n\nrelaunch_shazam(){\n timestamp \"Relaunching Shazam app to reflect removed tracks\"\n \"$srcdir/reopen_app.sh\" Shazam\n sleep 2\n # hit Escape key to to minimize Shazam back to the menu bar\n osascript -e \"tell application \\\"System Events\\\" to key code 53\"\n untrap\n exit\n}\nexport -f relaunch_shazam\n\ntrap_cmd 'relaunch_shazam'\n\nwhile IFS=$'\\t' read -r artist _ track; do\n \"$srcdir/spotify_app_search.sh\" \"$artist $track\"\n if [ \"${SHAZAM_APP_DELETE_TRACK_AFTER_SEARCH:-}\" = 1 ]; then\n timestamp \"Press enter to delete this track from the Shazam DB: $artist - $track\"\n read -r < /dev/tty\n QUIET=1 \"$srcdir/shazam_app_delete_track.sh\" \"$artist\" \"$track\"\n else\n timestamp \"Press enter to search for next track\"\n read -r < /dev/tty\n fi\ndone < <(\n \"$srcdir/shazam_app_dump_tracks.sh\" \"$num_tracks\" ${sqlite_db_path:+\"$sqlite_db_path\"}\n)\n" }, { "path": "applescript/shazam_search_spotify_then_delete_track.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-11-02 00:30:16 +0300 (Sun, 02 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nDumps the local Mac Shazam app's tracks one at a time, searches the Spotify app for each one,\nand then deletes it from the Shazam local sqlite DB upon an Enter key press to proceed to the next one\n\nShazam to Spotify apps workaround to Apple removing Spotify integration from Shazam\n\nCan optionally specify a number of tracks to stop after as an arg,\nor a timeframe today/yesterday/week/YYYY-MM-DD,\n\nYou can set this args as an environment variable \\$SHAZAM_APP_DUMP_NUM_TRACKS - the arg takes precedence though\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[ ]\"\n\nhelp_usage \"$@\"\n\nmax_args 1 \"$@\"\n\nmac_only\n\nexport SHAZAM_APP_DELETE_TRACK_AFTER_SEARCH=1\n\n\"$srcdir/shazam_search_spotify.sh\" \"$@\"\n" }, { "path": "applescript/shorten_text_selection.scpt", "content": "#!/usr/bin/env osascript\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-05-19 01:44:50 +0300 (Mon, 19 May 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# ============================================================================ #\n# Shortens the selected text in the prior window\n# ============================================================================ #\n\n# - Copies the selected text to the clipboard\n# - Replaces \"and\" with \"&\"\n# - Removes multiple blank lines between paragraphs (which result from the pbcopy/pbpaste pipeline otherwise)\n# - Pastes the clipboard text back over the selected text\n#\n# I use this a lot for LinkedIn comments in browser due to the short 1250 character limit\n\n# Tested on macOS 14\n\n# switch to previous window\ntell application \"System Events\"\n\tkey down command\n\tkeystroke tab\n\tkey up command\nend tell\n\ndelay 0.3\n\n# copy the selected text\ntell application \"System Events\"\n\tkeystroke \"c\" using command down\nend tell\n\ndelay 0.1\n\n# - replace occurrences of the word \"and\" with \"&\" using sed with word boundaries\n# - crush out multiple blank lines to a single blank line between paragraphs\n# - this is correct the pbpaste | pbcopy copying back multiplying the blank lines\ndo shell script \"pbpaste | gsed -E 's/\\\\band\\\\b/\\\\&/g' | cat -s | pbcopy\"\n\ndelay 0.1\n\n# paste the modified text over the original selection\ntell application \"System Events\"\n\tkeystroke \"v\" using command down\nend tell\n" }, { "path": "applescript/spotify_app_search.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-11-01 23:34:33 +0300 (Sat, 01 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nRuns a search in the Spotify App on Mac using Applescript\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nmac_only\n\nquery=\"$*\"\n\nquery=\"${query//\\\"/\\\\\\\"}\"\n\ntimestamp \"Telling Spotify app to search for: $query\"\n\nosascript \\\n -e 'tell application \"Spotify\" to activate' \\\n -e 'tell application \"System Events\" to keystroke \"l\" using {command down}' \\\n -e 'delay 0.2' \\\n -e \"tell application \\\"System Events\\\" to keystroke \\\"$query\\\" & return\"\n" }, { "path": "applescript/start_app_at_login.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-11-06 22:17:22 +0200 (Thu, 06 Nov 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nAdds an App to auto-start at Login using Applescript\n\nChecks the /Applications and \\$HOME/Applications for the given app name\n\n(auto-tries both with and without .app extension so you can provide it either way)\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\narg=\"$1\"\n\nHOME=\"${HOME:-$(cd && pwd)}\"\n\napp=\"\"\nfor path in \\\n \"/Applications/$arg.app\" \\\n \"/Applications/$arg\" \\\n \"/$HOME/Applications/$arg.app\" \\\n \"/$HOME/Applications/$arg\"; do\n if [ -e \"$path\" ]; then\n timestamp \"Found '$arg' at '$path'\"\n app=\"$path\"\n fi\ndone\n\nif [ -z \"$app\" ]; then\n die \"App '$arg' not found in /Applications or $HOME/Applications\"\nfi\n\ntimestamp \"Setting '$app' to start at login\"\nosascript -e \"tell application \\\"System Events\\\" to make login item at end with properties {path:\\\"$app\\\", hidden:false}\"\n" }, { "path": "applescript/wakeup_script.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-04-17 22:26:11 +0400 (Wed, 17 Apr 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/../lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nScript of actions to run whenever a Mac wakes up from sleep\n\nCurrently this script just flushes the DNS cache to fix Chrome hitting ERR_NOT_FOUND errors when waking up on a VPN\n\nTo set this up, edit the path to this script in the plist xml file and then load it:\n\n cp -fv $srcdir/com.harisekhon.wakeup_script.plist ~/Library/LaunchAgents/\n launchctl load $srcdir/com.harisekhon.wakeup_script.plist\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\nmac_only\n\n{\n\ntimestamp \"Running Mac wake up script: $0\"\n\ntimestamp \"Flushing DNS cache\"\ndscacheutil -flushcache\n\ntimestamp \"Reloading mDNSResponder\"\nsudo killall -HUP mDNSResponder\n\ntimestamp \"Wake up script completed\"\necho\n\n} 2>&1 | tee -a \"$srcdir/wakeup_script.log\"\n" }, { "path": "applescript/world_clock_cities.txt", "content": "#\n# Author: Hari Sekhon\n# Date: 2026-02-05 14:53:51 -0300 (Thu, 05 Feb 2026)\n#\n# vim:ts=4:sts=4:sw=4:et\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Cities to load into the World Clock on macOS\n\n# Was going to load this into Clock via Applescript but this app is extraordinarily bad for scripting\n\nLondon\nPrague\nMadrid\nAmsterdam\nDubai\nBangkok\nCairo\nChisinau\nIstanbul\nTbilisi\nCancun\nBogota\nSantiago\nBuenos Aires\nNew York\nLos Angeles\n#Palo Alto\nSan Franciso\n\n#Marrakesh\n#Kyiv\n#Miami\n#Hanoi\n#Adelaide\n#Athens\n#Pontianak\n#Melbourne\n#Tunis\n" }, { "path": "appveyor/appveyor_api.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-31 13:47:21 +0100 (Tue, 31 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# Queries AppVeyor API, auto-populating $APPVEYOR_TOKEN from environment and API url base for convenience\n#\n# https://kevinoid.github.io/appveyor-swagger/bootprint/\n#\n# eg.\n#\n# appveyor_api.sh projects | jq\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_description=\"Queries the AppVeyor API, auto-populating the base and API tokens from the environment\"\n# shellcheck disable=SC2034\nusage_args=\"/path []\"\n\nif [ -z \"${APPVEYOR_TOKEN:-}\" ]; then\n usage \"APPVEYOR_TOKEN environment variable is not set (generate this from your Web UI Dashboard -> profile -> API AUTH TOKENS\"\nfi\n\nif [ $# -lt 1 ]; then\n usage \"no /path given to query in the API\"\nfi\n\nfor arg; do\n case \"$arg\" in\n -h|--help) usage\n ;;\n esac\ndone\n\nurl_path=\"${1##/}\"\nshift || :\n\nexport TOKEN=\"$APPVEYOR_TOKEN\"\n\n\"$srcdir/../bin/curl_auth.sh\" -sS --fail \"https://ci.appveyor.com/api/$url_path\" \"$@\"\n" }, { "path": "appveyor/appveyor_byoc.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-03-09 23:16:47 +0000 (Mon, 09 Mar 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\nif [ -z \"${APPVEYOR_TOKEN:-}\" ]; then\n echo \"\\$APPVEYOR_TOKEN not found in environment\"\n exit 1\nfi\n\nexport PATH=\"$PATH:/opt/appveyor/host-agent\"\n\nif ! type -P appveyor-host-agent &>/dev/null; then\n \"$srcdir/../install/install_appveyor_byoc.sh\"\n clear\nfi\n\n# leading whitespace break PowerShell commands\npwsh <]\"\n\nhelp_usage \"$@\"\n\n# XXX: can't set this to account_id as account summary info only works on a profile basis\nprofile=\"${1:-}\"\n\nif [ -n \"$profile\" ]; then\n export AWS_PROFILE=\"$profile\"\nfi\n\nexport AWS_DEFAULT_OUTPUT=json\n\naccount_id=\"$(aws sts get-caller-identity --query Account --output text | tr -d '\\r')\"\necho \"AccountID = $account_id\"\n# XXX: might not have permissions to run this one, skip it if so\naccount_info=\"$(aws organizations describe-account --account-id \"$account_id\" || { echo; echo \"Missing permission to describe AWS Organization\"; echo; } >&2 )\"\nif [ -n \"$account_info\" ]; then\n account_name=\"$(jq -r '.Account.Name' <<< \"$account_info\")\"\n echo \"AccountName = $account_name\"\n account_email=\"$(jq -r '.Account.Email' <<< \"$account_info\")\"\n echo \"AccountEmail = $account_email\"\nfi\naws iam get-account-summary |\njq -r '.SummaryMap | to_entries | map(.key + \" = \" + (.value | tostring)) | .[]' |\nsort\n" }, { "path": "aws/aws_accounts_missing_from_config.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-02-04 22:01:06 +0700 (Tue, 04 Feb 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn\n# and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nFor a list of AWS Account IDs in stdin or files (containing one account id per line),\nfinds those missing from AWS config\n\nYou can override the config file location by setting environment variable AWS_CONFIG_FILE\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\n#min_args 0 \"$@\"\n\nHOME=\"${HOME:-$(cd && pwd)}\"\n\naws_config=\"${AWS_CONFIG_FILE:-$HOME/.aws/config}\"\n\n# force functions to log with timestamps\nexport VERBOSE=1\n\naccount_ids=\"$(\n sed '\n s/#.*//;\n s/^[[:space:]]*//;\n s/[[:space:]]*$//;\n /^[[:space:]]*$/d\n ' \"$@\"\n)\"\n\ntimestamp \"AWS Account IDs not found in: $aws_config\"\necho >&2\nwhile read -r aws_account_id; do\n if ! is_aws_account_id \"$aws_account_id\"; then\n warn \"Invalid AWS Account ID: $aws_account_id\"\n fi\n if ! grep -Fq \"$aws_account_id\" \"$aws_config\"; then\n echo \"$aws_account_id\"\n fi\ndone <<< \"$account_ids\"\n" }, { "path": "aws/aws_batch_kill_stale_jobs.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-11-02 17:00:24 +0000 (Tue, 02 Nov 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTerminates AWS Batch jobs in a given queue older than N hours (default: 24)\n\nUseful to find and kill jobs that have become too long running, eg. more than 24 hours, or jobs far exceeding their expected time, including jobs that can get stuck with memory allocation errors on shared VMs\n\nMay take a few seconds before the job(s) are actually terminated\n\nRequires AWS CLI to be configured and authenticated\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nqueue=\"$1\"\nhours=\"${2:-24}\"\n\nscript_basename=\"${0##*/}\"\n\n\"$srcdir/aws_batch_stale_jobs.sh\" \"$queue\" \"$hours\" |\njq -r '.[] | [.jobId,.jobName] | @tsv' |\nwhile read -r job_id job_name; do\n timestamp \"Terminating job id: '$job_id', name: '$job_name'\"\n aws batch terminate-job --job-id \"$job_id\" --reason \"Job terminated by script $script_basename after running for longer than $hours hours\"\ndone\n" }, { "path": "aws/aws_batch_stale_jobs.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-11-02 17:00:24 +0000 (Tue, 02 Nov 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists AWS Batch jobs in a given queue older than N hours (default: 24)\n\nIncludes jobs stuck in pending and runnable states as these are usually stuck due to an environment/configuration issue if they've been pending for a long time\n\nUseful to find jobs that have become too long running, eg. more than 24 hours, or jobs far exceeding their expected time, including jobs that can get stuck with memory allocation errors on shared VMs\n\nReturns JSON list of jobs for further processing\n\nRequires AWS CLI to be configured and authenticated\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nqueue=\"$1\"\nhours=\"${2:-24}\"\n\n# doesn't support floats\n#millis=\"$((hours * 3600 * 1000))\"\nmillis=\"$(bc -l <<< \"$hours * 3600 * 1000\" | sed 's/\\..*$//')\"\n\nepoch_millis=\"$(date +%s)000\"\n\nbefore_epoch_millis=\"$((epoch_millis - millis))\"\n\n# --filters only works on newer versions of CLIv2 so jq processing is more reliable across environments:\n#\n# https://github.com/aws/aws-cli/issues/6526\n#\n#aws batch list-jobs --job-queue \"$queue\" --filters \"name=BEFORE_CREATED_AT,values=$before_epoch\"\n\nfor state in SUBMITTED PENDING RUNNABLE STARTING RUNNING; do\n aws batch list-jobs --job-queue \"$queue\" --job-status \"$state\" |\n jq \".jobSummaryList[] | select(.createdAt <= $before_epoch_millis)\"\ndone |\n# slurp items back into an array\njq -s .\n" }, { "path": "aws/aws_billing_alarm.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-12-11 16:30:33 +0000 (Fri, 11 Dec 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nSets an AWS CloudWatch billing alarm to trigger as soon as you begin incurring any charges\n\nCreates an SNS topic and subscription for the given email address and links it to the above CloudWatch Alarm to email you as soon as your billing charges go over\n\nThe alarm is set in the us-east-1 region (N. Virginia in the web console) because that is where the metric billing data accumulates, regardless of which region you actually use\n\n\nThe first argument sets the alert threshold in USD - an alarm is raised once it goes above that amount\nThe default threshold is 0.00 USD to alert on any charges for safety\n\nThe second argument sets the email address to use in an SNS topic to notify you.\nIf no email is given specified attempts to use the email from your local Git configuration.\nIf neither is available, shows this usage mesage.\n\nXXX: You must also enable Receive Billing Alerts in the Billing Preferences page for the CloudWatch metrics to be populated by AWS Billing:\n\n https://console.aws.amazon.com/billing/home?#/preferences\n\nSee the created alarm here:\n\n https://console.aws.amazon.com/cloudwatch/home?region=us-east-1\n\n(notice the region must be us-east-1 as per description above)\n\nSee Also:\n\n aws_budget_alarm.sh - newer method of doing this using AWS Budgets\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nthreshold=\"${1:-0.00}\"\nemail=\"${2:-$(git config user.email || :)}\"\n\n# XXX: region has to be us-east-1 because this is where the billing metric data accumulates regardless of which region you actually use\nregion=\"us-east-1\"\n\nsns_topic=\"AWS_Charges\"\n\nif ! [[ \"$threshold\" =~ ^[[:digit:]]{1,4}(\\.[[:digit:]]{1,2})?$ ]]; then\n usage \"invalid threshold argument given - must be 0.01 - 9999.99 USD\"\nfi\n\nif is_blank \"$email\"; then\n usage \"email address not specified and could not determine email from git config\"\nfi\n\ntimestamp \"Creating SNS topic to email '$email' in region '$region'\"\noutput=\"$(aws sns create-topic --name \"$sns_topic\" --region \"$region\" --output json)\"\n\n# \"arn:aws:sns:us-east-1:123456789012:AWS_Charges\"\nsns_topic_arn=\"$(jq -r '.TopicArn' <<< \"$output\")\"\n\necho\n\ntimestamp \"Subscribing email address '$email' to topic '$sns_topic' in region '$region'\"\naws sns subscribe --topic-arn \"$sns_topic_arn\" --protocol email --notification-endpoint \"$email\" --region \"$region\"\n\necho\n\ntimestamp \"Creating CloudWatch Alarm for AWS charges > $threshold USD in region '$region'\"\n# --period 21600 = 6 hours (default)\naws cloudwatch put-metric-alarm --alarm-name \"AWS Charges\" \\\n --alarm-description \"Alerts on AWS charges greater than $threshold USD\" \\\n --actions-enabled \\\n --alarm-actions \"$sns_topic_arn\" \\\n --region \"$region\" \\\n --namespace \"AWS/Billing\" \\\n --metric-name \"EstimatedCharges\" \\\n --dimensions \"Name=Currency,Value=USD\" \\\n --threshold \"$threshold\" \\\n --comparison-operator \"GreaterThanThreshold\" \\\n --statistic Maximum \\\n --period 21600 \\\n --evaluation-periods 1\n" }, { "path": "aws/aws_budget.json", "content": "{\n\t\"BudgetName\": \"AWS_Charges\",\n\t\"BudgetType\": \"COST\",\n\t\"BudgetLimit\": {\n\t\t\"Amount\": \"\",\n\t\t\"Unit\": \"USD\"\n\t},\n\t\"CostFilters\": {},\n\t\"CostTypes\": {\n\t\t\"IncludeTax\": true,\n\t\t\"IncludeSubscription\": true,\n\t\t\"UseBlended\": false,\n\t\t\"IncludeRefund\": false,\n\t\t\"IncludeCredit\": false,\n\t\t\"IncludeUpfront\": true,\n\t\t\"IncludeRecurring\": true,\n\t\t\"IncludeOtherSubscription\": true,\n\t\t\"IncludeSupport\": true,\n\t\t\"IncludeDiscount\": true,\n\t\t\"UseAmortized\": false\n\t},\n\t\"TimeUnit\": \"MONTHLY\",\n\t\"TimePeriod\": {\n\t\t\"Start\": \"2021-08-01T01:00:00+01:00\",\n\t\t\"End\": \"2087-06-15T01:00:00+01:00\"\n\t}\n}\n" }, { "path": "aws/aws_budget_alarm.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-08-02 15:57:07 +0100 (Mon, 02 Aug 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nCreates an AWS Budget with an alarm if forecasted to go over 80% of total monthly budget, and another alarm if over 90% of monthly budget\n\nCreates an SNS topic and subscription for the given email address and links it to the above AWS Budgets Alarm to email you as soon as your billing charges are anticipated to go over the threshold. It also modifies the SNS topic's access policy to be accessible from the AWS Budgets service.\n\n\nThe first argument sets the total monthly budget in USD - the 80% and 90% threshold alarms are based on that\nThe default budget is 0.01 USD (will trigger a notification on any expenditure)\n\nThe second argument sets the email address to use in an SNS topic to notify you.\nIf no email is given specified attempts to use the email from your local Git configuration.\nIf neither is available, shows this usage mesage.\n\n\nSee the created AWS Budget here (Global):\n\n https://console.aws.amazon.com/billing/home#/budgets/overview\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nbudget=\"${1:-0.01}\"\nemail=\"${2:-$(git config user.email || :)}\"\n\nregion=\"us-east-1\"\n\nsns_topic=\"AWS_Charges\"\n\nif ! [[ \"$budget\" =~ ^[[:digit:]]{1,4}(\\.[[:digit:]]{1,2})?$ ]]; then\n usage \"invalid budget argument given - must be 0.01 - 9999.99 USD\"\nfi\n\nif is_blank \"$email\"; then\n usage \"email address not specified and could not determine email from git config\"\nfi\n\ntimestamp \"Creating SNS topic to email '$email' in region '$region'\"\noutput=\"$(aws sns create-topic --name \"$sns_topic\" --region \"$region\" --output json)\"\n\n# \"arn:aws:sns:us-east-1:123456789012:AWS_Charges\"\nsns_topic_arn=\"$(jq -r '.TopicArn' <<< \"$output\")\"\n\necho\n\ntimestamp \"Subscribing email address '$email' to topic '$sns_topic' in region '$region'\"\naws sns subscribe --topic-arn \"$sns_topic_arn\" --protocol email --notification-endpoint \"$email\" --region \"$region\"\n\necho\n\ntimestamp \"Getting account id\"\naccount_id=\"$(aws sts get-caller-identity --query Account --output text)\"\n\necho\n\n# https://docs.aws.amazon.com/cli/latest/reference/sns/set-topic-attributes.html\ntimestamp \"Updating access policy on SNS topic '$sns_topic' to allow AWS Budgets to use it\"\naws sns set-topic-attributes --topic-arn \"$sns_topic_arn\" --attribute-name Policy --attribute-value \"$(sed \"s//$sns_topic_arn/; s//$account_id/\" \"$srcdir/aws_budget_sns_access_policy.json\")\" --region \"$region\"\n\necho\n\n# https://awscli.amazonaws.com/v2/documentation/api/latest/reference/budgets/create-budget.html\n\ntimestamp \"Checking for existing AWS Budgets\"\nbudgets=\"$(aws budgets describe-budgets --account-id \"$account_id\" --query 'Budgets[*].BudgetName' --output text)\"\n\necho\n\nbudget_name=\"$(jq -r .BudgetName < \"$srcdir/aws_budget.json\")\"\nif grep -Fxq \"$budget_name\" <<< \"$budgets\"; then\n if [ -n \"${REPLACE_BUDGET:-}\" ]; then\n timestamp \"deleting budget '$budget' to replace it\"\n aws budgets delete-budget --account-id \"$account_id\" --budget-name \"$budget_name\"\n echo\n else\n echo \"AWS Budget '$budget' already exists - you must delete it before running this\"\n exit 0\n fi\nfi\n\ntimestamp \"Creating AWS Budget with $budget USD budget and 80% forecasted threshold alarm\"\naws budgets create-budget --account-id \"$account_id\" --budget \"$(sed \"s//$budget/\" \"$srcdir/aws_budget.json\")\" --notifications-with-subscribers \"$(sed \"s//$sns_topic_arn/\" \"$srcdir/aws_budget_notification.json\")\"\n" }, { "path": "aws/aws_budget_notification.json", "content": "[\n\t{\n\t\"Notification\": {\n\t \"NotificationType\": \"FORECASTED\",\n\t \"ComparisonOperator\": \"GREATER_THAN\",\n\t \"Threshold\": 80.0,\n\t \"ThresholdType\": \"PERCENTAGE\",\n\t \"NotificationState\": \"ALARM\"\n\t},\n\t\"Subscribers\": [\n\t {\n\t\t\"SubscriptionType\": \"SNS\",\n\t\t\"Address\": \"\"\n\t }\n\t]\n\t},\n\t{\n\t\"Notification\": {\n\t \"NotificationType\": \"ACTUAL\",\n\t \"ComparisonOperator\": \"GREATER_THAN\",\n\t \"Threshold\": 80.0,\n\t \"ThresholdType\": \"PERCENTAGE\",\n\t \"NotificationState\": \"ALARM\"\n\t},\n\t\"Subscribers\": [\n\t {\n\t\t\"SubscriptionType\": \"SNS\",\n\t\t\"Address\": \"\"\n\t }\n\t]\n\t},\n\t{\n\t\"Notification\": {\n\t \"NotificationType\": \"FORECASTED\",\n\t \"ComparisonOperator\": \"GREATER_THAN\",\n\t \"Threshold\": 100.0,\n\t \"ThresholdType\": \"PERCENTAGE\",\n\t \"NotificationState\": \"ALARM\"\n\t},\n\t\"Subscribers\": [\n\t {\n\t\t\"SubscriptionType\": \"SNS\",\n\t\t\"Address\": \"\"\n\t }\n\t]\n\t},\n\t{\n\t\"Notification\": {\n\t \"NotificationType\": \"ACTUAL\",\n\t \"ComparisonOperator\": \"GREATER_THAN\",\n\t \"Threshold\": 100.0,\n\t \"ThresholdType\": \"PERCENTAGE\",\n\t \"NotificationState\": \"ALARM\"\n\t},\n\t\"Subscribers\": [\n\t {\n\t\t\"SubscriptionType\": \"SNS\",\n\t\t\"Address\": \"\"\n\t }\n\t]\n\t}\n]\n" }, { "path": "aws/aws_budget_sns_access_policy.json", "content": "{\n \"Version\": \"2008-10-17\",\n \"Id\": \"__default_policy_ID\",\n \"Statement\": [\n {\n \"Sid\": \"AWSBudgets-notification\",\n \"Effect\": \"Allow\",\n \"Principal\": {\n \"Service\": \"budgets.amazonaws.com\"\n },\n \"Action\": \"SNS:Publish\",\n \"Resource\": \"\"\n },\n {\n \"Sid\": \"__default_statement_ID\",\n \"Effect\": \"Allow\",\n \"Principal\": {\n \"AWS\": \"*\"\n },\n \"Action\": [\n \"SNS:GetTopicAttributes\",\n \"SNS:SetTopicAttributes\",\n \"SNS:AddPermission\",\n \"SNS:RemovePermission\",\n \"SNS:DeleteTopic\",\n \"SNS:Subscribe\",\n \"SNS:ListSubscriptionsByTopic\",\n \"SNS:Publish\",\n \"SNS:Receive\"\n ],\n \"Resource\": \"\",\n \"Condition\": {\n \"StringEquals\": {\n \"AWS:SourceOwner\": \"\"\n }\n }\n }\n ]\n}\n" }, { "path": "aws/aws_cli_create_credential.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-02-20 17:26:21 +0000 (Sat, 20 Feb 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nCreates an AWS service account for CI/CD automation or AWS CLI to avoid having to re-login every day via SSO with 'aws sso login'\n\nGrants this service account Administator privileges in the current AWS account unless an alternative group or policy is specified\n\nCreates an IAM access key (deleting an older unused key if necessary), writes a CSV just as the UI download would, and outputs both shell export commands and configuration in the format for copying to your AWS profile in ~/.aws/credentials\n\nThe following optional arguments can be given:\n\n- user name (default: \\$USER-cli)\n- keyfile (default: ~/.aws/keys/\\${user}_\\${aws_account_id}_accessKeys.csv) - be careful if specifying this, a non-existent keyfile will create a new key, deleting the older of 2 existing keys if necessary to be able to create this\n- group/policy (default: Admins group or falls through to AdministratorAccess policy - checks for this group name first, or else policy by this name)\n\nThis can also be used as a backup credential - this way if something accidentally happens to your AWS SSO you can still get into your account\n\nIdempotent - safe to re-run, will skip creating a user that already exists or CSV export that already exists\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ]\"\n\nhelp_usage \"$@\"\n\n#min_args 1 \"$@\"\n\nuser=\"${1:-$USER-cli}\"\n\n#group=\"${2:-Admins}\"\n#policy=\"${2:-AdministratorAccess}\"\ngroups_or_policies=\"${2:-}\"\ndefault_group=\"Admins\"\ndefault_policy=\"AdministratorAccess\"\n\naws_account_id=\"$(aws_account_id)\"\n\naccess_keys_csv=\"${3:-$HOME/.aws/keys/${user}_${aws_account_id}_accessKeys.csv}\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\naws_create_user_if_not_exists \"$user\"\n\nexports=\"$(aws_create_access_key_if_not_exists \"$user\" \"$access_keys_csv\")\"\n\ngroup_exists(){\n # causes a failure in the if policy test condition, probably due to early exit on one of the pipe commands\n set +o pipefail\n aws iam list-groups | jq -r '.Groups[].GroupName' | grep -Fixq \"$1\" || return 1\n set -o pipefail\n}\n\npolicy_exists(){\n # causes a failure in the if policy test condition, probably due to early exit on one of the pipe commands\n set +o pipefail\n aws iam list-policies | jq -r '.Policies[].PolicyName' | grep -Fixq \"$1\" || return 1\n set -o pipefail\n}\n\ngrant_group_or_policy(){\n local group_or_policy=\"$1\"\n if group_exists \"$group_or_policy\"; then\n group=\"$group_or_policy\"\n timestamp \"Adding user '$user' to group '$group' on account '$aws_account_id'\"\n aws iam add-user-to-group --user-name \"$user\" --group-name \"$group\"\n elif policy_exists \"$group_or_policy\"; then\n policy=\"$group_or_policy\"\n timestamp \"Determining ARN for policy '$policy'\"\n policy_arn=\"$(aws iam list-policies | jq -r \".Policies[] | select(.PolicyName == \\\"$policy\\\") | .Arn\")\"\n timestamp \"Determined policy ARN: $policy_arn\"\n timestamp \"Granting policy '$policy' permissions directly to user '$user' in account '$aws_account_id'\"\n aws iam attach-user-policy --user-name \"$user\" --policy-arn \"$policy_arn\"\n else\n die \"Group/Policy '$group_or_policy' not found in account '$aws_account_id'\"\n fi\n echo\n}\n\nif [ -n \"$groups_or_policies\" ]; then\n for group_or_policy in ${groups_or_policies//,/ }; do\n grant_group_or_policy \"$group_or_policy\"\n done\nelse\n if group_exists \"$default_group\"; then\n grant_group_or_policy \"$default_group\"\n elif policy_exists \"$default_policy\"; then\n grant_group_or_policy \"$policy\"\n else\n die \"Neither default group '$default_group', nor default policy '$default_policy' in account '$aws_account_id'\"\n fi\nfi\n\necho\necho \"Set the following export commands in your environment to begin using this access key in your CLI immediately:\"\necho\necho \"$exports\"\necho\necho \"or add the following to your ~/.aws/credentials file:\"\necho\naws_access_keys_exports_to_credentials <<< \"$exports\"\necho\necho\n" }, { "path": "aws/aws_cloudformation_stacks_pending.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-12-11 12:22:59 +0000 (Fri, 11 Dec 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists CloudFormation stacks not marked as completed\n\nUseful with the 'watch' command or in a loop as a latch (hint: use grep) to check until there are no pending CloudFormation stacks before continuing\n\n\nArguments are fed to AWS CLI eg. to set --region\n\nOutput Format:\n\n \n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\n\naws cloudformation list-stacks --output json \"$@\" |\njq -r '.StackSummaries[] | [.StackStatus, .StackName, .TemplateDescription] | @tsv' |\n{ grep -Ev '^([[:alnum:]_]+)?COMPLETE' || : ; }\n" }, { "path": "aws/aws_cloudfront_distribution_for_origin.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-12-19 13:54:16 +0700 (Thu, 19 Dec 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nReturns the AWS CloudFront ARN of the distribution which serves origins containing a given substring\n\nUseful for quickly finding the CloudFront ARN needed to give permissions to a private S3 bucket exposed via CloudFront\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\ndomain_substring=\"$1\"\n\njson=\"$(\n aws cloudfront list-distributions \\\n --query \"DistributionList.Items[*].{ARN:ARN, DomainNames:Origins.Items[*].DomainName}\" \\\n --output json\n)\"\n\nif [ \"$json\" = null ]; then\n echo \"No CloudFront distributions found. Have you set the right \\$AWS_PROFILE environment variable to the correct account?\" >&2\n exit 1\nfi\n\njq -r \".[] | select(.DomainNames | map(ascii_downcase | contains(\\\"$domain_substring\\\")) | any) | .ARN\" <<< \"$json\"\n" }, { "path": "aws/aws_cloudtrails_cloudwatch.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-17 16:24:52 +0000 (Fri, 17 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists Cloud Trails and their last delivery to CloudWatch Logs (should be recent)\n\nOutput Format:\n\nCloudTrail_Name LastDeliveryTimestampToCloudWatchLogs (may be null)\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\n#echo \"Getting Cloud Trails\" >&2\naws cloudtrail describe-trails |\njq -r '.trailList[].Name' |\nwhile read -r name; do\n printf '%s\\t' \"$name\"\n output=\"$(aws cloudtrail get-trail-status --name \"$name\" | jq -r '.LatestcloudwatchLogdDeliveryTime')\"\n if [ -n \"$output\" ]; then\n echo \"$output\"\n echo \"$output\"\n else\n echo \"NOT_LOGGING\"\n fi\ndone |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_cloudtrails_event_selectors.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-17 16:24:52 +0000 (Fri, 17 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists Cloud Trails and their event selectors\n\nTo check there is at least one event selector for each trail with IncludeManagementEvents set to true and ReadWriteType set to All\n\nOutput Format:\n\nName IncludeManagementEvents (boolean) ReadWriteType (All) DataResources (optional)\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\n#echo \"Getting Cloud Trails\" >&2\naws cloudtrail describe-trails |\njq -r '.trailList[].Name' |\nwhile read -r name; do\n echo -n \"$name \"\n aws cloudtrail get-event-selectors --trail-name \"$name\" |\n jq -r '.EventSelectors[] | [.IncludeManagementEvents, .ReadWriteType, .DataResources[]] | @tsv'\ndone |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_cloudtrails_s3_accesslogging.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-17 16:24:52 +0000 (Fri, 17 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists Cloud Trails buckets and their Access Logging prefix and target bucket\n\nOutput Format:\n\nCloudTrail_S3_Bucket TargetPrefix TargetBucket\n\nIf access logging isn't configured on the bucket, outputs:\n\nCloudTrail_S3_Bucket S3_ACCESS_LOGGING_NOT_CONFIGURED\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\naws cloudtrail describe-trails --query 'trailList[*].S3BucketName' |\njq -r '.[]' |\nwhile read -r name; do\n printf '%s\\t' \"$name\"\n output=\"$(aws s3api get-bucket-logging --bucket \"$name\" |\n jq -r '.LoggingEnabled | [.TargetPrefix, .TargetBucket] | @tsv')\"\n if [ -z \"$output\" ]; then\n echo \"S3_ACCESS_LOGGING_NOT_CONFIGURED\"\n else\n echo \"$output\"\n fi\ndone |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_cloudtrails_s3_kms.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-21 18:25:39 +0000 (Tue, 21 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists Cloud Trails and whether their S3 buckets are KMS secured\n\nOutput Format:\n\nCloudTrail_Name S3_KMS_secured (boolean) KMS_Key_Id\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\naws cloudtrail describe-trails |\n# more efficient\njq -r '.trailList[] | [.Name, has(\"KmsKeyId\"), .KmsKeyId // \"N/A\"] | @tsv' |\n#jq -r '.trailList[] | [.Name, .KmsKeyId] | @tsv' |\n#while read -r name keyid; do\n# kms_secured=false\n# if [ -n \"$keyid\" ]; then\n# kms_secured=true\n# else\n# keyid=\"N/A\"\n# fi\n# printf \"%s\\t%s\\t%s\" \"$name\" \"$kms_secured\" \"$keyid\"\n#done |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_cloudtrails_status.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-17 16:24:52 +0000 (Fri, 17 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists Cloud Trails and their status - if they're logging, multi-region and log file validation enabled\n\nOutput Format:\n\nName Logging (boolean) Multi-Region (boolean) Logfile Validation (boolean)\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nexport AWS_DEFAULT_OUTPUT=json\n\n#echo \"Getting Cloud Trails\" >&2\naws cloudtrail describe-trails |\njq -r '.trailList[] | [.Name, .IsMultiRegionTrail, .LogFileValidationEnabled] | @tsv' |\nwhile read -r name is_multi_region is_validation_enabled; do\n is_logging=\"$(\n aws cloudtrail get-trail-status --name \"$name\" |\n jq -r '.IsLogging'\n )\"\n echo \"$name $is_logging $is_multi_region $is_validation_enabled\"\ndone |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_codecommit_csv_creds.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2022-03-30 11:13:53 +0100 (Wed, 30 Mar 2022)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nPrints AWS CodeCommit Git credentials from a standard AWS HTTPS Git credentials CSV export file as shell export statements\n\n export GIT_USER=...\n export GIT_PASSWORD=...\n\nUseful to quickly switch your shell to some exported credentials from a service account for testing permissions\nor pipe to upload to a CI/CD system via an API, eg. the adjacent scripts:\n\n github_actions_repo*_set_secret.sh\n gitlab_*_set_env_vars.sh\n circleci_*_set_env_vars.sh\n bitbucket_*_set_env_vars.sh\n terraform_cloud_*_set_vars.sh\n kubectl_kv_to_secret.sh\n\nExamples:\n\n # format downloaded from the user's IAM -> Security Credentials -> section HTTPS Git credentials for AWS CodeCommit\n\n eval \\$(${0##*/} hari_codecommit_credentials.csv)\n\n\nYou can then use these credentials in commands, but note that if the \\$GIT_PASSWORD contains slashes you will need to urlencode it:\n\n GIT_PASSWORD_URLENCODED=\\\"\\$(urlencode.sh <<< \\\"\\$GIT_PASSWORD\\\")\\\"\n\n git clone \\\"https://\\$GIT_USER:\\$GIT_PASSWORD_URLENCODED@git-codecommit.eu-west-2.amazonaws.com/v1/repos/myrepo\\\"\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"_codecommit_credentials.csv\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\ncsv=\"$1\"\n\nif ! [ -f \"$csv\" ]; then\n die \"ERROR: File not found: $csv\"\nfi\n\n# people may rename their credentials file\n#if ! [[ \"$csv\" =~ ^.+_codecommit_credentials.csv ]]; then\n# die \"ERROR: Wrong filename, should be in format *_codecommit_credentials.csv\"\n#fi\n\n# XXX: this CSV credentials files come in DOS format unlike other CSV credential downloads for AWS CLI etc.\nif ! tr -d '\\r' < \"$csv\" | grep -Fxq 'User Name,Password'; then\n die \"ERROR: Expected 'User Name,Password' header not found in file '$csv'\"\nfi\n\nlines=\"$(wc -l \"$csv\" | awk ' {print $1}')\"\n\nif ! [ \"$lines\" -eq 2 ]; then\n die \"ERROR: wrong number of lines found in CSV credentials file, expected 2, got $lines\"\nfi\n\ntr -d '\\r' < \"$csv\" |\ntail -n 1 |\nawk -F, '{\n print \"export GIT_USER=\"$1\n print \"export GIT_PASSWORD=\"$2\n}'\n" }, { "path": "aws/aws_config_all_types.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-21 17:20:46 +0000 (Tue, 21 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists AWS Config recorders, checking all resource types are supported (should be true) and includes global resources (should be true)\n\neg.\n\nawsconfig true true\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\n\naws configservice describe-configuration-recorders --output json |\njq -r '.ConfigurationRecorders[] | [.name, .recordingGroup.allSupported, .recordingGroup.includeGlobalResourceTypes] | @tsv' |\ncolumn -t\n" }, { "path": "aws/aws_config_recording.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2020-01-21 17:20:46 +0000 (Tue, 21 Jan 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists AWS Config recorders, their recording status (should be true) and their last status (should be success)\n\neg.\n\nawsconfig true SUCCESS\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\n\naws configservice describe-configuration-recorder-status --output json |\njq -r '.ConfigurationRecordersStatus[] | [.name, .recording, .lastStatus] | @tsv' |\ncolumn -t\n" }, { "path": "aws/aws_csv_creds.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-12-03 16:59:48 +0000 (Fri, 03 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nPrints AWS credentials from a standard AWS CSV export file or access key export CSV as shell export statements\n\n export AWS_ACCESS_KEY_ID=AKIA...\n export AWS_SECRET_ACCESS_KEY=...\n\nSupports new user and new access key csv file formats eg. 'Download .csv file' when you create an AWS access key in the console\n\nUseful to quickly switch your shell to some exported credentials from a service account for testing permissions\nor pipe to upload to a CI/CD system via an API, eg. the adjacent scripts:\n\n jenkins_cred_add*.sh\n github_actions_repo*_set_secret.sh\n gitlab_*_set_env_vars.sh\n circleci_*_set_env_vars.sh\n bitbucket_*_set_env_vars.sh\n terraform_cloud_*_set_vars.sh\n kubectl_kv_to_secret.sh\n\nExamples:\n\n eval \\$(${0##*/} new_user_credentials.csv) # format downloaded when creating a user\n\n eval \\$(${0##*/} hari_accessKeys.csv) # format downloaded when creating an access key\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"credential.csv\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\ncsv=\"$1\"\n\nif ! [ -f \"$csv\" ]; then\n die \"ERROR: File not found: $csv\"\nfi\n\nif ! grep -Fq 'AKIA' \"$csv\"; then\n die \"ERROR: Access Key not found in file '$csv'\"\nfi\n\n# for CSV created at access key creation time\nif tr -d '\\r' < \"$csv\" | grep -Fq 'Access key ID,Secret access key'; then\n # access keys are prefixed with AKIA, skips header row by selecting the row with the AKIA key\n awk -F, '/AKIA/{\n print \"export AWS_ACCESS_KEY_ID=\"$1\n print \"export AWS_SECRET_ACCESS_KEY=\"$2\n }' \"$csv\" | tr -d '\\r'\n# for CSV created at user creation time\nelif tr -d '\\r' < \"$csv\" | grep -Fq 'User name,Password,Access key ID,Secret access key,Console login link'; then\n awk -F, '/AKIA/{\n print \"export AWS_ACCESS_KEY_ID=\"$3\n print \"export AWS_SECRET_ACCESS_KEY=\"$4\n }' \"$csv\" | tr -d '\\r'\nelse\n die \"ERROR: unrecognized CSV header line, may have changed so code may need an update\"\nfi\n" }, { "path": "aws/aws_ec2_ami_boot.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-31 16:05:24 +0700 (Fri, 31 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nBoots an EC2 instance from a given AMI for manual debugging\n\nUseful for interactive debugging when creating AMIs\n\n- checks if there is already an EC2 running instance tagged with your name and AMI ID\n - if yes, reuses it\n - if not, boots an EC2 instance from the AMI with the given security group, subnet id and SSH key-name given so you can SSH to its ec2-user\n- waits for the EC2 instance to boot\n- waits for the EC2 instance to pass its instance and system checks\n- determines the public or private IP address and outputs it to stdout for use in other scripts\n\nIt's up to you to Terminate the instance as you may want to leave it running and then create an AMI from it when you've finished testing using this script:\n\n aws_ec2_ami_create_from_instance.sh\n\nYou may want to run this adjacent wrapper script to drop you straight into an SSH prompt:\n\n aws_ec2_ami_boot_ssh.sh\n\n\nSee Also:\n\n https://github.com/HariSekhon/Packer\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 5 \"$@\"\nmax_args 6 \"$@\"\n\nami_id=\"$1\"\ninstance_type=\"$2\"\nsecurity_group=\"$3\"\nsubnet_id=\"$4\"\nssh_key_name=\"$5\"\ninstance_profile=\"${6:-}\"\n\naws_validate_security_group_id \"$security_group\"\n\naws_validate_subnet_id \"$subnet_id\"\n\nif ! is_blank \"$instance_profile\"; then\n if ! [[ \"$instance_profile\" =~ ^[A-Za-z0-9+=,.@_-]+$ ]]; then\n die \"Invalid Instance Profile name: $instance_profile\"\n fi\nfi\n\ninstance_launched=0\n\nuser=\"${USER:-$(whoami)}\"\n\nif is_blank \"$user\"; then\n die \"Failed to determine username to tag the EC2 instance with\"\nfi\n\nfor((i=1; i <= 100 ; i++)); do\n instance_name=\"$user-$ami_id\"\n\n timestamp \"Checking if EC2 instance of AMI already exists: $instance_name\"\n instance_id=\"$(\n aws ec2 describe-instances \\\n --filters \"Name=tag:Name,Values=$instance_name\" \\\n --query \"Reservations[0].Instances[0].InstanceId\" \\\n --output text\n )\"\n\n if [ \"$instance_id\" != \"None\" ]; then\n timestamp \"Checking the instance state isn't terminated or shutting down\"\n instance_state=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query \"Reservations[0].Instances[0].State.Name\" \\\n --output text\n )\"\n if grep -qi -e terminated -e shutting-down <<< \"$instance_state\"; then\n timestamp \"This instance is already terminated / shutting down, will try a new instance name\"\n echo >&2\n continue\n fi\n fi\n\n if is_blank \"$instance_id\" || [ \"$instance_id\" = \"None\" ]; then\n timestamp \"Launching EC2 instance: $instance_name\"\n instance_id=\"$(\n aws ec2 run-instances \\\n --image-id \"$ami_id\" \\\n --count 1 \\\n --instance-type \"$instance_type\" \\\n --key-name \"$ssh_key_name\" \\\n --security-group-ids \"$security_group\" \\\n --subnet-id \"$subnet_id\" \\\n --tag-specifications \"ResourceType=instance,Tags=[{Key=Name,Value=$instance_name}]\" \\\n --query \"Instances[0].InstanceId\" \\\n --output text\n )\"\n timestamp \"Launched instance: $instance_id\"\n fi\n instance_launched=1\n break\ndone\n\nif [ \"$instance_launched\" != 1 ]; then\n die \"ERROR: Failed to launch instance\"\nfi\n\necho >&2\n\ntimestamp \"Waiting for instance to be running...\"\naws ec2 wait instance-running --instance-ids \"$instance_id\"\ntimestamp \"Instance is running\"\n\necho >&2\n\nget_instance_profile(){\n local instance_id=\"$1\"\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query \"Reservations[0].Instances[0].IamInstanceProfile.Arn\" \\\n --output text |\n sed 's|.*/||'\n}\n\nif ! is_blank \"$instance_profile\"; then\n instance_profile_attached=0\n if [ \"$(get_instance_profile \"$instance_id\")\" = \"$instance_profile\" ]; then\n instance_profile_attached=1\n else\n timestamp \"Attaching instance profile: $instance_profile\"\n aws ec2 associate-iam-instance-profile \\\n --instance-id \"$instance_id\" \\\n --iam-instance-profile Name=\"$instance_profile\"\n echo >&2\n timestamp \"Waiting for profile to fully attach...\"\n\n instance_profile_attached=0\n\n for((i=1; i <= 100 ; i++)); do\n current_instance_profile=\"$(get_instance_profile \"$instance_id\")\"\n if [ \"$current_instance_profile\" = \"None\" ]; then\n timestamp \"No instance profile associated yet...\"\n elif [ \"$current_instance_profile\" = \"$instance_profile\" ]; then\n timestamp \"Instance profile attached\"\n instance_profile_attached=1\n break\n else\n timestamp \"Waiting for instance profile to attach...\"\n fi\n\n sleep 3\n done\n fi\n if [ \"$instance_profile_attached\" != 1 ]; then\n die \"Instance profile failed to attach, gave up waiting\"\n fi\nfi\n\n\"$srcdir/aws_ec2_wait_for_instance_ready.sh\" \"$instance_id\"\n\ntimestamp \"EC2 instance running: $instance_name\"\necho \"$instance_id\"\n" }, { "path": "aws/aws_ec2_ami_boot_ssh.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-31 16:05:24 +0700 (Fri, 31 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nBoots an EC2 instance from a given AMI, determines the public or private IP, and drops you into an SSH shell\n\nUseful for interactive debugging when creating AMIs\n\n- checks if there is already an EC2 running instance tagged with your name and AMI ID\n - if yes, reuses it\n - if not, boots an EC2 instance from the AMI with the given security group, subnet id and SSH key-name given so you can SSH to its ec2-user\n- waits for the EC2 instance to boot\n- waits for the EC2 instance to pass its instance and system checks\n- determines the public or private IP address\n- SSH's to the EC2 instance\n- Assumes ~/.ssh/,pem is present locally to be able to log in to it\n\nIt's up to you to Terminate the instance as you may want to leave it running and then create an AMI from it when you've finished testing using this script:\n\n aws_ec2_ami_create_from_instance.sh\n\nSee Also:\n\n https://github.com/HariSekhon/Packer\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 5 \"$@\"\nmax_args 6 \"$@\"\n\nssh_key_name=\"$5\"\n\ninstance_id=\"$(\"$srcdir/aws_ec2_ami_boot.sh\" \"$@\")\"\n\nip=\"$(\"$srcdir/aws_ec2_instance_ip.sh\" \"$instance_id\")\"\n\ntimestamp \"SSH'ing to EC2 instance\"\necho >&2\n# this is a brand new instance so the SSH host key won't be trusted\nexec ssh \\\n -i ~/.ssh/\"$ssh_key_name.pem\" \\\n -o StrictHostKeyChecking=no \\\n ec2-user@\"$ip\"\n" }, { "path": "aws/aws_ec2_ami_create_from_instance.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-12 16:42:30 +0400 (Tue, 12 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nCreates an AWS EC2 AMI from an EC2 instance and waits for it to become available for use\n\nOutputs the AMI ID to stdout after it becomes available\n\nUseful to testing risky things on another EC2 vm cloned from that AMI\n\nDoes not reboot the running EC2 instance for safety by default, which means a non-clean filesystem copy\nunless you shut it down first.\n\nTo enforce a reboot of the EC2 instance (be careful in production!) you must set the environment variable:\n\n export AWS_EC2_REBOOT_INSTANCE=true\n\nSee it in the list of AMIs afterwards using this command:\n\n aws ec2 describe-images --owners self --query 'Images[*].{ID:ImageId,Name:Name}' --output table\n\nCheck the state of the AMI is finished:\n\n aws ec2 describe-images --image-ids \\\"\\$AMI_ID\\\" --output table\n\n\nInvestigate instance names quickly using adjacent script aws_ec2_instances.sh\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" \"\n\nhelp_usage \"$@\"\n\nnum_args 2 \"$@\"\n\ninstance_name=\"$1\"\n\nami_name=\"$2\"\n\ninstance_id=\"$(VERBOSE=1 \"$srcdir/aws_ec2_instance_name_to_id.sh\" \"$instance_name\")\"\nif ! is_instance_id \"$instance_id\"; then\n die \"Invalid Instance ID returned, failed regex validation: $instance_id\"\nfi\necho >&2\n\nno_reboot=\"--no-reboot\"\n\nif [ \"${AWS_EC2_REBOOT_INSTANCE:-}\" = true ]; then\n timestamp \"WARNING: AWS_EC2_REBOOT_INSTANCE environment variable is set to true\"\n echo >&2\n read -r -p \"Are you sure you want to take down this EC2 instance '$instance_name'? (y/N) \" answer\n check_yes \"$answer\"\n no_reboot=\"\"\n echo >&2\nfi\n\ntimestamp \"Creating AMI '$ami_name' from EC2 instance '$instance_name'\"\nami_id=\"$(\n aws ec2 create-image --instance-id \"$instance_id\" --name \"$ami_name\" \"$no_reboot\" |\n jq -r '.ImageId'\n)\"\necho >&2\n\nif is_blank \"$ami_id\" || [ \"$ami_id\" = null ]; then\n die \"Failed to get AMI ID\"\nelif ! is_ami_id \"$ami_id\"; then\n die \"Invalid AMI ID returned, failed regex validation: $ami_id\"\nfi\n\n# special variable that increments - use as a built-in timer\nSECONDS=0\n\ntimestamp \"Checking for AMI '$ami_name' to become ready...\"\necho >&2\n\nwhile true; do\n state=\"$(aws ec2 describe-images --image-ids \"$ami_id\" | jq -r '.Images[0].State')\"\n if [ \"$state\" = \"available\" ]; then\n timestamp \"AMI '$ami_name' is now available after $SECONDS seconds\"\n break\n elif [ \"$SECONDS\" -gt 1200 ]; then\n die \"Waited for 20 minutes without AMI becoming available, something is wrong, aborting...\"\n fi\n timestamp \"Waiting for AMI '$ami_name' to become ready. State: $state\"\n sleep 10\ndone\n\necho \"$ami_id\"\n" }, { "path": "aws/aws_ec2_ami_ids.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-13 14:42:01 +0400 (Wed, 13 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nList AWS EC2 AMI IDs in use in the current or given AWS account, one per line for processing in other scripts\n\nUsed by:\n\n aws_info_ec2*.sh\n\nSee also:\n\n aws_ec2_amis.sh\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\nif [ $# -gt 0 ]; then\n aws_profile=\"$1\"\n shift || :\n export AWS_PROFILE=\"$aws_profile\"\nfi\n\n\n# false positive - want single quotes for * to be evaluated within AWS query not shell\n# shellcheck disable=SC2016\naws ec2 describe-instances \\\n --query 'Reservations[*].Instances[*].ImageId' \\\n --output text |\ntr '[:space:]' '\\n' |\nsort -u |\nsed '/^[[:space:]]*$/d'\n" }, { "path": "aws/aws_ec2_ami_name_to_id.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-13 14:42:01 +0400 (Wed, 13 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nReturns an EC2 AMI ID from name\n\nAdds additional safety checks:\n\n- verifies no more than one AMI ID is returned\n- does a reverse lookup on the AMI ID to verify the name\n- if an AMI ID is passed, returns it as is for convenience\n\nInvestigate AMI names and IDs quickly using adjacent script:\n\n aws_ec2_amis.sh\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\nami_name=\"$1\"\n\nif is_ami_id \"$ami_name\"; then\n log \"Given AMI name is already an AWS AMI ID, outputs as is: $ami_name\"\n echo \"$ami_name\"\n exit 0\nfi\n\nlog \"Determining EC2 AMI ID for name '$ami_name'\"\n\nami_id=\"$(\n aws ec2 describe-images \\\n --owners self \\\n --filters \"Name=name,Values=$ami_name\" \\\n --query 'Images[*].ImageId' \\\n --output text\n)\"\n\nif is_blank \"$ami_id\"; then\n die \"No EC2 AMI found with name '$ami_name'\"\nfi\n\nif [ \"$(awk '{print NF}' <<< \"$ami_id\")\" -gt 1 ]; then\n cat >&2 < \"\n\nhelp_usage \"$@\"\n\nnum_args 2 \"$@\"\n\nami_name_or_id=\"$1\"\naws_account_id=\"$2\"\n\nami_id=\"$(\"$srcdir/aws_ec2_ami_name_to_id.sh\" \"$ami_name_or_id\")\"\n\ntimestamp \"Sharing AMI '$ami_id' with AWS account '$aws_account_id'\"\n\necho\n\naws ec2 modify-image-attribute \\\n --image-id \"$ami_id\" \\\n --launch-permission \"Add=[{UserId=$aws_account_id}]\"\n\necho\n\ntimestamp \"AMI '$ami_id' successfully shared with AWS account '$aws_account_id'\"\n" }, { "path": "aws/aws_ec2_amis.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-13 14:42:01 +0400 (Wed, 13 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nList AWS EC2 AMIs belonging to your account in an easy to read table output\n\nUseful for quickly investigating AMIs\n\nFor full details do:\n\n aws ec2 describe-images --image-ids \\\"\\$AMI_ID\\\"\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\nmax_args 1 \"$@\"\n\nif [ $# -gt 0 ]; then\n aws_profile=\"$1\"\n shift || :\n export AWS_PROFILE=\"$aws_profile\"\nfi\n\n\n# false positive - want single quotes for * to be evaluated within AWS query not shell\n# shellcheck disable=SC2016\naws ec2 describe-images \\\n --owners self \\\n --query 'Images | sort_by(@, &Name)[].{\" ID\":ImageId, \" Name\":Name, \"CreationDate\":CreationDate}' \\\n --output table\n" }, { "path": "aws/aws_ec2_ebs_create_snapshot_and_wait.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-02 10:14:03 +0300 (Fri, 02 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nCreates a snapshot of a given EBS volume ID and waits for it to complete with exponential backoff\n\nUseful to take before enlarging EBS volumes as a backup in case anything goes wrong\n\nAutomatically determines the EC2 instance name and prefixes it to the snapshot description\n\n\nUse the adjacent script aws_ec2_ebs_volumes.sh to easily get the volume ID\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" \"\n\nhelp_usage \"$@\"\n\n# enforce giving a 2nd arg for description\nnum_args 2 \"$@\"\n\nvolume_id=\"$1\"\ndescription=\"$2\"\n\naws_validate_volume_id \"$volume_id\"\n\nexport MAX_WATCH_SLEEP_SECS=300\n\nexport AWS_DEFAULT_OUTPUT=json\n\ntimestamp \"Finding EC2 instance ID for volume ID '$volume_id'\"\ninstance_id=\"$(aws ec2 describe-volumes --volume-ids \"$volume_id\" --query 'Volumes[*].Attachments[*].InstanceId' --output text)\"\n\ntimestamp \"Finding EC2 instance name for instance ID '$instance_id'\"\n# false positive\n# shellcheck disable=SC2016\ninstance_name=\"$(aws ec2 describe-instances --instance-ids \"$instance_id\" --query 'Reservations[*].Instances[*].{InstanceID:InstanceId,Name:Tags[?Key==`Name`].Value|[0]}' --output json | jq -r '.[].[].Name' | head -n 1)\"\n\n# automatically prefix the description with the instance name\ndescription=\"$instance_name: $description\"\n\ntimestamp \"Taking snapshot of volume '$volume_id' on EC2 instance '$instance_name' with description '$description'\"\nsnapshot=\"$(aws ec2 create-snapshot --volume-id \"$volume_id\" --description \"$description\" --output json)\"\nsnapshot_id=\"$(jq -r '.SnapshotId' <<< \"$snapshot\")\"\necho\n\nget_aws_pending_snapshots(){\n # false positive\n # shellcheck disable=SC2016\n aws ec2 describe-snapshots --snapshot-id \"$snapshot_id\" --query 'Snapshots[?State==`pending`].[VolumeId,SnapshotId,Description,State,Progress]' --output table\n}\n\n# will double this for exponential backoff up to MAX_WATCH_SLEEP_SECS interval\nsleep_secs=5\n\n# loop indefinitely until we explicitly break using time check\nwhile : ; do\n if [ \"$SECONDS\" -gt 7200 ]; then\n die \"Timed out waiting 2 hours for EBS snapshot to complete!\"\n fi\n if get_aws_pending_snapshots | tee /dev/stderr | grep -Fq \"$description\"; then\n echo\n timestamp \"Snapshot still in pending state, waiting $sleep_secs secs before checking again\"\n sleep \"$sleep_secs\"\n # exponential backoff\n sleep_secs=\"$(exponential \"$sleep_secs\" \"$MAX_WATCH_SLEEP_SECS\")\"\n continue\n fi\n break\ndone\n\necho\ntimestamp \"Snapshot completed\"\n" }, { "path": "aws/aws_ec2_ebs_resize_and_wait.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-02 10:14:03 +0300 (Fri, 02 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nResizes an EBS volume and waits for it to complete modifying and optionally optimizing with exponential backoff\n\nThis can be done without interruption while the EC2 instance is online\n\nIf you want to wait for the optimization as well as the modification set this environment variable\n\n export EC2_EBS_WAIT_FOR_OPTIMIZE=true\n\nUse the adjacent script aws_ec2_ebs_volumes.sh to easily get the volume ID\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" \"\n\nhelp_usage \"$@\"\n\n# enforce giving a 2nd arg for description\nnum_args 2 \"$@\"\n\nvolume_id=\"$1\"\nsize=\"$2\"\n\naws_validate_volume_id \"$volume_id\"\n\nexport MAX_WATCH_SLEEP_SECS=300\n\nexport AWS_DEFAULT_OUTPUT=json\n\ntimestamp \"Resizing volume ID '$volume_id' to $size GB\"\nebs_modification=\"$(aws ec2 modify-volume --volume-id \"$volume_id\" --size 300 --output json)\"\n\nmodification_starttime=\"$(jq -r '.VolumeModification.StartTime' <<< \"$ebs_modification\")\"\necho\n\noptimize_filter=()\nif [ \"${EC2_EBS_WAIT_FOR_OPTIMIZE:-}\" = true ]; then\n optimize_filter=(--filters \"Name=modification-state,Values=optimizing\")\nfi\n\nget_aws_pending_ebs_modifications(){\n # cannot quote $optimize_filter because we need it to not create a blank arg if not present\n # shellcheck disable=SC2086\n aws ec2 describe-volumes-modifications \\\n --volume-ids \"$volume_id\" \\\n --filters \"Name=modification-state,Values=modifying\" \\\n \"${optimize_filter[@]}\" \\\n --output text\n}\n\n# will double this for exponential backoff up to MAX_WATCH_SLEEP_SECS interval\nsleep_secs=5\n\n# loop indefinitely until we explicitly break using time check\nwhile : ; do\n if [ \"$SECONDS\" -gt 7200 ]; then\n die \"Timed out waiting 2 hours for EBS snapshot to modify and optimize!\"\n fi\n if get_aws_pending_ebs_modifications | tee /dev/stderr | grep -Fq \"$modification_starttime\"; then\n echo\n timestamp \"EBS modification still in progress, waiting $sleep_secs secs before checking again\"\n sleep \"$sleep_secs\"\n # exponential backoff\n sleep_secs=\"$(exponential \"$sleep_secs\" \"$MAX_WATCH_SLEEP_SECS\")\"\n continue\n fi\n break\ndone\n\necho\ntimestamp \"EBS resize modification completed\"\n" }, { "path": "aws/aws_ec2_ebs_volumes.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-02 09:18:28 +0300 (Fri, 02 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nList EC2 instances and their EBS volumes in the current region\n\nOuptut:\n\n \n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nno_args \"$@\"\n\ntimestamp \"Getting EC2 instance list\"\nwhile read -r instance_id instance_name; do\n #echo \"Instance Name: $instance_name, Instance ID: $instance_id\"\n\n timestamp \"Getting volume list for EC2 instance: $instance_name\"\n\n if ! is_instance_id \"$instance_id\"; then\n die \"Invalid Instance ID passed into loop with instance name '$instance_name', failed regex validation: $instance_id\"\n fi\n\n # false positive\n # shellcheck disable=SC2016\n #volume_ids=\"$(aws ec2 describe-volumes --filters \"Name=attachment.instance-id,Values=$instance_id\" --query 'Volumes[*].[VolumeId, Tags[?Key==`Name`].Value|[0]]' --output text)\"\n volume_info=\"$(aws ec2 describe-volumes --filters \"Name=attachment.instance-id,Values=$instance_id\" \\\n --query 'Volumes[*].{VolumeID:VolumeId,Name:Tags[?Key==`Name`].Value|[0],Size:Size,Encrypted:Encrypted,Attachments:Attachments[*]}' --output json | jq -c '.[]')\"\n\n while read -r volume; do\n volume_id=\"$(jq -r '.VolumeID' <<< \"$volume\")\"\n volume_name=\"$(jq -r '.Name' <<< \"$volume\" | grep '.' || echo \"N/A\")\"\n volume_size=\"$(jq -r '.Size' <<< \"$volume\")\"\n encrypted=\"$(jq -r '.Encrypted' <<< \"$volume\")\"\n\n while read -r attachment; do\n device=\"$(jq -r '.Device' <<< \"$attachment\")\"\n status=\"$(jq -r '.State' <<< \"$attachment\")\"\n attach_time=\"$(jq -r '.AttachTime' <<< \"$attachment\" | grep '.' || echo \"N/A\")\"\n delete_on_termination=\"$(jq -r '.DeleteOnTermination' <<< \"$attachment\")\"\n\n echo \"$instance_id $instance_name $volume_id $volume_name ${volume_size}GB $device $encrypted $delete_on_termination $status $attach_time\"\n done < <(jq -c '.Attachments[]' <<< \"$volume\")\n done <<< \"$volume_info\"\ndone < <(\n # false positive\n # shellcheck disable=SC2016\n aws ec2 describe-instances --query 'Reservations[*].Instances[*].{InstanceID:InstanceId,Name:Tags[?Key==`Name`].Value|[0]}' --output text\n) |\ncolumn -t |\n# sort by instance name and device name\nsort -k2,6\n" }, { "path": "aws/aws_ec2_ebs_volumes_unattached.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-29 02:40:31 +0200 (Thu, 29 Aug 2024)\n#\n# https://github.com/HariSekhon\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nList EC2 EBS volumes that are not attached to any instance\n\nOuptut:\n\n , \n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nno_args \"$@\"\n\ntimestamp \"Getting EC2 EBS volumes not attached to instances\"\necho >&2\n# Volumes[*] should not be shell interpreted\n# shellcheck disable=SC2016\naws ec2 describe-volumes \\\n --filters 'Name=status,Values=available' \\\n --query 'Volumes[*].{\n \" VolumeID\": VolumeId,\n \" VolumeType\": VolumeType,\n \" Size\": Size,\n \" State\": State,\n AvailabilityZone: AvailabilityZone,\n Name: Tags[?Key==\"Name\"].Value | [0],\n Environment: Tags[?Key==\"Environment\"].Value | [0],\n CreateTime: CreateTime\n }' \\\n --output table\n" }, { "path": "aws/aws_ec2_instance_clone.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-11-12 16:42:30 +0400 (Tue, 12 Nov 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nClones an AWS EC2 instance by creating an AMI from the original and then booting a new instance from the AMI\nwith the same settings as the original instance\n\nUseful to testing risky things on a separate EC2 instance, such as Server Administrator recovery of Tableau\n\nDoes not reboot the running EC2 instance for safety by default, which means a non-clean filesystem copy\nunless you shut it down first.\n\nTo enforce a reboot of the EC2 instance (be careful in production!) you must set the environment variable:\n\n export AWS_EC2_REBOOT_INSTANCE=true\n\nUses adjacent scripts:\n\n aws_ec2_ami_create_from_instance.sh\n\n aws_ec2_instance_name_to_id.sh\n\nInvestigate instance names quickly using adjacent script aws_ec2_instances.sh\n\n\n$usage_aws_cli_jq_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" \"\n\nhelp_usage \"$@\"\n\nnum_args 2 \"$@\"\n\ninstance_name=\"$1\"\n\nnew_instance_name=\"$2\"\n\nami_name=\"instance-$instance_name-$(date '+%F_%H%M%S')\"\n\n# this script has been updated to wait for the AMI state to become available\nami_id=\"$(\"$srcdir/aws_ec2_ami_create_from_instance.sh\" \"$instance_name\" \"$ami_name\")\"\necho >&2\n\nif ! is_ami_id \"$ami_id\"; then\n die \"Invalid AMI ID returned, failed regex validation: $ami_id\"\nfi\n\ntimestamp \"Determining instance ID of original EC2 instance '$instance_name'\"\ninstance_id=\"$(\"$srcdir/aws_ec2_instance_name_to_id.sh\" \"$instance_name\")\"\nif ! is_instance_id \"$instance_id\"; then\n die \"Invalid Instance ID returned, failed regex validation: $instance_id\"\nfi\ntimestamp \"Determined instance ID to be: $instance_id\"\necho >&2\n\ntimestamp \"Determining instance type of original instance\"\ninstance_type=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query 'Reservations[*].Instances[*].InstanceType' \\\n --output text\n)\"\nif is_blank \"$instance_type\"; then\n die \"Failed to determine instance type\"\nfi\ntimestamp \"Determined instance type to be: $instance_type\"\necho >&2\n\ntimestamp \"Determining subnet ID of original instance\"\nsubnet_id=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query 'Reservations[*].Instances[*].SubnetId' \\\n --output text\n)\"\nif is_blank \"$subnet_id\"; then\n die \"Failed to determine subnet ID\"\nfi\ntimestamp \"Determined subnet ID to be: $subnet_id\"\necho >&2\n\ntimestamp \"Determining key pair name of original instance\"\nkey_name=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query 'Reservations[*].Instances[*].KeyName' \\\n --output text\n)\"\nif is_blank \"$key_name\"; then\n die \"Failed to determine key name\"\nfi\ntimestamp \"Determined key pair name to be: $key_name\"\necho >&2\n\ntimestamp \"Determining security group IDs of original instance\"\nsecurity_group_ids=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query 'Reservations[*].Instances[*].SecurityGroups[*].GroupId' \\\n --output text |\n tr '\\n' ',' |\n sed 's/,$//'\n)\"\nif is_blank \"$security_group_ids\"; then\n die \"Failed to determine security group IDs\"\nfi\ntimestamp \"Determined security group ID to be: $security_group_ids\"\necho >&2\n\ntimestamp \"Launching new EC2 instance from AMI '$ami_name'\"\nnew_instance_id=\"$(\n aws ec2 run-instances \\\n --image-id \"$ami_id\" \\\n --instance-type \"$instance_type\" \\\n --subnet-id \"$subnet_id\" \\\n --key-name \"$key_name\" \\\n --security-group-ids \"$security_group_ids\" \\\n --tag-specifications \"ResourceType=instance,Tags=[{Key=Name,Value=$new_instance_name}]\" |\n jq -r '.Instances[0].InstanceId'\n)\"\necho >&2\n\ntimestamp \"Waiting for new EC2 instance '$new_instance_name' ($new_instance_id) to enter running state\"\necho >&2\n\n# special variable that increments - use as a built-in timer\nSECONDS=0\n\nwhile true; do\n state=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query 'Reservations[*].Instances[*].State.Name' \\\n --output text\n )\"\n\n if [ \"$state\" = \"running\" ]; then\n timestamp \"New instance '$new_instance_name' is now running after $SECONDS seconds\"\n break\n elif [ \"$SECONDS\" -gt 1200 ]; then\n die \"Waited for 20 minutes but instance did not enter running state, something is wrong, aborting...\"\n fi\n timestamp \"Waiting for instance '$new_instance_name' to enter running state. State: $state\"\n sleep 10\ndone\n\necho \"$instance_id\"\n" }, { "path": "aws/aws_ec2_instance_ip.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-31 16:05:24 +0700 (Fri, 31 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nReturns the IP address, public or private, or a given EC2 instance by name or instance id\n\nUsed by:\n\n aws_ec2_ami_boot_ssh.sh\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\ninstance=\"$1\"\n\ntimestamp \"Getting instance public IP for instance: $instance\"\n\ninstance_id=\"$(\"$srcdir/aws_ec2_instance_name_to_id.sh\" \"$instance\")\"\ntimestamp \"Instance ID: $instance_id\"\n\npublic_ip=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query \"Reservations[0].Instances[0].PublicIpAddress\" \\\n --output text\n)\"\n\nif ! is_blank \"$public_ip\" &&\n [ \"$public_ip\" != \"None\" ]; then\n ip=\"$public_ip\"\n timestamp \"Using instance public IP: $ip\"\nelse\n timestamp \"No public IP found, getting instance private IP\"\n private_ip=\"$(\n aws ec2 describe-instances \\\n --instance-ids \"$instance_id\" \\\n --query \"Reservations[0].Instances[0].PrivateIpAddress\" \\\n --output text\n )\"\n ip=\"$private_ip\"\n timestamp \"Using instance private IP: $ip\"\nfi\n\ntimestamp \"IP address is: $ip\"\necho \"$ip\"\n" }, { "path": "aws/aws_ec2_instance_name_to_id.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-27 11:28:25 +0200 (Tue, 27 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nReturns an EC2 instance ID from name\n\nAdds additional safety checks:\n\n- verifies no more than one instance ID is returned\n- does a reverse lookup on the instance ID to verify the name\n- if an instance ID is passed, returns it as is for convenience\n\nCalled by adjacent scripts like:\n\n aws_ec2_ami_create_from_instance.sh\n\n aws_ec2_instance_terminate_by_name.sh\n\nInvestigate instance names and IDs quickly using adjacent script:\n\n aws_ec2_instances.sh\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\ninstance_name=\"$1\"\n\nif [[ \"$instance_name\" =~ ^i-[0-9a-f]{8,17}$ ]]; then\n log \"Given instance name is already an AWS instance ID, outputs as is: $instance_name\"\n echo \"$instance_name\"\n exit 0\nfi\n\nlog \"Determining EC2 instance ID for name '$instance_name'\"\n\ninstance_id=\"$(\n aws ec2 describe-instances \\\n --filters \"Name=tag:Name,Values=$instance_name\" \\\n --query \"Reservations[*].Instances[*].InstanceId\" \\\n --output text\n)\"\n\nif is_blank \"$instance_id\"; then\n die \"No EC2 instance found with name '$instance_name'\"\nfi\n\nif [ \"$(awk '{print NF}' <<< \"$instance_id\")\" -gt 1 ]; then\n cat >&2 <\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\ninstance_name=\"$1\"\n\ninstance_id=\"$(VERBOSE=1 \"$srcdir/aws_ec2_instance_name_to_id.sh\" \"$instance_name\")\"\n\nif ! is_instance_id \"$instance_id\"; then\n die \"Invalid Instance ID returned, failed regex validation: $instance_id\"\nfi\n\necho\n\ntimestamp \"Checking instance state\"\ninstance_state=\"$(\n aws ec2 describe-instances --instance-ids \"$instance_id\" --query 'Reservations[*].Instances[*].State.Name' --output text\n)\"\nif [ \"$instance_state\" = \"terminated\" ]; then\n timestamp \"Instance '$instance_name' with id '$instance_id' is already terminated\"\n exit 0\nelif [ \"$instance_state\" != \"running\" ]; then\n die \"Instance state '$instance_state' was not expected - is not 'terminated' or 'running' - aborting for safety\"\nfi\necho >&2\n\nread -r -p \"Do you want to terminate instance '$instance_name' with id '$instance_id'? (y/N) \" answer\ncheck_yes \"$answer\"\naws ec2 terminate-instances --instance-ids \"$instance_id\"\n" }, { "path": "aws/aws_ec2_instance_wait_for_ready.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-31 16:26:34 +0700 (Fri, 31 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nPolls an AWS EC2 instance and waits for it to finish initializing to a ready state\n\nUsed by adjacent script aws_eks_ami_create.sh\n\nGet the AWS EC2 Instance ID from the output of the 'aws ec2 run-instances' command - see above script\n\nTimeout secs defaults to 300 if not specified\nCheck interval defaults to 5 seconds if not specified\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ]\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\ninstance_id=\"$1\"\n\ntimeout_secs=\"${2:-300}\"\n\ncheck_interval_secs=\"${3:-5}\"\n\naws_validate_instance_id \"$instance_id\"\n\nif ! is_int \"$timeout_secs\"; then\n\tdie \"Invalid Timeout Secs, must be an integer: $timeout_secs\"\nfi\n\nif ! is_int \"$check_interval_secs\"; then\n\tdie \"Invalid Check Interval Secs, must be an integer: $check_interval_secs\"\nfi\n\nif [ \"$timeout_secs\" -lt 1 ]; then\n\tdie \"Invalid Timeout Secs cannot be less than 1: $timeout_secs\"\nfi\n\nif [ \"$check_interval_secs\" -lt 1 ]; then\n\tdie \"Invalid Check Interval Secs cannot be less than 1: $check_interval_secs\"\nfi\n\ntimestamp \"Waiting for AWS EC2 instance to become ready: $instance_id\"\ntimestamp \"Check interval: $check_interval_secs secs\"\ntimestamp \"Timeout max: $timeout_secs secs\"\n\nSECONDS=0\n\ntimestamp \"Checking EC2 instance status...\"\nwhile true; do\n if [ \"$SECONDS\" -gt \"$timeout_secs\" ]; then\n die \"ERROR: Timed out waiting $timeout_secs for instance to become ready\"\n fi\n instance_checks=\"$(\n aws ec2 describe-instance-status \\\n --instance-ids \"$instance_id\" \\\n --query \"InstanceStatuses[0].InstanceStatus.Status\" \\\n --output text\n )\"\n if [ \"$instance_checks\" = \"ok\" ]; then\n system_checks=\"$(\n aws ec2 describe-instance-status \\\n --instance-ids \"$instance_id\" \\\n --query \"InstanceStatuses[0].SystemStatus.Status\" \\\n --output text\n )\"\n\n if [ \"$instance_checks\" = \"ok\" ] &&\n [ \"$system_checks\" = \"ok\" ]; then\n timestamp \"EC2 instance $instance_id is ready\"\n break\n fi\n fi\n timestamp \"AWS EC2 instance still initializing...\"\n sleep \"$check_interval_secs\"\ndone\n" }, { "path": "aws/aws_ec2_instances.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-08-27 11:28:20 +0200 (Tue, 27 Aug 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nList AWS EC2 instances, their DNS names and States in an easy to read table output\n\nUseful for quickly investigating running instances and comparing to configured FQDN addresses in referencing software\n\nSee also:\n\n aws_ec2_info.sh - gives similar info but also resolves AMI names and adds an architecture column\n aws_ec2_info_csv.sh - same as above but in quoted CSV format\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\n# false positive - want single quotes for * to be evaluated within AWS query not shell\n# shellcheck disable=SC2016\n#\n# prefixing the column headings with spaces forces them to come first so that we can get the State field\n# in the middle instead of end since AWS CLI seems to sort the columns lexically\naws ec2 describe-instances \\\n --query 'Reservations[*].Instances[*].{\n \" Name\": Tags[?Key==`Name`].Value | [0],\n \" ID\": InstanceId,\n \" State\": State.Name,\n \" InstanceType\": InstanceType,\n \"Public DNS\": publicDnsName,\n \"Private DNS\": PrivateDnsName\n }' \\\n --output table\n" }, { "path": "aws/aws_ec2_launch_templates_ami_id.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-09 20:02:53 +0700 (Thu, 09 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nFor each Launch Template lists the AMI ID of the latest version\n\nUseful to check EKS upgrades of node groups via Terragrunt have taken effect\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\n# returns in format:\n#\n# ID NAME\n#\nlaunch_templates=\"$(aws ec2 describe-launch-templates --query \"LaunchTemplates[].{Name:LaunchTemplateName,ID:LaunchTemplateId}\" --output text)\"\n\nwhile read -r _id name; do\n echo -n \"$name \"\n aws ec2 describe-launch-template-versions --launch-template-name \"$name\" |\n jq -r '.LaunchTemplateVersions[0].LaunchTemplateData.ImageId'\ndone <<< \"$launch_templates\" # |\n#column -t\n" }, { "path": "aws/aws_ecr_alternate_tags.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:30:51 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists all alternative tags for the given specific ECR docker image:tag\n\nIf a container has multiple tags (eg. latest, v1, hashref), you can supply ':latest' to see which version has been tagged to 'latest'\n\nEach tag for the given : is output on a separate line for easy further piping and filtering, including the originally supplied tag\n\nIf no tag is given, assumes 'latest'\n\nIf the image isn't found in GCR, will return nothing and no error code since this is the default GCloud SDK behaviour\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage_tag=\"$1\"\nshift || :\n\nimage=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\nif [ -z \"$tag\" ] || [ \"$tag\" = \"$image\" ]; then\n tag=\"latest\"\nfi\n\naws ecr describe-images --repository-name \"$image\" --image-ids \"imageTag=$tag\" \"$@\" |\njq -r '.imageDetails[].imageTags[]' |\nsort\n" }, { "path": "aws/aws_ecr_delete_old_tags.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nDeletes tags old than N days for a given AWS ECR image\n\nUseful to clean out old CI image builds to save S3 storage costs on old CI images you no longer use\n\n\nPrompts with the list of image:tags that it will delete before proceeding for safety.\n\n\n$usage_aws_cli_required\n\n\nSee Also:\n\n aws_ecr_tags_old.sh - used by this script, lists all image:tag older than N days\n aws_ecr_tags_timestamps.sh - lists tags and timestamps - useful for comparing with the output from aws_ecr_tags_old.sh\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ]\"\n\nhelp_usage \"$@\"\n\nmin_args 2 \"$@\"\n\nimage=\"$1\"\ndays=\"$2\"\nshift || :\nshift || :\n\nimage_tags=\"$(\"$srcdir/aws_ecr_tags_old.sh\" \"$image\" \"$days\" \"$@\")\"\n\nif [ -z \"$image_tags\" ]; then\n echo \"No image:tags older than $days old\"\n exit 0\nfi\n\necho\necho \"List of image:tags that will be deleted:\"\necho\necho \"$image_tags\"\necho\n\nread -r -p 'Are you sure you want to delete these image:tags listed above? (y/N) ' answer\necho\n\nif [ \"$answer\" != \"y\" ]; then\n echo \"Aborting...\"\n exit 1\nfi\n\nfor image_tag in $image_tags; do\n \"$srcdir/aws_ecr_delete_tag.sh\" \"$image_tag\" \"$@\"\ndone\n" }, { "path": "aws/aws_ecr_delete_tag.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nDeletes a tag for the given AWS ECR docker image\n\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage_tag=\"$1\"\nshift || :\n\nimage=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\nif [ -z \"$tag\" ] || [ \"$tag\" = \"$image\" ]; then\n usage \"tag not given\"\nfi\n\ntimestamp \"deleting tag '$tag' for ECR image '$image'\"\n# negate the result of the pipe\naws ecr batch-delete-image --repository-name \"$image\" --image-ids \"imageTag=$tag\" \"$@\" |\nif jq -e '.failures[0]'; then\n exit 1\nfi\n" }, { "path": "aws/aws_ecr_docker_build_push.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2021-10-22 15:11:27 +0100 (Fri, 22 Oct 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/utils.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nBuilds the local docker image using the Dockerfile in the current directory and pushes it to the AWS ECR registry\n\nTags the docker image with the following and pushes all tags to AWS ECR:\n\n - latest\n - Git full hashref\n - Git branch\n - any Git tags, if found, for easy versioning support\n - date (YYYY-MM-DD)\n - datetimestamp (YYYYMMDDThhmmssZ] in UTC\n\nRequires AWS CLI to be installed and configured, as well as Docker to be running locally\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" \"\n\nhelp_usage \"$@\"\n\nnum_args 2 \"$@\"\n\nECR=\"$1\"\nREPO=\"$2\"\n\nif ! is_aws_ecr_registry \"$ECR\"; then\n usage \"Invalid ECR address given: $ECR\"\nfi\n\nif ! [[ \"$REPO\" =~ ^[[:alnum:]/-]+$ ]]; then\n usage \"Invalid Repo name given: $REPO\"\nfi\n\nif is_CI; then\n docker version\n echo\nfi\n\necho \"* AWS ECR -> Docker login\"\n# $AWS_DEFAULT_REGION should be set in env or profile\n\"$srcdir/aws_ecr_docker_login.sh\" \"$ECR\"\necho\n\necho \"* Determining tags\"\nhashref=\"$(git rev-parse HEAD)\"\ngit_branch=\"$(git rev-parse --abbrev-ref HEAD)\"\ngit_tags=\"$(git tag --points-at HEAD)\" # can return multiple tags\n# must use date -u switch since --utc only works on Linux and not Mac\ndate=\"$(date -u '+%F')\"\ntimestamp=\"$(date -u '+%FT%H%M%SZ')\"\n\n# adding tags:\n#\ntags=\"\n$git_branch\n$git_tags\n$date\n$timestamp\n\"\necho\n\nexport DOCKER_BUILDKIT=1\n\n# shellcheck disable=SC2046\ndocker build -t \"$ECR/$REPO:$hashref\" . \\\n --build-arg BUILDKIT_INLINE_CACHE=1 \\\n --cache-from \"$ECR/$REPO:latest\" \\\n --cache-from \"$ECR/$REPO:$hashref\" \\\n $(for tag in $tags; do echo -n \" --cache-from $ECR/$REPO:$tag\"; done)\necho\n\nfor tag in latest $tags; do\n echo \"* Tagging as '$tag'\"\n docker tag \"$ECR/$REPO:$hashref\" \"$ECR/$REPO:$tag\"\n echo\ndone\n\n# pushing latest last intentionally for a more atomic update\nfor tag in \"$hashref\" $tags latest; do\n echo \"* Pushing tag '$tag'\"\n docker push \"$ECR/$REPO:$tag\"\n echo\ndone\n" }, { "path": "aws/aws_ecr_docker_login.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-12-17 02:39:54 +0700 (Tue, 17 Dec 2024)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nAuthenticates Docker to AWS ECR, inferring the ECR registry from the current AWS Account ID and Region\n\nIf \\$AWS_ACCOUNT_ID and \\$AWS_DEFAULT_REGION are not set in the environment,\ntries to infer them from the current AWS config\n\n\n$usage_aws_cli_required, and also Docker must be installed\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\nmax_args 1 \"$@\"\n\nexport AWS_ACCOUNT_ID=\"${AWS_ACCOUNT_ID:-$(aws_account_id)}\"\n\nexport AWS_DEFAULT_REGION=\"${AWS_DEFAULT_REGION:-$(aws_region)}\"\n\naws_ecr_registry=\"${1:-$(aws_ecr_registry)}\"\n\nif ! is_aws_ecr_registry \"$aws_ecr_registry\"; then\n die \"Invalid AWS ECR registry: $aws_ecr_registry\"\nfi\n\ntimestamp \"Getting AWS ECR Login password and piping it into Docker for registry: $aws_ecr_registry\"\naws ecr get-login-password |\ndocker login --username AWS --password-stdin \"$aws_ecr_registry\"\n" }, { "path": "aws/aws_ecr_list_repos.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2024-07-02 19:54:54 +0200 (Tue, 02 Jul 2024)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists ECR repos, their docker image mutability and whether image scanning is enabled\n\nOutput:\n\n \n\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"\"\n\nhelp_usage \"$@\"\n\nnum_args 0 \"$@\"\n\naws ecr describe-repositories |\njq -r '\n .repositories[] |\n [\n .repositoryName,\n .imageTagMutability,\n .imageScanningConfiguration.scanOnPush\n ] |\n @tsv\n' |\nsort |\ncolumn -t\n" }, { "path": "aws/aws_ecr_list_tags.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists all tags for the given AWS ECR docker image\n\nEach tag for the given image is output on a separate line for easy further piping and filtering\n\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage=\"$1\"\nshift || :\n\naws ecr list-images --repository \"$image\" \"$@\" |\njq -r '.imageIds[].imageTag | select(.)' |\nsort\n" }, { "path": "aws/aws_ecr_newest_image_tags.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists the tags for the given AWS ECR docker image with the newest creation date\n\n(eg. for tagging it as 'latest', see adjacent scripts aws_ecr_tag_latest.sh and aws_ecr_tag_newest_image_as_latest.sh)\n\nWhen a docker image has multiple tags (eg. v1, latest) then outputs each tag on a separate line for easy further piping and filtering\n\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage=\"$1\"\nshift || :\n\nnewest_image_timestamp=\"$(aws ecr describe-images --repository-name \"$image\" \"$@\" | jq -r '.imageDetails[].imagePushedAt' | sort -r | head -n1)\"\n\naws ecr describe-images --repository-name \"$image\" \"$@\" |\njq -r \".imageDetails[]? | select(.imagePushedAt == \\\"$newest_image_timestamp\\\") | .imageTags[]?\" |\nsort\n" }, { "path": "aws/aws_ecr_tag_branch.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTags a given AWS ECR docker image:tag with the current branch name without pulling and pushing the docker image\n\n\n$usage_aws_cli_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage_tag=\"$1\"\nshift || :\n\nif ! [[ \"$image_tag\" =~ : ]]; then\n image_tag+=\":latest\"\nfi\n\ndocker_image=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\n\n# Jenkins provides GIT_BRANCH, TeamCity doesn't so normalize and determine it if not automatically set\nif [ -z \"${BRANCH_NAME:-}\" ]; then\n BRANCH_NAME=\"${GIT_BRANCH:-$(git rev-parse --abbrev-ref HEAD)}\"\nfi\nBRANCH_NAME=\"${BRANCH_NAME##*/}\"\n\nFORCE=1 \"$srcdir/aws_ecr_tag_image.sh\" \"$docker_image:$tag\" \"$BRANCH_NAME\" \"$@\"\n" }, { "path": "aws/aws_ecr_tag_datetime.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTags a given ECR docker image with it's creation Date and Timestamp\nwithout pulling and pushing the docker image\n\nThe timestamp is the created time (either uploaded or created by Google Cloud Build)\n\nTags are in the format:\n\nYYYY-MM-DD\nYYYY-MM-DDTHHMMSSZ (standard ISO UTC time without semi-colons which are invalid in docker tags)\n\nThe timestamp will be normalized to UTC\n\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nnum_args 1 \"$@\"\n\nimage_tag=\"$1\"\nshift || :\n\nif ! [[ \"$image_tag\" =~ : ]]; then\n image_tag+=\":latest\"\nfi\n\nimage=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\n\nif [ -z \"$tag\" ] ||\n [ \"$tag\" = \"$image\" ] ||\n [ \"$tag\" = \"$image_tag\" ]; then\n tag=\"latest\"\nfi\n\ntimestamp=\"$(aws ecr describe-images --repository-name \"$image\" --image-ids \"imageTag=$tag\" \"$@\" | jq -r '.imageDetails[].imagePushedAt' | sort -r | head -n1)\"\nif [ -z \"$timestamp\" ]; then\n echo \"Failed to determine timestamp from ECR for image '$image' with tag '$tag'\"\n exit 1\nfi\nif ! [[ \"$timestamp\" =~ ^[[:digit:]]{4}-[[:digit:]]{2}-[[:digit:]]{2}T[[:digit:]]{2}:[[:digit:]]{2}:[[:digit:]]{2}[+-][[:digit:]]{2}:[[:digit:]]{2}$ ]]; then\n echo \"ECR timestamp not in expect YYYY-MM-DDTHH:MM:SS[+-]HH:MM format, API may have changed\"\n exit 1\nfi\n\n# normalize to UTC\ntimestamp=\"$(date --utc --date=\"$timestamp\" '+%FT%H%M%SZ')\"\n\ndate=\"${timestamp%T*}\"\n\nFORCE=1 \"$srcdir/aws_ecr_tag_image.sh\" \"$image:$tag\" \"$date\" \"$@\"\nFORCE=1 \"$srcdir/aws_ecr_tag_image.sh\" \"$image:$tag\" \"$timestamp\" \"$@\"\n" }, { "path": "aws/aws_ecr_tag_image.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2020-09-28 11:45:38 +0100 (Mon, 28 Sep 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-retag.html\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTags an AWS ECR image with another tag without pulling + pushing the image\n\nIf : isn't given, assumes 'latest'\nIf the environment variable FORCE is set, will remove the new tag reference to ensure the new tagging takes effect\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_tag_image_by_digest.sh - same as this script but locates the image to tag using a digest\n\n docker_registry_tag_image.sh - for private Docker Registries\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nmin_args 2 \"$@\"\n\nimage_tag=\"$1\"\nnew_tag=\"$2\"\nshift || :\nshift || :\n\nimage=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\nif ! [[ \"$image_tag\" =~ : ]] &&\n [ \"$tag\" = \"$image\" ]; then\n tag=\"latest\"\nfi\n\n\ntstamp \"getting manifest for image '$image:$tag'\"\nmanifest=\"$(aws ecr batch-get-image --repository-name \"$image\" --image-ids \"imageTag=$tag\" --query 'images[].imageManifest' --output text \"$@\")\"\nif is_blank \"$manifest\"; then\n die \"ERROR: no manifest returned, did you specify a valid image tag?\"\nfi\n\nif [ -n \"${FORCE:-}\" ]; then\n \"$srcdir/aws_ecr_delete_tag.sh\" \"$image:$new_tag\" \"$@\" >/dev/null || :\nfi\ntstamp \"tagging image '$image:$tag' with new tag '$new_tag'\"\naws ecr put-image --repository-name \"$image\" --image-tag \"$new_tag\" --image-manifest \"$manifest\" \"$@\" >/dev/null\n\ntstamp \"tags for image '$image:$tag' are now:\"\naws ecr describe-images --repository-name \"$image\" --output json \"$@\" |\njq -r \".imageDetails[] | select(.imageTags) | select(.imageTags[] == \\\"$tag\\\") | .imageTags[]\"\n" }, { "path": "aws/aws_ecr_tag_image_by_digest.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2020-09-28 11:45:38 +0100 (Mon, 28 Sep 2020)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\n# https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-retag.html\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTags an AWS ECR image digest with another tag without pulling + pushing the image\n\nUseful to recover an image and apply a new tag to it or if you want to more precisely tag an exact image than following another existing tag (which is usually easier but can be a moving target)\n\nIf the environment variable FORCE is set, will remove the new tag reference to ensure the new tagging takes effect\n\n$usage_aws_cli_jq_required\n\n\nSimilar scripts:\n\n aws_ecr_tag_image.sh - same as this script but locates the image using an existing tag\n\n docker_registry_tag_image.sh - for private Docker Registries\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 3 \"$@\"\n\nimage=\"$1\"\ndigest=\"$2\"\nnew_tag=\"$3\"\n\nif ! [[ \"$digest\" =~ : ]]; then\n digest=\"sha256:$digest\"\nfi\n\ntstamp \"getting manifest for image '$image' with digest '$digest'\"\nmanifest=\"$(aws ecr batch-get-image --repository-name \"$image\" --image-ids \"imageDigest=$digest\" --query 'images[].imageManifest' --output text \"$@\")\"\nif is_blank \"$manifest\"; then\n die \"ERROR: no manifest returned, did you specify a valid digest?\"\nfi\n\nif [ -n \"${FORCE:-}\" ]; then\n \"$srcdir/aws_ecr_delete_tag.sh\" \"$image:$new_tag\" \"$@\" >/dev/null || :\nfi\ntstamp \"tagging image '$image' with digest '$digest' with new tag '$new_tag'\"\naws ecr put-image --repository-name \"$image\" --image-tag \"$new_tag\" --image-manifest \"$manifest\" \"$@\" >/dev/null\n\ntstamp \"tags for image '$image' with digest '$digest' are now:\"\naws ecr describe-images --repository-name \"$image\" --output json \"$@\" |\njq -r \".imageDetails[] | select(.imageDigest) | select(.imageDigest == \\\"$digest\\\") | .imageTags[]\"\n" }, { "path": "aws/aws_ecr_tag_latest.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nTags a given AWS ECR docker image:tag as 'latest' without pulling and pushing the docker image\n\n\n$usage_aws_cli_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\": []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage_tag=\"$1\"\nshift || :\n\nif ! [[ \"$image_tag\" =~ : ]]; then\n usage \"tag suffix missing from docker image\"\nfi\n\ndocker_image=\"${image_tag%%:*}\"\ntag=\"${image_tag##*:}\"\nif is_blank \"$tag\"; then\n usage \"tag suffix is blank\"\nfi\n\nFORCE=1 \"$srcdir/aws_ecr_tag_image.sh\" \"$docker_image:$tag\" \"latest\" \"$@\"\n" }, { "path": "aws/aws_ecr_tag_newest_as_latest.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nFinds the newest build of a given AWS ECR docker image by creation date and tags it as 'latest'\n\nDoes this via metadata API calls to avoid network transfer from any docker pull / docker push\n\nIf an AWS ECR image has multiple tags, will take the longest tag which is assumed to be the most specific and\ntherefore most likely to avoid collisions and race conditions of other tag updates happening concurrently\n\n\n$usage_aws_cli_required\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage=\"$1\"\nshift || :\n\ntags=\"$(\"$srcdir/aws_ecr_newest_image_tags.sh\" \"$image\" \"$@\")\"\n\nif [ -z \"$tags\" ]; then\n die \"No tags were found for image '$image'... does it exist in ECR?\"\nfi\n\nlongest_tag=\"$(awk '{print length, $0}' <<< \"$tags\" |\n sort -nr |\n head -n 1 |\n awk '{print $2}')\"\n\n\"$srcdir/aws_ecr_tag_latest.sh\" \"$image:$longest_tag\" \"$@\"\n" }, { "path": "aws/aws_ecr_tags_old.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists old tags for a given AWS ECR image > \\$days old\n\nThe \\$days threshold defaults to (365 * 2) ie. 2 years old\n\nYou can grep and pipe this output to\n\n | xargs -L1 aws_ecr_delete_tag.sh\n\nto clean out old CI image builds to save S3 storage costs on old CI images you no longer use\n\n\n$usage_aws_cli_jq_required\n\n\nSee Also:\n\n aws_ecr_tags_timestamps.sh - lists tags and timestamps - useful for comparing with the output from this script\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" [ ]\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage=\"$1\"\n\n# 2 years old images by default\ndays_threshold=\"${2:-$((365 * 2))}\"\n\nshift || :\nshift || :\n\ndate_threshold=\"$(date '+%FT%T+00:00' --utc --date=\"$days_threshold days ago\")\"\n\naws ecr describe-images --repository-name \"$image\" \"$@\" |\njq -r \".imageDetails[] |\n select(.imagePushedAt < \\\"$date_threshold\\\") |\n [\\\"$image\\\" + \\\":\\\" + .imageTags[]] |\n .[]\"\n" }, { "path": "aws/aws_ecr_tags_timestamps.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n# args: haritest:1.0 stable\n#\n# Author: Hari Sekhon\n# Date: 2021-12-10 11:53:32 +0000 (Fri, 10 Dec 2021)\n#\n# https://github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists all tags for the given AWS ECR docker image as well as their image upload timestamp, newest first\n\nOutput Format:\n\n \n\nEach timestamp and tag for the given image is output tab separated on a separate line for easy further piping and filtering\n\n\n$usage_aws_cli_jq_required\n\n\nIf you want to remove an extra tag from an existing image:\n\n aws ecr batch-delete-image --repository-name --image-ids \\\"imageTag=\\\"\n\n\nSimilar scripts:\n\n aws_ecr_*.sh - scripts for AWS Elastic Container Registry\n\n gcr_*.sh - scripts for Google Container Registry\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\" []\"\n\nhelp_usage \"$@\"\n\nmin_args 1 \"$@\"\n\nimage=\"$1\"\nshift || :\n\naws ecr describe-images --repository \"$image\" \"$@\" |\njq -r '.imageDetails | map(.imagePushedAt + \"\\t\" + .imageTags[]?) | .[]' |\nsort -r\n" }, { "path": "aws/aws_eks_addon_versions.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-01 01:52:09 +0700 (Wed, 01 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nLists the EKS addon versions available for the given cluster by checking its version before checking addons\n\nRequires either first arg of the EKS cluster name, or the environment variable \\$EKS_CLUSTER\n\nIf neither are given, checks clusters and if only one is found in account, uses that\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"[]\"\n\nhelp_usage \"$@\"\n\nmax_args 1 \"$@\"\n\ncluster=\"${1:-${EKS_CLUSTER:-}}\"\n\nif is_blank \"$cluster\"; then\n cluster=\"$(aws_eks_cluster_if_only_one)\"\n if ! is_blank \"$cluster\"; then\n timestamp \"No cluster specified but only one found in this account, using that: $cluster\"\n else\n usage \"Need to define cluster name\"\n fi\nfi\n\ntimestamp \"Getting cluster version for: $cluster\"\ncluster_version=\"$(aws eks describe-cluster --name \"$cluster\" --query \"cluster.version\" --output text)\"\ntimestamp \"Cluster version: $cluster_version\"\n\naws eks describe-addon-versions \\\n --kubernetes-version \"$cluster_version\" \\\n --addon-name vpc-cni \\\n --query 'addons[].addonVersions[].{Version: addonVersion, Defaultversion: compatibilities[0].defaultVersion}' \\\n --output table\n" }, { "path": "aws/aws_eks_ami_create.sh", "content": "#!/usr/bin/env bash\n# vim:ts=4:sts=4:sw=4:et\n#\n# Author: Hari Sekhon\n# Date: 2025-01-31 16:05:24 +0700 (Fri, 31 Jan 2025)\n#\n# https///github.com/HariSekhon/DevOps-Bash-tools\n#\n# License: see accompanying Hari Sekhon LICENSE file\n#\n# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish\n#\n# https://www.linkedin.com/in/HariSekhon\n#\n\nset -euo pipefail\n[ -n \"${DEBUG:-}\" ] && set -x\nsrcdir=\"$(cd \"$(dirname \"${BASH_SOURCE[0]}\")\" && pwd)\"\n\n# shellcheck disable=SC1090,SC1091\n. \"$srcdir/lib/aws.sh\"\n\n# shellcheck disable=SC2034,SC2154\nusage_description=\"\nCreate a custom EKS AMI quickly off the base EKS template and then running a shell script in it\nbefore saving it to a new AMI\n\n- finds the standard EKS AMI for the given version\n- checks if there is already an EC2 running instance tagged for this\n- boots an EC2 instance from the above AMI with the given security group, subnet id and SSH key-name given so you can SSH to its ec2-user\n- waits for the EC2 instance to boot\n- waits for the EC2 instance to pass its instance and system checks\n- determines the public or private IP address\n- scp's the local script to the instance /tmp\n- SSH's to execute the script (eg. to install the needed things)\n- Assumes ~/.ssh/,pem is present locally to be able to log in to it\n- Creates the AMI\n- Terminates the EC2 instance\n\n\nUses adjacent script:\n\n aws_ec2_ami_boot.sh\n\n\nYou should really use Packer instead, see\n\n https://github.com/HariSekhon/Packer\n\nBut this script is an alternative and allowed me to debug something in a pinch\n\n\n$usage_aws_cli_required\n\"\n\n# used by usage() in lib/utils.sh\n# shellcheck disable=SC2034\nusage_args=\"