By name: gke-manifest-generation description: Standard Operating Procedure (SOP) for generating and updating secure, compliant, and cost-effective GKE manifests.
GKE Manifest Generation Skill
This skill provides guidelines, tooling integration, and templates to translate natural language descriptions or application code changes into secure, compliant, and cost-effective Kubernetes YAML manifests optimized for both GKE Autopilot and GKE Standard clusters.
Core Rules & Verification
When generating or updating YAML manifests, you must strictly adhere to the following rules:
1. Namespace & Resource Isolation
- Explicit Namespace: Always declare
namespace: <NAMESPACE>explicitly in the metadata of every resource (Deployments, Services, ConfigMaps, Secrets, PVCs, Roles, bindings). Map it to the namespace configured in your activeSETTINGS.md. Never omit the namespace. - Dedicated ServiceAccount: Avoid using the namespace's
defaultServiceAccount. Always create and reference a dedicatedServiceAccount(e.g.,devteam-agent-sa) for each microservice.
2. GKE Resource Tuning (Autopilot & Standard)
- Resources Requests & Limits: Always specify CPU and Memory requests and limits for all containers.
- GKE Autopilot: Requests determine pod billing directly; requests and limits must be equal. If they differ, Autopilot will automatically scale requests up to match limits, which can significantly increase costs.
- GKE Standard: Requests ensure stable scheduling and bin-packing; limits prevent resource starvation/noisy-neighbor issues.
- Density Defaults: For stateless apps or sidecars on GKE Standard, default to conservative requests (e.g.,
requests.cpu: "100m"or"200m",requests.memory: "256Mi"or"512Mi") with burstable limits. Use a reasonable overcommit ratio for limits (e.g., 2x to 4x requests, likelimits.cpu: "400m"to"800m", andlimits.memory: "512Mi"to"1Gi"). Avoid excessive overcommit limits (likelimits.cpu: "4"for a100mrequest) to prevent severe CPU throttling and latency degradation under heavy scheduling load, particularly in environments without guaranteed node shares. - Spot VMs for Staging/Dev: For non-production workloads (e.g., namespaces containing
-test,-dev, or-staging), or if the user requests cost optimization, automatically target GKE Spot VMs. This requires injecting both thenodeSelectortargeting Spot VMs AND the corresponding toleration to tolerate the Spot VM taint:
(On GKE Standard, this assumes a Spot node pool is configured).nodeSelector: cloud.google.com/gke-spot: "true" tolerations: - key: "cloud.google.com/gke-spot" operator: "Equal" value: "true" effect: "NoSchedule"
3. Container Security Hardening (Pod Security Standards)
- Non-Root Execution: Always configure
securityContextat the Pod level (and container level if overriding) to run as a non-root user (e.g.,runAsNonRoot: true,runAsUser: 10000,runAsGroup: 10000,fsGroup: 10000). This is strictly enforced on GKE Autopilot and is a critical security baseline for GKE Standard. - Minimal Privileges: Always set
allowPrivilegeEscalation: falseandseccompProfile: {type: RuntimeDefault}. - Read-Only Root Filesystem: Set
readOnlyRootFilesystem: trueto prevent modifications to the container image filesystem.- Writable Directory Fallback: If
readOnlyRootFilesystemis enabled, mount a localemptyDirvolume to/tmpor/var/run/to allow applications (like Java/Nginx) to write temp files without crashing.
- Writable Directory Fallback: If
- Secret Volume Mounting: Prefer mounting Secrets as read-only files (configured in the
volumesspec withdefaultMode: 0400) instead of mapping them as environment variables, unless the application framework exclusively supports env-var based configuration. This prevents secrets leaking into application logs.
4. Health Checking (Mandatory Probes)
- Liveness & Readiness Probes: Every Deployment container must define both
livenessProbeandreadinessProbe.- Web/API: Use
httpGetprobes. - TCP Services: Use
tcpSocketprobes. - Databases/Caches: Use command-based
execprobes (e.g.,exec.command: ["redis-cli", "ping"]).
- Web/API: Use
- Startup Probes for Slow-Starting Apps: For applications with slow boot times (e.g., Java spring boot, complex Python scripts, LLM model servers), you must also define a
startupProbe. When astartupProbeis defined, the liveness and readiness probes are disabled until it succeeds, preventing Kubernetes from prematurely killing the pod during startup:startupProbe: httpGet: path: /healthz port: 8080 failureThreshold: 30 periodSeconds: 10 - Sensible Defaults: Set
initialDelaySeconds: 5to15depending on startup time (e.g., Java requires a longer delay than Go/Nginx).
5. Services & Ingress Routing
- Internal ClusterIP: Default all internal microservices to
type: ClusterIP. Never usetype: LoadBalancerorNodePortunless the workload is explicitly intended to be publicly accessible from the internet. - Port Naming: Always assign clear, standard names to service and container ports (e.g.,
name: http-weborname: grpc-api) to enable automatic protocol discovery, tracing, and Web App routing. - Prefer Gateway API: When exposing APIs externally, prioritize using GKE Gateway API (
GatewayandHTTPRouteresources) over legacyIngressobjects to enable advanced L7 routing and security features (e.g., Cloud Armor).
6. Volume Mounts, StorageClasses & subPath Safety
- Avoid Directory Overwrites: When mounting a
ConfigMaporSecretto an application directory containing other files (like Nginx public directories), always usesubPathto overlay only the specific file. Caveat: Note that containers usingsubPathvolume mounts do not receive automatic configuration updates if the underlying ConfigMap or Secret is modified; pods must be restarted manually to pick up changes. - StorageClass Selection: Use the correct GKE storage class in PersistentVolumeClaims:
- CSI Driver Clusters (Autopilot & Modern Standard): Use
standard-rwo(default balanced PD) orpremium-rwo(SSD PD). - Legacy Standard Clusters: Use
standard(default PD) orpremium(SSD PD) ifstandard-rwo/premium-rwoare not configured. - Database rule: Use SSD storage classes (
premium-rwoorpremium) only when the prompt explicitly requests high IOPS, low latency, or database storage.
- CSI Driver Clusters (Autopilot & Modern Standard): Use
7. High Availability on GKE
- Topology Spread: For deployments with >1 replica, use
podAntiAffinityortopologySpreadConstraintswithtopologyKey: "kubernetes.io/hostname"to distribute pods across GKE nodes and availability zones. - PodDisruptionBudget: For deployments with >1 replica, declare a
PodDisruptionBudgetto guarantee minimum replica availability during voluntary GKE node upgrades and maintenance cycles.
8. Updates & Server-Side Apply Reconciliations
- Stable List Keys: Under Kubernetes Server-Side Apply (SSA), elements in associative lists (like volumes, volume mounts, ports, and container definitions) are matched and merged by their unique identifier keys (typically
name). You must keep thenamekey stable when modifying properties of an existing list item. Renaming thenamekey will cause SSA to create a brand new entry and leave the old entry intact (orphaned) rather than modifying it. - Minimal Diff: Make only the changes requested. Adhere closely to existing labels, annotations, and conventions.
Specialty Workloads: GKE AI/Inference Serving (vLLM, TGI, etc.)
For model serving workloads, prioritize using optimized tooling like GKE Inference Quickstart if available. If generating manually:
- GPU Request & Allocation:
- Always request
nvidia.com/gpuin bothrequestsandlimits. - Add a
nodeSelectoror node affinity targeting the desired GKE accelerator tag (e.g.,cloud.google.com/gke-accelerator: nvidia-l4).
- Always request
- Shared Memory Boost:
- Model servers require high shared memory (
/dev/shm) for inter-process communications. Always declare and mount anemptyDirvolume withmedium: Memoryto/dev/shm.
- Model servers require high shared memory (
- Weight Loading Optimization:
- Mount model weight directories (like GCS buckets) using the GKE GCS Fuse CSI driver (
csi.storage.gke.io) asreadOnly: truefor efficient cold-starts.
- Mount model weight directories (like GCS buckets) using the GKE GCS Fuse CSI driver (
Tooling & Grounding Guidelines
When generating manifests, you should leverage the following tooling to reduce hallucinations and optimize configurations:
Inference Workloads (GKE Inference Quickstart CLI):
- For all AI/LLM inference workloads (e.g. model serving), you must prioritize using the
gcloudCLI GKE Inference Quickstart command to generate the optimized manifests instead of writing them manually:gcloud container ai profiles manifests create \ --model=<MODEL_NAME> \ --model-server=<SERVER_NAME> \ --accelerator-type=<ACCELERATOR_TYPE> \ --output=manifest \ --output-path=<OUTPUT_FILE_PATH> - Constraint: You must include all resources returned by this command (Deployments, Services, PodMonitoring, etc.) without filtering.
- For all AI/LLM inference workloads (e.g. model serving), you must prioritize using the
Grounding in Official Documentation (Developer Knowledge API):
- For GKE-specific features, API defaults, manifest examples, or security contexts, you must query Google's developer knowledge base to retrieve official GKE documentation:
answer_query: Use this to ask direct questions (e.g., "How to configure GCS Fuse CSI driver in GKE"). This is the preferred tool for general queries.search_documents: Use this to search for relevant GKE guides or examples when you don't have a specific question.get_document: Use this to fetch full document contents when you have a specific document ID.
- For GKE-specific features, API defaults, manifest examples, or security contexts, you must query Google's developer knowledge base to retrieve official GKE documentation:
Few-Shot Examples
Example 1: Basic Hardened Nginx Deployment and Service
apiVersion: v1
kind: Namespace
metadata:
name: nginx-ns
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: nginx-sa
namespace: nginx-ns
labels:
app.kubernetes.io/name: nginx
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: nginx-deployment
namespace: nginx-ns
labels:
app.kubernetes.io/name: nginx
spec:
replicas: 2
selector:
matchLabels:
app.kubernetes.io/name: nginx
template:
metadata:
labels:
app.kubernetes.io/name: nginx
spec:
serviceAccountName: nginx-sa
securityContext:
runAsNonRoot: true
runAsUser: 10000
runAsGroup: 10000
fsGroup: 10000
seccompProfile:
type: RuntimeDefault
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- weight: 100
podAffinityTerm:
labelSelector:
matchExpressions:
- key: app.kubernetes.io/name
operator: In
values:
- nginx
topologyKey: "kubernetes.io/hostname"
containers:
- name: nginx
image: nginxinc/nginx-unprivileged:1.25
ports:
- name: http-web
containerPort: 8080
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
capabilities:
drop:
- ALL
resources:
requests:
cpu: "100m"
memory: "128Mi"
limits:
cpu: "250m"
memory: "256Mi"
volumeMounts:
- name: nginx-cache
mountPath: /var/cache/nginx
- name: nginx-run
mountPath: /var/run
- name: nginx-tmp
mountPath: /tmp
livenessProbe:
httpGet:
path: /
port: 8080
initialDelaySeconds: 15
periodSeconds: 20
readinessProbe:
httpGet:
path: /
port: 8080
initialDelaySeconds: 5
periodSeconds: 10
startupProbe:
httpGet:
path: /
port: 8080
failureThreshold: 30
periodSeconds: 10
volumes:
- name: nginx-cache
emptyDir: {}
- name: nginx-run
emptyDir: {}
- name: nginx-tmp
emptyDir: {}
---
apiVersion: v1
kind: Service
metadata:
name: nginx-service
namespace: nginx-ns
labels:
app.kubernetes.io/name: nginx
spec:
selector:
app.kubernetes.io/name: nginx
ports:
- name: http-web
protocol: TCP
port: 80
targetPort: http-web
type: ClusterIP
---
apiVersion: policy/v1
kind: PodDisruptionBudget
metadata:
name: nginx-pdb
namespace: nginx-ns
spec:
minAvailable: 1
selector:
matchLabels:
app.kubernetes.io/name: nginx
Example 2: Network Policy - Restrict Ingress to Specific App Only
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: nginx-ingress-deny-all
namespace: nginx-ns
spec:
podSelector:
matchLabels:
app.kubernetes.io/name: nginx
policyTypes:
- Ingress
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-ingress-from-my-app
namespace: nginx-ns
spec:
podSelector:
matchLabels:
app.kubernetes.io/name: nginx
policyTypes:
- Ingress
ingress:
- from:
- podSelector:
matchLabels:
app.kubernetes.io/name: my-app
ports:
- protocol: TCP
port: 8080
Example 3: Deploying Gemma 2 27B on GKE with Workload Identity and GCS FUSE
apiVersion: v1
kind: Namespace
metadata:
name: gemma-ns
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: gemma-sa
namespace: gemma-ns
annotations:
iam.gke.io/gcp-service-account: <GCP_SERVICE_ACCOUNT_EMAIL>
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: gemma-27b-deployment
namespace: gemma-ns
labels:
app.kubernetes.io/name: gemma-27b
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/name: gemma-27b
template:
metadata:
labels:
app.kubernetes.io/name: gemma-27b
annotations:
gke-gcsfuse/volumes: "true"
spec:
serviceAccountName: gemma-sa
securityContext:
runAsNonRoot: true
runAsUser: 10000
runAsGroup: 10000
seccompProfile:
type: RuntimeDefault
containers:
- name: gemma-server
image: vllm/vllm-openai:gemma2 # Example optimized image
args: ["--model", "/models", "--tensor-parallel-size", "4"]
ports:
- name: http-api
containerPort: 8000
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
resources:
requests:
cpu: "32"
memory: "128Gi"
nvidia.com/gpu: 4
limits:
cpu: "32"
memory: "128Gi"
nvidia.com/gpu: 4
livenessProbe:
httpGet:
path: /healthz
port: http-api
periodSeconds: 30
readinessProbe:
httpGet:
path: /healthz
port: http-api
periodSeconds: 10
startupProbe:
httpGet:
path: /healthz
port: http-api
failureThreshold: 60
periodSeconds: 10
volumeMounts:
- name: model-weights
mountPath: /models
readOnly: true
- name: dshm
mountPath: /dev/shm
nodeSelector:
cloud.google.com/gke-accelerator: "nvidia-l4"
volumes:
- name: model-weights
csi:
driver: gcsfuse.csi.storage.gke.io
readOnly: true
volumeAttributes:
bucketName: <GCS_BUCKET_NAME>
mountOptions: "implicit-dirs"
- name: dshm
emptyDir:
medium: Memory
Example 4: Exposing Workloads via GKE Gateway API (L7 Internal HTTP Load Balancer)
apiVersion: gateway.networking.k8s.io/v1
kind: Gateway
metadata:
name: internal-http-gateway
namespace: nginx-ns
spec:
gatewayClassName: gke-l7-rilb
listeners:
- name: http
protocol: HTTP
port: 80
allowedRoutes:
namespaces:
from: Same
---
apiVersion: gateway.networking.k8s.io/v1
kind: HTTPRoute
metadata:
name: nginx-http-route
namespace: nginx-ns
spec:
parentRefs:
- name: internal-http-gateway
rules:
- matches:
- path:
type: PathPrefix
value: /
backendRefs:
- name: nginx-service
port: 80