Review k8s feedback and fix #160
Description
Critical Issues Found:
- Data Loss Risk: All databases use emptyDir volumes - you'll lose all data on pod restarts
- Inadequate Resources: Current allocations (128Mi-256Mi RAM) are far too small for 1000+ images/hour
processing - Security Vulnerabilities: Hardcoded secrets, latest tags, no network policies
- No Monitoring: Missing health checks, metrics, and observability
- Single Points of Failure: No backup strategy or high availability
Priority Fixes Needed:
Immediate (Phase 1):
- Replace emptyDir with persistent volumes for all databases
- Remove hardcoded secrets from dev script
- Pin container versions instead of using latest
- Increase resource limits (API: 2-4Gi RAM, Workers: 4-8Gi RAM)
Short-term (Phases 2-3):
- Add comprehensive monitoring stack (Prometheus/Grafana)
- Implement database backups via CronJobs
- Configure network policies for security
- Optimize scaling for scientific computing bursts
The agent provided detailed YAML examples for each recommendation. Would you like me to help implement any of
these fixes, starting with the critical data persistence issues?