GloriousFlywheel

Self-deploying infrastructure that builds, caches, and monitors itself.

What is this?

attic-iac is a set of OpenTofu modules, Nix packages, and a SvelteKit dashboard that together form a self-improving infrastructure system. The core insight is recursive dogfooding: the CI runners deploy themselves, the Nix cache caches its own derivations, and RenovateBot keeps everything up to date – all running on infrastructure managed by the same code.

Architecture

The system uses a two-module Bzlmod architecture. A public upstream repository (attic-iac) contains all reusable modules. Private overlay repositories add organization-specific configuration and deploy to their own clusters.

• Recursive Dogfooding – the core concept
• Bzlmod Topology – two-module system
• Overlay System – how overlays merge with upstream
• Multi-Repo Layout – three-repo topology
• RenovateBot Flywheel – self-improving cycle

Getting Started

• Getting Started Guide – first-time user journey
• Create Your First Overlay – step-by-step overlay setup
• Quick Start – deploy from zero
• Customization Guide – configure for your org
• Clusters and Environments – cluster layout

Build System

• Greedy Build Pattern – build fast, cache everything
• Watch-Store Bootstrap – incremental Nix cache
• Container Builds – nix2container, Dockerfile, rules_img
• Bazel Targets – all build targets

Runners

• Overview – cross-forge runner pool (GitLab CI + GitHub Actions)
• Selection Guide – which runner to use
• GitHub Actions Runners – ARC setup, composite actions, cache integration
• Self-Service Enrollment – onboard your project
• Runbook – operational procedures

CI/CD

• Pipeline Overview – 4-stage pipeline
• Overlay Pipelines – how overlays extend CI
• Deployment Flow – commit to production

Guides

• GitHub App Adoption – install GloriousFlywheel on your org
• Cross-Forge CI – GitLab CI vs GitHub Actions side-by-side

Dashboard

• Dashboard Overview – architecture, features, auth

Reference

• OpenTofu Modules – all modules documented
• Configuration Reference – organization.yaml schema
• Environment Variables – all env vars
• Justfile Commands – all just recipes

This site is open source. Improve this page.