portfolio/infra-run/README.md

infra-run

infra-run is a sanitized infrastructure operations project. It contains Bash and Ansible examples based on Linux administration, incident response, storage operations, hardening, prechecks, postchecks, and controlled change workflows.

The goal is to show operational judgment, not to ship a universal automation product.

Current Contents

• scripts/bash/os-healthcheck - general Linux health, service, disk, network, and report scripts.
• scripts/bash/disk-full - disk-full triage and cleanup review workflow.
• scripts/bash/veritas - Veritas VxVM/VCS storage expansion workflow examples.
• scripts/bash/gpfs - GPFS / IBM Spectrum Scale expansion workflow examples.
• ansible - selected baseline hardening examples for RHEL-like Linux, Debian/Ubuntu, and AIX.
• examples - sanitized sample command outputs and incident notes.

Documentation

• docs/operations-cheatsheet.md - production operations quick reference covering Linux/Unix triage, text processing, incident workflows, networking, storage, AIX, SSL/TLS, automation safety, Ansible execution, observability, and operational habits.

What This Is

• A portfolio project for Linux and infrastructure operations roles.
• A set of readable examples showing precheck, dry-run, execution guardrails, postcheck, and reporting patterns.
• A place to demonstrate Bash, Ansible, storage workflow, and troubleshooting habits with sanitized inputs.

What This Is Not

• Not intended for direct live use.
• Not a complete CIS benchmark implementation.
• Not a replacement for site-specific change procedures.
• Not tested against live Veritas, GPFS, or AIX systems in this repository.
• Not safe to run blindly on servers without review.

Currently Usable

• Bash syntax can be checked locally.
• Shell scripts can be reviewed and partially exercised on a Linux workstation when platform commands are available or mocked.
• Disk-full read-only scripts can be run against local paths for basic behavior checks.
• Ansible YAML and role structure can be linted locally.

Lab-Safe Examples

• Veritas and GPFS scripts default to dry-run behavior where they plan destructive or platform-changing operations.
• Ansible hardening roles are examples of selected controls and need adaptation before use.
• Sample outputs under examples are fake and sanitized.

Tested

See TESTED.md for current validation status.

Short version:

• Shell scripts were reviewed for dry-run behavior and obvious quoting issues.
• YAML and Ansible files are intended for local linting.
• Veritas, GPFS, and AIX behavior was not validated against real systems here.

Basic Validation

From the repository root:

find infra-run/scripts/bash -name '*.sh' -print0 | xargs -0 shellcheck -x -P infra-run/scripts/bash/disk-full -P infra-run/scripts/bash/gpfs -P infra-run/scripts/bash/veritas
yamllint .
cd infra-run/ansible && ansible-lint playbooks roles

If ansible-lint reports collection-related issues, install the collections listed in ansible/collections/requirements.yml and rerun it. Treat lint as a starting point; platform testing still requires actual target systems.

Supporting Notes

• SOURCE.md explains why this project exists and what experience shaped it.
• TESTED.md lists what was checked locally and what was not.
• KNOWN_LIMITATIONS.md documents technical limits and operational cautions.
• ROADMAP.md tracks planned additions without presenting them as completed work.