aksgpt is a powerful tool inspired by k8sgpt that uses AI to analyze and review your Azure Kubernetes Service (AKS) cluster configuration. It provides actionable recommendations for best practices, helping you identify potential issues and optimize the security, performance, and overall health of your AKS clusters.
To install aksgpt, you can use the following command:
go install github.com/philwelz/aksgpt@v0.0.5IMPORTANT: Make sure to add $GOPATH to your $PATH variable. If you don't, the binary will be located in $GOPATH/bin.
aksgpt integrates with the following AI backends to deliver recommendations:
- GitHub Models - the default backend if no other is specified
- OpenAI
- Azure OpenAI
Before running aksgpt with the default GitHub Models backend, ensure that the following environment variables are configured:
export ARM_SUBSCRIPTION_ID=<Azure Subscription ID>
export GITHUB_TOKEN=<GitHub fine-grained PAT>If you are using Azure OpenAI, set the following environment variables:
export ARM_SUBSCRIPTION_ID=<Azure Subscription ID>
export AZURE_OPENAI_API_KEY=<Azure Open AI API Key>
export AZURE_OPENAI_ENDPOINT=<Azure OpenAI Endpoint>If you are using OpenAi, set the following environment variables:
export ARM_SUBSCRIPTION_ID=<Azure Subscription ID>
export OPENAI_API_KEY=<Platform API Key>You can run aksgpt using the command below:
aksgpt inspect cluster -g <Resource Group> -c <Cluster Name> -b <Backend>Cluster information is anonymized prior to being sent to the AI backend. The following fields are REDACTED to ensure sensitive data is protected:
List of redacted Fields
- adminGroupObjectIDs
- adminUsername
- azurePortalFQDN
- clientId
- dnsPrefix
- effectiveOutboundIPs
- fqdn
- id
- issuerURL
- location
- nodeResourceGroup
- objectId
- podSubnetID
- principalId
- privateDnsZone
- privateFQDN
- resourceId
- subscriptionId
- tenantID
- userAssignedIdentities
- vnetSubnetID
The following is an example of the AKS configuration JSON that is submitted to the AI backend.
Example AKS configuration JSON submitted to the AI backend
{
"properties": {
"aadProfile": {
"enableAzureRBAC": true,
"managed": true,
"tenantID": "REDACTED"
},
"addonProfiles": {
"azurepolicy": {
"config": {
"version": "v2"
},
"enabled": true,
"identity": {
"clientId": "REDACTED",
"objectId": "REDACTED",
"resourceId": "REDACTED"
}
},
"extensionManager": {
"enabled": true,
"identity": {
"clientId": "REDACTED",
"objectId": "REDACTED",
"resourceId": "REDACTED"
}
}
},
"agentPoolProfiles": [
{
"availabilityZones": [
"2",
"3",
"1"
],
"count": 1,
"currentOrchestratorVersion": "1.31.2",
"enableAutoScaling": true,
"enableEncryptionAtHost": false,
"enableFIPS": false,
"enableNodePublicIP": false,
"enableUltraSSD": false,
"kubeletDiskType": "OS",
"maxCount": 2,
"maxPods": 250,
"minCount": 1,
"mode": "System",
"name": "sy0aksbackup",
"nodeImageVersion": "AKSUbuntu-2204gen2containerd-202411.12.0",
"orchestratorVersion": "1.31.2",
"osDiskSizeGB": 128,
"osDiskType": "Managed",
"osSKU": "Ubuntu",
"osType": "Linux",
"powerState": {
"code": "Stopped"
},
"provisioningState": "Succeeded",
"scaleDownMode": "Delete",
"tags": {
"location": "REDACTED",
"maintainer": "029b5baf-7254-4d02-8b55-7d43a0a04926",
"project": "aksbackup",
"stage": "pet"
},
"type": "VirtualMachineScaleSets",
"upgradeSettings": {
"maxSurge": "33%"
},
"vmSize": "Standard_D2ds_v5"
}
],
"apiServerAccessProfile": {
"disableRunCommand": true
},
"autoScalerProfile": {
"balance-similar-node-groups": "false",
"expander": "random",
"max-empty-bulk-delete": "10",
"max-graceful-termination-sec": "600",
"max-node-provision-time": "15m",
"max-total-unready-percentage": "45",
"new-pod-scale-up-delay": "0s",
"ok-total-unready-count": "3",
"scale-down-delay-after-add": "10m",
"scale-down-delay-after-delete": "10s",
"scale-down-delay-after-failure": "3m",
"scale-down-unneeded-time": "10m",
"scale-down-unready-time": "20m",
"scale-down-utilization-threshold": "0.5",
"scan-interval": "10s",
"skip-nodes-with-local-storage": "false",
"skip-nodes-with-system-pods": "true"
},
"autoUpgradeProfile": {
"upgradeChannel": "none"
},
"azurePortalFQDN": "REDACTED",
"currentKubernetesVersion": "1.31.2",
"disableLocalAccounts": true,
"dnsPrefix": "REDACTED",
"enableRBAC": true,
"fqdn": "REDACTED",
"identityProfile": {
"kubeletidentity": {
"clientId": "REDACTED",
"objectId": "REDACTED",
"resourceId": "REDACTED"
}
},
"kubernetesVersion": "1.31.2",
"maxAgentPools": 100,
"networkProfile": {
"dnsServiceIP": "10.0.0.10",
"ipFamilies": [
"IPv4"
],
"loadBalancerProfile": {
"effectiveOutboundIPs": "REDACTED",
"managedOutboundIPs": {
"count": 1
}
},
"loadBalancerSku": "standard",
"networkPlugin": "azure",
"networkPolicy": "azure",
"outboundType": "loadBalancer",
"serviceCidr": "10.0.0.0/16",
"serviceCidrs": [
"10.0.0.0/16"
]
},
"nodeResourceGroup": "REDACTED",
"powerState": {
"code": "Stopped"
},
"provisioningState": "Succeeded",
"securityProfile": {},
"servicePrincipalProfile": {
"clientId": "REDACTED"
},
"storageProfile": {
"diskCSIDriver": {
"enabled": true
},
"fileCSIDriver": {
"enabled": true
},
"snapshotController": {
"enabled": true
}
},
"windowsProfile": {
"adminUsername": "REDACTED",
"enableCSIProxy": true
}
}
}