From 2ed46e251de6a0043e5cc0cffbe37ba5660af22f Mon Sep 17 00:00:00 2001 From: weishen Date: Sat, 18 Apr 2026 20:02:44 +0800 Subject: [PATCH] Auto-sync: 2026-04-18 20:02 --- .DS_Store | Bin 14340 -> 14340 bytes Pasted image 20260418164759.png | Bin 10253 -> 0 bytes knowledgebase/openclaw-skills-status.md | 131 ++++ raw/.DS_Store | Bin 0 -> 8196 bytes raw/Agent/.DS_Store | Bin 0 -> 8196 bytes raw/Agent/agency-agents | 1 + raw/Skills/Last30Days-使用指南.md | 9 - raw/Skills/Obsidian 必装 Skills.md | 1 + wiki/bookmarks.md | 607 ++++++++++-------- wiki/concepts/Boto3.md | 40 ++ wiki/concepts/Cloud-Guardrails.md | 42 ++ wiki/concepts/Cloud-Volume-ONTAP.md | 39 ++ wiki/concepts/Domain-Join.md | 30 + wiki/concepts/Enterprise-Architecture.md | 38 ++ wiki/concepts/Federated-User.md | 27 + wiki/concepts/Gruntwork-Landing-Zone.md | 27 + wiki/concepts/Purpose-Built-Database.md | 37 ++ wiki/concepts/RTO.md | 6 + wiki/concepts/Reference-Architecture.md | 25 + wiki/concepts/SRE-provided-AMIs.md | 26 + wiki/concepts/Service-Control-Policies.md | 52 ++ wiki/entities/Amazon-DocumentDB.md | 23 + wiki/entities/Amazon-DynamoDB.md | 29 + wiki/entities/Amazon-ElastiCache.md | 28 + wiki/entities/Amazon-Keyspaces.md | 23 + wiki/entities/Amazon-Neptune.md | 23 + wiki/entities/Amazon-Timestream.md | 23 + wiki/entities/Aurora.md | 29 + wiki/entities/Duolingo.md | 16 + wiki/entities/Femi-George.md | 16 + wiki/entities/Gruntwork.md | 26 + wiki/entities/MIM.md | 18 + wiki/entities/NetApp.md | 28 + wiki/entities/Netflix.md | 16 + wiki/entities/Peloton.md | 16 + wiki/entities/SMACKS-Ticket.md | 21 + wiki/entities/intsas-local.md | 22 + wiki/entities/swinford-net.md | 22 + wiki/index.md | 45 +- wiki/log.md | 71 ++ wiki/overview.md | 5 + ...c-1-gruntwork-landing-zone-architecture.md | 55 ++ ...directory-services-in-gruntwork-aws-lzs.md | 61 ++ .../ctp-topic-28-aws-tag-validation-tool.md | 57 ++ wiki/sources/ctp-topic-46-netapps-on-aws.md | 74 +++ ...enterprise-architecture-cloud-standards.md | 56 ++ ...ecting-with-aws-purpose-built-databases.md | 62 ++ ...ences-between-postgresql-rds-and-aurora.md | 45 ++ ...enterprise-dr-strategy-using-aws-backup.md | 62 ++ ...ion-of-the-cloud-transformation-program.md | 81 +++ 50 files changed, 1924 insertions(+), 267 deletions(-) delete mode 100644 Pasted image 20260418164759.png create mode 100644 knowledgebase/openclaw-skills-status.md create mode 100644 raw/.DS_Store create mode 100644 raw/Agent/.DS_Store create mode 160000 raw/Agent/agency-agents create mode 100644 wiki/concepts/Boto3.md create mode 100644 wiki/concepts/Cloud-Guardrails.md create mode 100644 wiki/concepts/Cloud-Volume-ONTAP.md create mode 100644 wiki/concepts/Domain-Join.md create mode 100644 wiki/concepts/Enterprise-Architecture.md create mode 100644 wiki/concepts/Federated-User.md create mode 100644 wiki/concepts/Gruntwork-Landing-Zone.md create mode 100644 wiki/concepts/Purpose-Built-Database.md create mode 100644 wiki/concepts/Reference-Architecture.md create mode 100644 wiki/concepts/SRE-provided-AMIs.md create mode 100644 wiki/concepts/Service-Control-Policies.md create mode 100644 wiki/entities/Amazon-DocumentDB.md create mode 100644 wiki/entities/Amazon-DynamoDB.md create mode 100644 wiki/entities/Amazon-ElastiCache.md create mode 100644 wiki/entities/Amazon-Keyspaces.md create mode 100644 wiki/entities/Amazon-Neptune.md create mode 100644 wiki/entities/Amazon-Timestream.md create mode 100644 wiki/entities/Aurora.md create mode 100644 wiki/entities/Duolingo.md create mode 100644 wiki/entities/Femi-George.md create mode 100644 wiki/entities/Gruntwork.md create mode 100644 wiki/entities/MIM.md create mode 100644 wiki/entities/NetApp.md create mode 100644 wiki/entities/Netflix.md create mode 100644 wiki/entities/Peloton.md create mode 100644 wiki/entities/SMACKS-Ticket.md create mode 100644 wiki/entities/intsas-local.md create mode 100644 wiki/entities/swinford-net.md create mode 100644 wiki/sources/ctp-topic-1-gruntwork-landing-zone-architecture.md create mode 100644 wiki/sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md create mode 100644 wiki/sources/ctp-topic-28-aws-tag-validation-tool.md create mode 100644 wiki/sources/ctp-topic-46-netapps-on-aws.md create mode 100644 wiki/sources/ctp-topic-47-enterprise-architecture-cloud-standards.md create mode 100644 wiki/sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md create mode 100644 wiki/sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md create mode 100644 wiki/sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md create mode 100644 wiki/sources/ctp-topic-73-aws-backup-implementation-of-the-cloud-transformation-program.md diff --git a/.DS_Store b/.DS_Store index 549aaf5dca18c43ce3fe5c63dab7254527b9392c..38c6fffab85679d552c5b70c66667a0b641676f2 100644 GIT binary patch delta 177 zcmZoEXepTB&zQO~U^liy0I?a6 zG+{7gumEB+Aj_P=l);igkD-7ek0E{X17-Qi_5y;F6$I`wGcy!T&e1-@4y1u*lyCNz zxWgz6<&*^%<>ln(r30;G-26-6H8-QxW*&v5oPr!cD~lO2fEMO4lmp4k$)}X$H*eHb LW82Jb@RuC`m**;D delta 47 zcmV+~0MP%0aD;G>PXS=DP`eKSCX;Fq@v|co=nJvnCIbOEvkV}m3A5oTCI*q3z%VSCVh}XH_?q(85q>d zJzX3_Dj45hKgii^Ai)-JTTaFyr~lnUF1?F>4^!SfJg6GAw?a^)Ws<0i%SmpQqLbgB zS8rG8bZuZ@WMbhEP;eM!j0VDJN*K)rqq$%-7mVhD(OfW^3r2InXf7Dd1*5rOG#8A3 zT<}e}Lj36S=+ONe4p;6^@q~1V4+Ju8U(7bs8IlKL!WC-%d^S1j+*~*Bclc$S^|z0m z<^&}UhdE5&EwZzHQM1Y;p^77+;n9$=OXxnZLC1M!>eDUjg721=TKB!3CR0Az?H(O_ z7#(*R%>|>mU^Ewu=7P~&Fq#WSbHQjX7|jKvxnMLGjOK#TTripoMsvYvE*Q-Pqq$%- j7mVhD!IujT++_W?X^X6N@QY$W&{8~4S3j3^P6 更新时间:2026-04-18 + +| 状态 | 图标 | 说明 | +|------|------|------| +| ✅ ready | ✓ | 已安装并可用 | +| △ needs setup | △ | 需要配置才能使用 | + +--- + +## Skills 列表 + +### ✅ Ready (62 个) + +| 图标 | 技能 | 描述 | 来源 | +|------|------|------|------| +| 📦 | `1password` | **中文:** 设置和使用 1Password CLI (op)。用于安装 CLI、启用桌面应用集成、签名(单账户或多账户)或通过 op 读取/注入/运行密钥

**English:** *Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi- account), or reading/ injecting/ running secrets via op.* | agents-skills-personal | +| 📦 | `apple-notes` | **中文:** 通过 macOS 上的 `memo` CLI 管理 Apple Notes(创建、查看、编辑、删除、搜索、移动和导出笔记)

**English:** *Manage Apple Notes via the `memo` CLI on macOS (create, view, edit, delete, search, move, and export notes). Use when a user asks Clawdbot to add a note, list notes, search notes, or manage note folders.* | openclaw-managed | +| 📦 | `apple-reminders` | **中文:** 通过 macOS 上的 `remindctl` CLI 管理 Apple 提醒(列出、添加、编辑、完成、删除)

**English:** *Manage Apple Reminders via the `remindctl` CLI on macOS (list, add, edit, complete, delete). Supports lists, date filters, and JSON/plain output.* | openclaw-managed | +| 📦 | `clawhub` | **中文:** 使用 ClawHub CLI 从 clawhub.com 搜索、安装、更新和发布代理技能

**English:** *Use the ClawHub CLI to search, install, update, and publish agent skills from clawhub.com. Use when you need to fetch new skills on the fly, sync installed skills to latest or a specific version, or publish new/ updated skill folders with the npm- installed clawhub CLI.* | openclaw-bundled | +| 📦 | `coding-agent` | **中文:** 通过后台进程将编码任务委托给 Codex、Claude Code 或 Pi 代理

**English:** *Delegate coding tasks to Codex, Claude Code, or Pi agents via background process. Use when: (1) building/ creating new features or apps, (2) reviewing PRs (spawn in temp dir), (3) refactoring large codebases, (4) iterative coding that needs file exploration. NOT for: simple one- liner fixes (just edit), reading code (use read tool), thread- bound ACP harness requests in chat (for example spawn/ run Codex or Claude Code in a Discord thread; use sessions_ spawn with runtime:"acp") , or any work in ~/clawd workspace (never spawn agents here). Claude Code: use --print -- permission- mode bypassPermissi ons (no PTY). Codex/Pi/ OpenCode: pty:true required.* | openclaw-bundled | +| 📦 | `gog` | **中文:** Google Workspace CLI for Gmail, Calendar, Drive, Contacts, Sheets, and Docs.

**English:** *Google Workspace CLI for Gmail, Calendar, Drive, Contacts, Sheets, and Docs.* | agents-skills-personal | +| 📦 | `healthcheck` | **中文:** OpenClaw 部署的主机安全加固和风险容忍配置

**English:** *Host security hardening and risk- tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/ update hardening, risk posture, exposure review, OpenClaw cron scheduling for periodic checks, or version status checks on a machine running OpenClaw (laptop, workstation, Pi, VPS).* | openclaw-bundled | +| 📦 | `node-connect` | **中文:** 诊断 Android、iOS 和 macOS 伴侣应用的 OpenClaw 节点连接和配对失败

**English:** *Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps. Use when QR/setup code/manual connect fails, local Wi-Fi works but VPS/ tailnet does not, or errors mention pairing required, unauthorized, bootstrap token invalid or expired, gateway.bind, gateway. remote.url, Tailscale, or plugins. entries. device-pair. config. publicUrl.* | openclaw-bundled | +| 📦 | `openai-whisper` | **中文:** 本地语音转文字,使用 Whisper CLI(无需 API key)

**English:** *Local speech- to-text with the Whisper CLI (no API key).* | openclaw-bundled | +| 📦 | `sag` | **中文:** ElevenLabs 文字转语音,mac 风格 say UX

**English:** *ElevenLabs text-to- speech with mac-style say UX.* | openclaw-bundled | +| 📦 | `session-logs` | **中文:** 使用 jq 搜索和分析你自己的会话日志(旧对话/父对话)

**English:** *Search and analyze your own session logs (older/ parent conversations) using jq. △ needs setup 🔉 sherpa-onnx-tts Local text-to- speech via sherpa-onnx (offline, no cloud)* | agents-skills-personal | +| 📦 | `skill-creator` | **中文:** 创建有效技能的指南。当用户想创建新技能(或更新现有技能)时使用

**English:** *Guide for creating effective skills. This skill should be used when users want to create a new skill (or update an existing skill) that extends Claude's capabilities with specialized knowledge, workflows, or tool integrations.* | agents-skills-personal | +| 📦 | `slack` | **中文:** 通过 slack 工具控制 Slack,包括在 Slack 频道或 DM 中对消息添加反应或固定/取消固定内容

**English:** *Use when you need to control Slack from OpenClaw via the slack tool, including reacting to messages or pinning/ unpinning items in Slack channels or DMs.* | openclaw-bundled | +| 📦 | `summarize` | **中文:** 使用 summarize CLI 总结 URL 或文件(网页、PDF、图片、音频、YouTube)

**English:** *Summarize URLs or files with the summarize CLI (web, PDFs, images, audio, YouTube).* | openclaw-managed | +| 📦 | `tmux` | **中文:** 通过发送按键和抓取面板输出远程控制 tmux 会话以进行交互式 CLI 操作

**English:** *Remote- control tmux sessions for interactive CLIs by sending keystrokes and scraping pane output.* | agents-skills-personal | +| 📦 | `video-frames` | **中文:** 使用 ffmpeg 从视频中提取帧或短片段

**English:** *Extract frames or short clips from videos using ffmpeg.* | agents-skills-personal | +| 📦 | `weather` | **中文:** 通过 wttr.in 或 Open-Meteo 获取当前天气和预报。无需 API key

**English:** *Get current weather and forecasts via wttr.in or Open-Meteo. Use when: user asks about weather, temperature, or forecasts for any location. NOT for: historical weather data, severe alerts, or detailed meteorological analysis. No API key needed.* | openclaw-bundled | +| 📦 | `accli` | **中文:** 在 macOS 上与 Apple Calendar 交互。用于列出日历、查看事件、创建/更新/删除日历事件、检查可用性/忙闲时间

**English:** *This skill should be used when interacting with Apple Calendar on macOS. Use it for listing calendars, viewing events, creating/ updating/ deleting calendar events, and checking availability/ free-busy times. Triggers on requests like "check my calendar", "schedule a meeting", "what's on my schedule", "am I free tomorrow", or any calendar- related operations.* | openclaw-managed | +| 📦 | `agent-browser` | **中文:** 为 AI 代理优化的无头浏览器自动化 CLI,具有无障碍树快照和基于引用的元素选择

**English:** *Headless browser automation CLI optimized for AI agents with accessibility tree snapshots and ref-based element selection* | openclaw-managed | +| 📦 | `agentmail` | **中文:** 为 AI 代理设计的 API 优先电子邮件平台

**English:** *API-first email platform designed for AI agents. Create and manage dedicated email inboxes, send and receive emails programmatical ly, and handle email- based workflows with webhooks and real-time events. Use when you need to set up agent email identity, send emails from agents, handle incoming email workflows, or replace traditional email providers like Gmail with agent- friendly infrastructure .* | openclaw-managed | +| 📦 | `baoyu-imagine` | **中文:** 使用 OpenAI、Azure OpenAI、Google、OpenRouter、DashScope、MiniMax、Jimeng、Seedream 和 Replicate API 进行 AI 图像生成

**English:** *AI image generation with OpenAI, Azure OpenAI, Google, OpenRouter, DashScope, MiniMax, Jimeng, Seedream and Replicate APIs. Supports text- to-image, reference images, aspect ratios, and batch generation from saved prompt files. Sequential by default; use batch parallel generation when the user already has multiple prompts or wants stable multi-image throughput. Use when user asks to generate, create, or draw images.* | openclaw-managed | +| 📦 | `baoyu-infographic` | **中文:** 生成 21 种布局类型和 20 种视觉样式的专业信息图

**English:** *Generates professional infographics with 21 layout types and 20 visual styles. Analyzes content, recommends layout×style combinations, and generates publication- ready infographics. Use when user asks to create "infographic", "信息图", "visual summary", "可视化", or "高密度信息大 图".* | openclaw-managed | +| 📦 | `bitwarden` | **中文:** 设置和使用 Bitwarden CLI (bw)

**English:** *Set up and use Bitwarden CLI (bw). Use when installing the CLI, authenticating (login/ unlock), or reading secrets from your vault. Supports email/ password, API key, and SSO authentication methods.* | openclaw-managed | +| 📦 | `defuddle` | **中文:** 使用 Defuddle CLI 从网页提取干净的 markdown 内容

**English:** *Extract clean markdown content from web pages using Defuddle CLI, removing clutter and navigation to save tokens. Use instead of WebFetch when the user provides a URL to read or analyze, for online documentation, articles, blog posts, or any standard web page. Do NOT use for URLs ending in .md — those are already markdown, use WebFetch directly.* | openclaw-managed | +| 📦 | `Docker` | **中文:** Docker containers, images, Compose stacks, networking, volumes, debugging, production hardening, and the commands that keep real environments stable. Use when (1) the task touches Docker, Dockerfiles, images, containers, or Compose; (2) build reliability, runtime behavior, logs, ports, volumes, or security matter; (3) the agent needs Docker guidance and should apply it by default.

**English:** *Docker containers, images, Compose stacks, networking, volumes, debugging, production hardening, and the commands that keep real environments stable. Use when (1) the task touches Docker, Dockerfiles, images, containers, or Compose; (2) build reliability, runtime behavior, logs, ports, volumes, or security matter; (3) the agent needs Docker guidance and should apply it by default.* | openclaw-managed | +| 📦 | `last30days` | **中文:** 研究过去 30 天内 Reddit、X、YouTube、TikTok、Instagram、Hacker News、Polymarket 和网页上的热门内容

**English:** *Research a topic from the last 30 days. Also triggered by 'last30'. Sources: Reddit, X, YouTube, TikTok, Instagram, Hacker News, Polymarket, web. Become an expert and write copy- paste-ready prompts.* | openclaw-managed | +| 📦 | `memory-lancedb-pro` | **中文:** 生产级长期记忆 MCP 插件,支持向量+BM25 混合检索、LLM 智能分类

**English:** *This skill should be used when working with memory- lancedb-pro, a production- grade long- term memory MCP plugin for OpenClaw AI agents. Use when installing, configuring, or using any feature of memory- lancedb-pro including Smart Extraction, hybrid retrieval, memory lifecycle management, multi-scope isolation, self- improvement governance, or any MCP memory tools (memory_ recall, memory_store, memory_ forget, memory_ update, memory_stats, memory_list, self_ improvement_ log, self_ improvement_ extract_ skill, self_ improvement_ review).* | openclaw-managed | +| 📦 | `⚙️ n8n` | **中文:** Manage n8n workflows and automations via API. Use when working with n8n workflows, executions, or automation tasks - listing workflows, activating/ deactivating, checking execution status, manually triggering workflows, or debugging automation issues.

**English:** *Manage n8n workflows and automations via API. Use when working with n8n workflows, executions, or automation tasks - listing workflows, activating/ deactivating, checking execution status, manually triggering workflows, or debugging automation issues.* | openclaw-managed | +| 📦 | `obsidian-bases` | **中文:** 创建和编辑 Obsidian Bases(.base 文件),具有视图、过滤器、公式和摘要功能

**English:** *Create and edit Obsidian Bases (.base files) with views, filters, formulas, and summaries. Use when working with . base files, creating database-like views of notes, or when the user mentions Bases, table views, card views, filters, or formulas in Obsidian.* | openclaw-managed | +| 📦 | `obsidian-cli` | **中文:** 使用 Obsidian CLI 与 Obsidian 保险库交互

**English:** *Interact with Obsidian vaults using the Obsidian CLI to read, create, search, and manage notes, tasks, properties, and more. Also supports plugin and theme development with commands to reload plugins, run JavaScript, capture errors, take screenshots, and inspect the DOM. Use when the user asks to interact with their Obsidian vault, manage notes, search vault content, perform vault operations from the command line, or develop and debug Obsidian plugins and themes.* | openclaw-managed | +| 📦 | `ontology` | **中文:** 用于结构化代理记忆的 typed 知识图谱

**English:** *Typed knowledge graph for structured agent memory and composable skills. Use when creating/ querying entities (Person, Project, Task, Event, Document), linking related objects, enforcing constraints, planning multi-step actions as graph transformation s, or when skills need to share state. Trigger on "remember", "what do I know about", "link X to Y", "show dependencies", entity CRUD, or cross- skill data access.* | agents-skills-personal | +| 📦 | `tavily-search` | **中文:** 通过 Tavily API 进行网络搜索

**English:** *Web search via Tavily API (alternative to Brave). Use when the user asks to search the web / look up sources / find links and Brave web_ search is unavailable or undesired. Returns a small set of relevant results (title, url, snippet) and can optionally include short answer summaries.* | openclaw-managed | +| 📦 | `Powerpoint` | **中文:** Create, inspect, and edit Microsoft PowerPoint presentations and PPTX decks with reliable layouts, templates, placeholders, notes, charts, and visual QA. Use when (1) the task is about PowerPoint or `.pptx`; (2) layouts, placeholders, notes, charts, comments, or template fidelity matter; (3) the deck must render cleanly after edits.

**English:** *Create, inspect, and edit Microsoft PowerPoint presentations and PPTX decks with reliable layouts, templates, placeholders, notes, charts, and visual QA. Use when (1) the task is about PowerPoint or `.pptx`; (2) layouts, placeholders, notes, charts, comments, or template fidelity matter; (3) the deck must render cleanly after edits.* | openclaw-managed | +| 📦 | `proactive-agent-lite` | **中文:** 将 AI 代理从任务执行者转变为主动合作伙伴

**English:** *Transform AI agents from task- followers into proactive partners with memory architecture, reverse prompting, and self- healing patterns. Lightweight version focused on core proactive capabilities.* | openclaw-managed | +| 📦 | `self-improvement` | **中文:** 捕获学习、错误和修正以实现持续改进

**English:** *Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong.. .', 'Actually. ..'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.* | openclaw-managed | +| 📦 | `skill-vetter` | **中文:** AI 代理的安全优先技能审查

**English:** *Security- first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns. ✓ ready 📦 task-summary 任务执行总结技 能。用于在完成 任务后生成结构 化的任务总结, 记录任务目标、 执行步骤、结果 和经验教训,以 便后续追溯和改 进。* | agents-skills-personal | +| 📦 | `backtest-expert` | **中文:** 系统交易策略回测的专家指导

**English:** *Expert guidance for systematic backtesting of trading strategies. Use when developing, testing, stress- testing, or validating quantitative trading strategies. Covers "beating ideas to death" methodology, parameter robustness testing, slippage modeling, bias prevention, and interpreting backtest results. Applicable when user asks about backtesting, strategy validation, robustness testing, avoiding overfitting, or systematic trading development. ✓ ready 📦 bazi 四柱八字命理分 析。通过交互式 步骤收集出生信 息(姓名、曾用 名、阳历/ 农历生日、时辰 、性别、出生地 ), 排出四柱八字, 参照经典命理典 籍(穷通宝典、 三命通会、滴天 髓、渊海子平、 子平真诠等)进 行专业分析。 Use this skill whenever the user asks for 八字、四柱、命 理、算命、Bazi 、fortune telling、 birth chart analysis, or wants to know about their 八字命盘、运势 、大运、流年. Triggers: "算八字", "看八字", "批八字", "排八字", "四柱", "命盘", "算命", "帮我看看八字" , "我想算八字", "分析八字", "排盘", "bazi", "bazi analysis", "fortune telling", "birth chart", "算一卦", "看运势", "命运分析". 即使只是提到" 算命"、"八字" 而没有明确说要 用skill,也应 该使用此skill 。* | agents-skills-personal | +| 📦 | `blog-writer` | **中文:** 以作家独特风格撰写博客文章

**English:** *This skill should be used when writing blog posts, articles, or long-form content in the writer's distinctive writing style. It produces authentic, opinionated content that matches the writer's voice—direct, conversational , and grounded in personal experience. The skill handles the complete workflow from research review through Notion publication. Use this skill for drafting blog posts, thought leadership pieces, or any writing meant to reflect the writer's perspective on AI, productivity, sales, marketing, or technology topics.* | agents-skills-personal | +| 📦 | `brainstorming` | **中文:** 在任何创意工作之前必须使用

**English:** *You MUST use this before any creative work - creating features, building components, adding functionality, or modifying behavior. Explores user intent, requirements and design before implementation .* | agents-skills-personal | +| 📦 | `clawdefender` | **中文:** AI 代理的安全扫描器和输入清理器

**English:** *Security scanner and input sanitizer for AI agents. Detects prompt injection, command injection, SSRF, credential exfiltration, and path traversal attacks. Use when (1) installing new skills from ClawHub, (2) processing external input like emails, calendar events, Trello cards, or API responses, (3) validating URLs before fetching, (4) running security audits on your workspace. Protects agents from malicious content in untrusted data sources.* | agents-skills-personal | +| 📦 | `Code` | **中文:** Coding workflow with planning, implementation , verification, and testing for clean software development.

**English:** *Coding workflow with planning, implementation , verification, and testing for clean software development.* | agents-skills-personal | +| 📦 | `content-strategy` | **中文:** 为独立创业者业务构建和执行内容营销策略

**English:** *Build and execute a content marketing strategy for a solopreneur business. Use when planning what content to create, deciding on content formats and channels, building a content calendar, measuring content performance, or systematizing content production. Covers audience research for content, content pillars, distribution strategy, repurposing workflows, and metrics. Trigger on "content strategy", "content marketing", "what content should I create", "content plan", "content calendar", "content ideas", "content distribution", "grow through content".* | agents-skills-personal | +| 📦 | `diamond-sutra` | **中文:** Use this skill to answer questions related to the Diamond Sutra (Mahayana Buddhism, Prajna division) and when the user seeks spiritual or psychological advice on letting go of anxiety, workplace stress, and social labels using modern Buddhist interpretation s from Master Nan Huai-Jin and Prof. Fei Yong.

**English:** *Use this skill to answer questions related to the Diamond Sutra (Mahayana Buddhism, Prajna division) and when the user seeks spiritual or psychological advice on letting go of anxiety, workplace stress, and social labels using modern Buddhist interpretation s from Master Nan Huai-Jin and Prof. Fei Yong.* | agents-skills-personal | +| 📦 | `executing-plans` | **中文:** 当你有书面实施计划时使用

**English:** *Use when you have a written implementation plan to execute in a separate session with review checkpoints* | agents-skills-personal | +| 📦 | `FFmpeg` | **中文:** Generate commands from natural language video editing requests - cut, trim, convert, compress, change aspect ratio, extract audio, and more.

**English:** *Generate commands from natural language video editing requests - cut, trim, convert, compress, change aspect ratio, extract audio, and more.* | agents-skills-personal | +| 📦 | `find-skills` | **中文:** 帮助用户发现和安装代理技能

**English:** *Helps users discover and install agent skills when they ask questions like "how do I do X", "find a skill for X", "is there a skill that can...", or express interest in extending capabilities. This skill should be used when the user is looking for functionality that might exist as an installable skill.* | agents-skills-personal | +| 📦 | `frontend-design` | **中文:** 创建独特、生产级的前端界面,具有高设计质量

**English:** *Create distinctive, production- grade frontend interfaces with high design quality. Use this skill when building web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.* | agents-skills-personal | +| 📦 | `git-essentials` | **中文:** 版本控制、分支和协作的基本 Git 命令和工作流

**English:** *Essential Git commands and workflows for version control, branching, and collaboration.* | agents-skills-personal | +| 📦 | `laozi-confucius-buddha-wisdom` | **中文:** 查询老子、孔子和佛陀的智慧

**English:** *Query wisdom from Laozi (Daoism), Confucius (Confucianism) , and Buddha (Buddhism) - core teachings, quotes, and applied insights.* | agents-skills-personal | +| 📦 | `Market` | **中文:** Size markets, analyze competitors, and validate opportunities with practical frameworks and free data sources.

**English:** *Size markets, analyze competitors, and validate opportunities with practical frameworks and free data sources.* | agents-skills-personal | +| 📦 | `Memory` | **中文:** Infinite organized memory that complements your agent's built-in memory with unlimited categorized storage. ✓ ready 📦 huashu-nuwa 女娲造人:输入 人名/主题/ 甚至只是模糊需 求,自动深度调 研→思维框架提 炼→生成可运行 的人物Skill。 两种入口:(1) 明确人名→直接 蒸馏 (2)模糊需求→诊 断推荐→再蒸馏 。 触发词:「造sk ill」「蒸馏XX 」「女娲」「造 人」「XX的思维 方式」「做个XX 视角」「更新XX 的skill」。 模糊需求也触发 :「我想提升决 策质量」「有没 有一种思维方式 能帮我... 」「我需要一个 思维顾问」。

**English:** *Infinite organized memory that complements your agent's built-in memory with unlimited categorized storage. ✓ ready 📦 huashu-nuwa 女娲造人:输入 人名/主题/ 甚至只是模糊需 求,自动深度调 研→思维框架提 炼→生成可运行 的人物Skill。 两种入口:(1) 明确人名→直接 蒸馏 (2)模糊需求→诊 断推荐→再蒸馏 。 触发词:「造sk ill」「蒸馏XX 」「女娲」「造 人」「XX的思维 方式」「做个XX 视角」「更新XX 的skill」。 模糊需求也触发 :「我想提升决 策质量」「有没 有一种思维方式 能帮我... 」「我需要一个 思维顾问」。* | agents-skills-personal | +| 📦 | `obsidian-ontology-sync` | **中文:** Obsidian PKM 和结构化本体之间的双向同步

**English:** *Bidirectional sync between Obsidian PKM (human- friendly notes) and structured ontology (machine- queryable graph). Automatically extracts entities and relationships from markdown, maintains ontology graph, and provides feedback to improve note structure. Run sync every few hours via cron.* | agents-skills-personal | +| 📦 | `opencode-controller` | **中文:** 通过斜杠命令控制和操作 Opencode

**English:** *Control and operate Opencode via slash commands. Use this skill to manage sessions, select models, switch agents (plan/build), and coordinate coding through Opencode. ✓ ready 📦 poetry-master 诗词雅韵助手—— 中华传统诗词专 业点评与润色。 此技能应在以下 场景触发:用户 提交古体诗、近 体诗(五绝、七 绝、五律、七律 )、宋词、元曲 等中华传统诗词 作品并请求点评 、赏析、修改或 润色;用户询问 诗词格律(平仄 、押韵、对仗、 词谱);用户请 求诗词创作指导 或灵感建议。覆 盖体裁包括但不 限于古风、绝句 、律诗、词(小 令、中调、长调 )、散曲等。* | agents-skills-personal | +| 📦 | `qmd` | **中文:** 使用 QMD 搜索 markdown 知识库、笔记和文档

**English:** *Search markdown knowledge bases, notes, and documentation using QMD. Use when users ask to search notes, find documents, or look up information.* | agents-skills-personal | +| 📦 | `security-auditor` | **中文:** 审查代码安全漏洞、实施身份验证流程、审计 OWASP Top 10

**English:** *Use when reviewing code for security vulnerabilitie s, implementing authentication flows, auditing OWASP Top 10, configuring CORS/CSP headers, handling secrets, input validation, SQL injection prevention, XSS protection, or any security- related code review. ⏸ disabled 📦 Self-Improving Agent (With Self-Reflection) Self- reflection + Self- criticism + learning from corrections. Agent evaluates its own work, catches mistakes, and improves permanently. ✓ ready 📦 SEO (Site Audit + Content Writer + Competitor Analysis) SEO specialist agent with site audits, content writing, keyword research, technical fixes, link building, and ranking strategies.* | agents-skills-personal | +| 📦 | `seo-content-writer` | **中文:** 创建在搜索引擎中排名的高质量、SEO 优化内容

**English:** *Use when the user asks to "write SEO content", "create a blog post", "write an article", "content writing", "draft optimized content", "write me an article", "create a blog post about", "help me write SEO content", or "draft content for". Creates high- quality, SEO- optimized content that ranks in search engines. Applies on- page SEO best practices, keyword optimization, and content structure for maximum visibility and engagement. For AI citation optimization, see geo- content- optimizer. For updating existing content, see content- refresher.* | agents-skills-personal | +| 📦 | `social-content` | **中文:** 帮助创建、安排或优化 LinkedIn、Twitter/X、Instagram、TikTok、Facebook 或其他平台的内容

**English:** *When the user wants help creating, scheduling, or optimizing social media content for LinkedIn, Twitter/X, Instagram, TikTok, Facebook, or other platforms. Also use when the user mentions 'LinkedIn post,' 'Twitter thread,' 'social media,' 'content calendar,' 'social scheduling,' 'engagement,' or 'viral content.' This skill covers content creation, repurposing, and platform- specific strategies.* | agents-skills-personal | +| 📦 | `Social` | **中文:** Plan, draft, and organize social media content across platforms. Create content calendars, write platform- optimized posts, and maintain consistent posting schedules.

**English:** *Plan, draft, and organize social media content across platforms. Create content calendars, write platform- optimized posts, and maintain consistent posting schedules.* | agents-skills-personal | +| 📦 | `su-dongpo-perspective` | **中文:** 苏东坡(苏轼)的思维框架与表达方式

**English:** *苏东坡(苏轼, 1037- 1101)的思维框 架与表达方式。 基于诗词文章、 史书传记、千年 评述的深度研究 , 提炼6个核心心 智模型、8条决 策启发式和完整 的表达DNA。 用途:作为思维 顾问,用苏东坡 的视角分析问题 、审视抉择、提 供逆境中的智慧 。 当用户提到「用 苏东坡的视角」 「苏东坡会怎么 看」「东坡模式 」「苏东坡 perspective」 时使用。 即使用户只是说 「帮我用苏东坡 的角度想想」「 如果苏东坡会怎 么做」「切换到 苏东坡」也应触 发。 适用于:逆境咨 询、审美鉴赏、 人生进退的抉择 、文学创作、跨 时空的精神对话 。 △ needs setup 📜 Today in History - 历史上的今天 按月日查询历史 上同日大事、诞 辰与逝世等。当 用户说:历史上 的今天发生了什 么?3 月 15 日有什么大事? 或类似历史纪事 问题时,使用本 技能。* | agents-skills-personal | +| 📦 | `ui-ux-pro-max` | **中文:** UI/UX 设计智能和实施指导,用于构建精美界面

**English:** *UI/UX design intelligence and implementation guidance for building polished interfaces. Use when the user asks for UI design, UX flows, information architecture, visual style direction, design systems/ tokens, component specs, copy/ microcopy, accessibility, or to generate/ critique/ refine frontend UI (HTML/CSS/JS, React, Next. js, Vue, Svelte, Tailwind). Includes workflows for (1) generating new UI layouts and styling, (2) improving existing UI/ UX, (3) producing design-system tokens and component guidelines, and (4) turning UX recommendation s into concrete code changes.* | agents-skills-personal | +| 📦 | `wisdom-claw` | **中文:** 佛教智慧和正念对话伴侣

**English:** *Buddhist wisdom and mindful dialogue companion. Built on Madhyamaka (Middle Way) philosophy, integrating meditation, dialog skills, and classic Buddhist teachings. Use when: (1) helping users understand core Buddhist teachings (emptiness, no-self, middle way), (2) guiding users to see their own attachments in conversation, (3) pointing with force rather than lecturing. Triggered when users ask about Buddhist philosophy, practice confusion, life challenges, or encounter dilemmas.* | agents-skills-personal | +| 📦 | `writing-plans` | **中文:** 当你有规范或需求时使用

**English:** *Use when you have a spec or requirements for a multi- step task, before touching code ✓ ready 📦 xiao-jue 小觉是一个看过 很多佛法的AI助 手。心法和wisd om- claw一样,但更 纯粹、更直接。 不说教,不啰嗦 ,一句话点到。 用于佛法讨论、 当下对话。 ✓ ready 📦 zen-master 禅宗禅师技能 - 将任意 Agent 转型为精通禅宗 经论、公案、语 录的禅宗大法师 。包含完整知识 库(心经、金刚 经、坛经、公案 、禅诗),支持 一键安装。* | agents-skills-personal | + +### △ Needs Setup (32 个) + +| 图标 | 技能 | 描述 | 来源 | +|------|------|------|------| +| 📦 | `bear-notes` | **中文:** 通过 grizzly CLI 创建、搜索和管理 Bear 笔记

**English:** *Create, search, and manage Bear notes via grizzly CLI.* | openclaw-bundled | +| 📦 | `blogwatcher` | **中文:** 使用 blogwatcher CLI 监控博客和 RSS/Atom 订阅更新

**English:** *Monitor blogs and RSS/Atom feeds for updates using the CLI.* | openclaw-bundled | +| 📦 | `🫐 blucli` | **中文:** BluOS CLI (blu) for discovery, playback, grouping, and volume.

**English:** *BluOS CLI (blu) for discovery, playback, grouping, and volume.* | openclaw-bundled | +| 📦 | `🫧 bluebubbles` | **中文:** Use when you need to send or manage iMessages via BlueBubbles (recommended iMessage integration). Calls go through the generic message tool with channel="blueb ubbles".

**English:** *Use when you need to send or manage iMessages via BlueBubbles (recommended iMessage integration). Calls go through the generic message tool with channel="blueb ubbles".* | openclaw-bundled | +| 📦 | `camsnap` | **中文:** 从 RTSP/ONVIF 摄像头捕获帧或片段

**English:** *Capture frames or clips from RTSP/ONVIF cameras.* | openclaw-bundled | +| 📦 | `discord` | **中文:** 通过 message 工具进行 Discord 操作

**English:** *Discord ops via the message tool (channel=disco rd).* | openclaw-bundled | +| 📦 | `eightctl` | **中文:** 控制 Eight Sleep pods(状态、温度、闹钟、日程)

**English:** *Control Eight Sleep pods (status, temperature, alarms, schedules).* | openclaw-bundled | +| 📦 | `✨ gemini` | **中文:** Gemini CLI for one-shot Q&A, summaries, and generation.

**English:** *Gemini CLI for one-shot Q&A, summaries, and generation.* | openclaw-bundled | +| 📦 | `gh-issues` | **中文:** 获取 GitHub issues,生成子代理实施修复并打开 PR,然后监控和处理 PR 审查评论

**English:** *Fetch GitHub issues, spawn sub-agents to implement fixes and open PRs, then monitor and address PR review comments. Usage: /gh- issues [owner/ repo] [-- label bug] [-- limit 5] [-- milestone v1. 0] [-- assignee @me] [--fork user/ repo] [-- watch] [-- interval 5] [- -reviews- only] [-- cron] [--dry- run] [--model glm-5] [-- notify- channel - 1002381931352]* | openclaw-bundled | +| 📦 | `gifgrep` | **中文:** Search GIF providers with CLI/TUI, download results, and extract stills/sheets.

**English:** *Search GIF providers with CLI/TUI, download results, and extract stills/sheets.* | openclaw-bundled | +| 📦 | `github` | **中文:** GitHub operations via `gh` CLI: issues, PRs, CI runs, code review, API queries. Use when: (1) checking PR status or CI, (2) creating/ commenting on issues, (3) listing/ filtering PRs or issues, (4) viewing run logs. NOT for: complex web UI interactions requiring manual browser flows (use browser tooling when available), bulk operations across many repos (script with gh api), or when gh auth is not configured.

**English:** *GitHub operations via `gh` CLI: issues, PRs, CI runs, code review, API queries. Use when: (1) checking PR status or CI, (2) creating/ commenting on issues, (3) listing/ filtering PRs or issues, (4) viewing run logs. NOT for: complex web UI interactions requiring manual browser flows (use browser tooling when available), bulk operations across many repos (script with gh api), or when gh auth is not configured.* | openclaw-bundled | +| 📦 | `goplaces` | **中文:** Query Google Places API (New) via the goplaces CLI for text search, place details, resolve, and reviews. Use for human- friendly place lookup or JSON output for scripts.

**English:** *Query Google Places API (New) via the goplaces CLI for text search, place details, resolve, and reviews. Use for human- friendly place lookup or JSON output for scripts.* | openclaw-bundled | +| 📦 | `himalaya` | **中文:** CLI to manage emails via IMAP/SMTP. Use `himalaya` to list, read, write, reply, forward, search, and organize emails from the terminal. Supports multiple accounts and message composition with MML (MIME Meta Language).

**English:** *CLI to manage emails via IMAP/SMTP. Use `himalaya` to list, read, write, reply, forward, search, and organize emails from the terminal. Supports multiple accounts and message composition with MML (MIME Meta Language).* | openclaw-bundled | +| 📦 | `imsg` | **中文:** iMessage/SMS CLI for listing chats, history, and sending messages via Messages.app.

**English:** *iMessage/SMS CLI for listing chats, history, and sending messages via Messages.app.* | openclaw-bundled | +| 📦 | `mcporter` | **中文:** Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad- hoc servers, config edits, and CLI/type generation.

**English:** *Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad- hoc servers, config edits, and CLI/type generation.* | openclaw-bundled | +| 📦 | `model-usage` | **中文:** Use CodexBar CLI local cost usage to summarize per- model usage for Codex or Claude, including the current (most recent) model or a full model breakdown. Trigger when asked for model-level usage/cost data from codexbar, or when you need a scriptable per-model summary from codexbar cost JSON.

**English:** *Use CodexBar CLI local cost usage to summarize per- model usage for Codex or Claude, including the current (most recent) model or a full model breakdown. Trigger when asked for model-level usage/cost data from codexbar, or when you need a scriptable per-model summary from codexbar cost JSON.* | openclaw-bundled | +| 📦 | `nano-pdf` | **中文:** Edit PDFs with natural- language instructions using the nano-pdf CLI.

**English:** *Edit PDFs with natural- language instructions using the nano-pdf CLI.* | openclaw-bundled | +| 📦 | `notion` | **中文:** Notion API for creating and managing pages, databases, and blocks.

**English:** *Notion API for creating and managing pages, databases, and blocks.* | openclaw-bundled | +| 📦 | `obsidian` | **中文:** Work with Obsidian vaults (plain Markdown notes) and automate via obsidian-cli.

**English:** *Work with Obsidian vaults (plain Markdown notes) and automate via obsidian-cli.* | openclaw-bundled | +| 📦 | `openai-whisper-api` | **中文:** 通过 OpenAI Audio Transcriptions API (Whisper) 转录音频

**English:** *Transcribe audio via OpenAI Audio Transcriptions API (Whisper).* | openclaw-bundled | +| 📦 | `openhue` | **中文:** 通过 OpenHue CLI 控制飞利浦 Hue 灯光和场景

**English:** *Control Philips Hue lights and scenes via the OpenHue CLI.* | openclaw-bundled | +| 📦 | `oracle` | **中文:** 使用 oracle CLI 的最佳实践(prompt + 文件绑定、引擎、会话和文件附件模式)

**English:** *Best practices for using the oracle CLI (prompt + file bundling, engines, sessions, and file attachment patterns).* | openclaw-bundled | +| 📦 | `ordercli` | **中文:** Foodora 专用 CLI,用于查看历史订单和当前订单状态

**English:** *Foodora-only CLI for checking past orders and active order status (Deliveroo WIP).* | openclaw-bundled | +| 📦 | `peekaboo` | **中文:** 使用 Peekaboo CLI 捕获和自动化 macOS UI

**English:** *Capture and automate macOS UI with the Peekaboo CLI.* | openclaw-bundled | +| 📦 | `songsee` | **中文:** 使用 songsee CLI 从音频生成频谱图和特征面板可视化

**English:** *Generate spectrograms and feature- panel visualizations from audio with the songsee CLI.* | openclaw-bundled | +| 📦 | `sonoscli` | **中文:** 控制 Sonos 扬声器(发现/状态/播放/音量/分组)

**English:** *Control Sonos speakers (discover/ status/play/ volume/group).* | openclaw-bundled | +| 📦 | `spotify-player` | **中文:** 通过 spogo(首选)或 spotify_player 终端控制 Spotify 播放/搜索

**English:** *Terminal Spotify playback/ search via spogo (preferred) or spotify_ player.* | openclaw-bundled | +| 📦 | `✅ things-mac` | **中文:** Manage Things 3 via the `things` CLI on macOS (add/ update projects+todos via URL scheme; read/ search/list from the local Things database). Use when a user asks OpenClaw to add a task to Things, list inbox/today/ upcoming, search tasks, or inspect projects/ areas/tags.

**English:** *Manage Things 3 via the `things` CLI on macOS (add/ update projects+todos via URL scheme; read/ search/list from the local Things database). Use when a user asks OpenClaw to add a task to Things, list inbox/today/ upcoming, search tasks, or inspect projects/ areas/tags.* | openclaw-bundled | +| 📦 | `trello` | **中文:** 通过 Trello REST API 管理 Trello 看板、列表和卡片

**English:** *Manage Trello boards, lists, and cards via the Trello REST API.* | openclaw-bundled | +| 📦 | `voice-call` | **中文:** Start voice calls via the OpenClaw plugin.

**English:** *Start voice calls via the OpenClaw plugin.* | openclaw-bundled | +| 📦 | `wacli` | **中文:** 发送 WhatsApp 消息或通过 wacli CLI 搜索/同步 WhatsApp 历史记录

**English:** *Send WhatsApp messages to other people or search/ sync WhatsApp history via the wacli CLI (not for normal user chats).* | openclaw-bundled | +| 📦 | `xurl` | **中文:** 用于向 X (Twitter) API 发出认证请求的 CLI 工具

**English:** *A CLI tool for making authenticated requests to the X (Twitter) API. Use this skill when you need to post tweets, reply, quote, search, read posts, manage followers, send DMs, upload media, or interact with any X API v2 endpoint.* | openclaw-bundled | + +--- + +## 统计 + +| 状态 | 数量 | +|------|------| +| ✅ Ready | 62 | +| △ Needs Setup | 32 | +| **总计** | **94** | + +--- + +*此表由星枢自动生成* +*最后更新:2026-04-18 18:42* \ No newline at end of file diff --git a/raw/.DS_Store b/raw/.DS_Store new file mode 100644 index 0000000000000000000000000000000000000000..34c44a881dc167a0c63af1408bd5b55aff2b38f8 GIT binary patch literal 8196 zcmeHM&2JM&6o2Dgam>p(h5rmi3kX3QlTDdoB)kDIL(IOC<$iQo|q+@8MC`i zN~1`YdThCH>8%&;RO*cz`~h&}irQW{_EK?#Hy;Lj14lk2W~`at?9BV^d-L1%>^>U+ zNU>R)02l)R3#&johs`^Rm=|?V$>@;*M1p*PWG>`YKji)%TQgu3FbWt2i~>dhqrm5( z06w!tvEK9CSF@%y3K#{xNCm|H;9wP4(AZKaw+?J%3V_&)!?Iu>^8m?lG!`_r6iO(VmIUP>A%7JV%-XDJV3pQNSp$R{@c`_rV3I z0|nNVzl$$Y5$ow!vPf!&rN13Fbf*8%Z-hadoIU%DWO{o0`uAD;temyx-sIbE;w8Q#0waWBq69#G+DhCuo~Yk@+ParlIyAoD{Eyd_K}^P z$#c`=&cyj|cE_EaiHWJnac6pZa(6dtjpomMw@}##HyQs`1`R~-88E1h-?YDBuVYC; zbxSXaJZUfKxox)>mHjF=Fu4DKJv4l9Xk=(~bo9{Su_MDrzpmH^eXqJvk3_IDJmgU^ zY|@H-AjT!nRXLlF=oT)uoY0>VH~1N+hEs$ETD$&sXz@-1ZARV>$dg`C`mEIG&ImgyHdK3|q8e%G5qEU>vhf`kmqR3-)TD-Fs zdOi(HtjLpuZ|0yA}`NB!nvmxKs)*5N|G?M(I4b@#_oKYmr ztHXTZiZ-#}6yAw0tio+*!S8S%{)ETy6#j+(;T0Jqhsbeqij0#f@+~Ql3uJ+;kQ>A! zw-i6qzRbt;`81FiI~|vK%Z*sbSsh0OBZEHYI)1kj_x)d3JMa7bFasfQXhIDfIDvH* zzb{)*f(FFhTyi|c&A|`I+(df^?bq=WKow|;buY#0N81E$A}dOJ$cRT@XLS9j*#@39 z#7`=kOq8fO;~{z=S$9^v>WkN* zcNOu%;b6UiRTN>@QYb0d2oo_b({aQ%e;8ul(Q^fjErmFP#k>ee8BAjo_^1lJ2L6>l AkpKVy literal 0 HcmV?d00001 diff --git a/raw/Agent/.DS_Store b/raw/Agent/.DS_Store new file mode 100644 index 0000000000000000000000000000000000000000..fcfaa8580fbb99b9e47855f487d64721b4e799f8 GIT binary patch literal 8196 zcmeHMO>7%Q6n^6b;t)bM1)YeRYFL>4XL+sKyWFiA|V7fghT{~N=R@(;#R(yT_=v?WV_z$@Eol&p#5bzLqC=uYl4-zV;A(s{%Dt(xO8#g2EhCP)C)yPYmX$LoT`VLM|;j)KMqqK0cW1nYk|%CcMMGB&HJ! zIn--C1Uv-xBfyVKv-@J#_q^YAvdNm%jC4vfQkaFAK7QzK-WNrfIz%&7uyU^E?Nm-v zEqieAN9L=mf8@~ye}litzZiSdD8%ffowveCbDsBR3`0wm`DE(6suU7|_6b9`ld7(m zLP3=kOj(#!b=fF{jl3>fLO13N_#6F=iNLXqjgjH8erag@h0T6xV`yk}q+c2v8`<1! z^mhcGKRumT)v~%#5{n?_{-ywkz2!Q(hb&P|uenQPcgsusIS?o>vhlH|$D5C|1X|mU zwzju+baZq+(RHlt$>WK@(Nr?MnlX9s6NYA(VJ)vD0xcFGm`oe`l&P#?>2tR7mK{?s zVW_Q2VOo)wc11JmIm~I_6$qo}OhwV>Go~s>S5_>=o~z*F+*{f-G;PYTR9iLl_=50m zE7?hX#ehd1K{UsQtn-R#f$r0piziJpsb`e%`l6OhDOywy8@6p^=TxkMM=o5(a>=x+ zXM(T%;h@_X4D~u(fP!Vf{q1GWr7ZZ>s>9CchOR(q%IO9}uenqF)JJD1MhkS2iu56U zOrO)&^et`EUv!@}vrcw`^|5|7%3fq4c7{!}dA7`w?1H23D{uQ#u05A93(O(gz7{ie z&CoNL#Vs6143qfk^*X+JWyv5@d;^;SXOKn~MrNo0et;%$&a#w)>=dZH_iRxZwoX-? zt#+J74H|ipVR-;OgLBvG^1aG!?T6*lm%p!R=T?=SlXOnRl7TgDXEgF0BIaM{_z52X zeygNnOe=j^`shMWq6M;H8blofH%KFBhiJT(FLt8JS0_-IpsCqjw0R(5!Lu0|Si5@T zPAU*Nvh+c|xAfb!?V7gUud>yH_+CPl#L9JAL6jL`Re{V#{Cqtbc;TpWi796Am6^3X zh+nTtgrDB=AS2E+aNwE}tmuf`hFze7{z=q4_DzO_`>nBiKC>$Nmv?NhK-aNjgR?mz z@W5?Ll!Am~FAJX;NO&$u7%lIQg&vPba`$8u+={RvA!GRZ`KT@;x2UIPY`;{+*6qgD zhh5suFlnp%y>G7EyEs<*{T;e;Z~C)X=i;x?h3uJHHtVLVZ2GYh3sIyIJEv7Qhsf^A zo1-VvFh3jpDSqejr%L=%6LM^v2IJ4Z``uP|gd$(Op~e0_AQy*g=OXdEuk_H%J(O;3 zwNMm$$Ftp8Z2`V!1%j)HG>3T8q-6hG`sCVnW(#B0xj&5Tud(AI_bdH%N8ir#yx&2T zW0-#?6`%<6IO1Trc6I)yd{?ZvmQ8*JDs7_s085=?yNkd7Up@Hy{{xJ`GwmVZA@E-# z!0OM&&hkG$*a4CFAeT^=QF-C>iVhVjX!sN^7te9foqrgDm)x 来源: https://github.com/mvanhorn/last30days-skill -> 更新时间: 2026-03-29 -> 版本: v2.9.5 - ---- - ## 概述 `/last30days` 研究过去 30 天内在 Reddit、X、YouTube、TikTok、Instagram、Hacker News、Polymarket 和网页上的热门内容,生成研究报告。 diff --git a/raw/Skills/Obsidian 必装 Skills.md b/raw/Skills/Obsidian 必装 Skills.md index 7d352e25..c9e0848a 100644 --- a/raw/Skills/Obsidian 必装 Skills.md +++ b/raw/Skills/Obsidian 必装 Skills.md @@ -1,3 +1,4 @@ +#obsidian #obsidian-cli #skills #claude-code #openclaw #hermes | 作者 | Skill名称 | 功能描述 | 推荐度 | | :------------------------------------------------------------------------ | :---------------------- | :------------------------------------------------------------------------------------------------------------------ | :-- | diff --git a/wiki/bookmarks.md b/wiki/bookmarks.md index 61e557aa..9a0e530c 100644 --- a/wiki/bookmarks.md +++ b/wiki/bookmarks.md @@ -1,7 +1,7 @@ # Chrome Bookmarks -> 共 330 条书签(已排除 OpenText) -> 导出时间: 2026-04-17 10:50 +> 共 332 条书签(已排除 OpenText) +> 导出时间: 2026-04-18 17:50 --- @@ -9,328 +9,421 @@ | Title | |---| -| **Agent Base** | -| **Google Tasks** | -| **Immersive Translate ** | -| **Inoreader** | -| **Quartz** | -| **Synology Photos** | +| Agent Base | +| Google Tasks | +| Grafana Dashboard | +| Immersive Translate | +| Inoreader | +| Quartz | +| Synology Photos | ### AI -| **Prompt Engineering** | **Text Image to Video** | **Vibe Coding** | **图片编辑** | **宝藏网站** | **算力平台** | -| --- | --- | --- | --- | --- | --- | -| **Anthropic** | **Runway** | **Vibe Coding** | **Dreamina** | **Decopy.ai** | **Wavespeed AI** | -| **Google Vertex AI Prompts** | **Hailuo AI ** | **vibe-coding-cn** | **Image Prompt (TTV, ITV)** | | **Siliconflow** | -| **Github ChatGPT Prompts** | **Capcut ** | **Claude Skills** | | | **端脑云** | -| **Prompt Hero** | **Pictory** | **ComposioHQ awesome-claude-skills** | | | **KIE AI** | -| **Anthropic Prompt Library** | | **VoltAgent awesome-claude-skills** | | | **Mega LLM** | -| **OpenAI Prompt Libary** | | **BehiSecc awesome-claude-skills** | | | **Vidu** | -| **Snack Prompt** | | **Skills Mp** | | | **Open Router** | -| **Hero Prompt Library** | | **Claude Marketplace** | | | | -| **Prompt Gallary** | | | | | | + + + + + + + + + + + +
Prompt EngineeringText Image to Video
Anthropic Runway
Google Vertex AI Prompts Hailuo AI
Github ChatGPT Prompts Capcut
Prompt Hero Pictory
Anthropic Prompt Library
OpenAI Prompt Libary
Snack Prompt
Hero Prompt Library
Prompt Gallary
+ + + + + + + + + + + +
Vibe Coding图片编辑
Vibe Coding Dreamina
vibe-coding-cn Image Prompt (TTV, ITV)
Claude Skills
ComposioHQ awesome-claude-skills
VoltAgent awesome-claude-skills
BehiSecc awesome-claude-skills
Skills Mp
Claude Marketplace
+ + + + + + + + + + +
宝藏网站算力平台
Decopy.ai Wavespeed AI
Siliconflow
端脑云
KIE AI
Mega LLM
Vidu
Open Router
+ | Title | |---| -| **AI Comparison** | -| **AI 星踪岛** | -| **ChatGPT** | -| **ChatGPT** | -| **ComfyUI** | -| **DeepSeek** | -| **Deepsider** | -| **DesignKit** | -| **F5-TTS Local** | -| **Firecrawl** | -| **Fliki: AI Video Generator - Turn Ideas into Videos** | -| **Google Gemini** | -| **Google Gemini API** | -| **Heygen** | -| **https://www.perplexity.ai/** | -| **Keling AI** | -| **MCP Documentation** | -| **Note GPT** | -| **Notebook LM** | -| **Notegpt youtube video summarizer** | -| **Open AI** | -| **Open AI Platform - Open AI API key** | -| **Open Router** | -| **Pippit** | -| **SillyTavern** | -| **Smithery - MCP marketplace** | -| **wavespeed image edit** | -| **wavespeed image translator** | -| **Weights & Biases - AI platform** | -| **YouMind** | -| **象寄 (图片翻译,编辑)** | +| AI Comparison | +| AI 星踪岛 | +| ChatGPT | +| ChatGPT | +| ComfyUI | +| DeepSeek | +| Deepsider | +| DesignKit | +| F5-TTS Local | +| Firecrawl | +| Fliki: AI Video Generator - Turn Ideas into Videos | +| Google Gemini | +| Google Gemini API | +| Heygen | +| https://www.perplexity.ai/ | +| Keling AI | +| MCP Documentation | +| Note GPT | +| Notebook LM | +| Notegpt youtube video summarizer | +| Open AI | +| Open AI Platform - Open AI API key | +| Open Router | +| Pippit | +| SillyTavern | +| Smithery - MCP marketplace | +| wavespeed image edit | +| wavespeed image translator | +| Weights & Biases - AI platform | +| YouMind | +| 象寄 (图片翻译,编辑) | ### Finance | Title | |---| -| **中银香港** | -| **汇丰香港** | +| 中银香港 | +| 汇丰香港 | ### Google | Title | |---| -| **Gmail** | -| **Google Account** | -| **Google AI Studio** | -| **Google Calendar** | -| **Google Cloud** | -| **Google Cloud Console** | -| **Google Doc** | -| **Google Driver** | -| **Google Finance** | -| **Google Gemini API** | -| **Google Keep** | -| **Google NotebookLM** | -| **Google Opal** | -| **Google Sheets** | -| **Google Vids** | +| Gmail | +| Google Account | +| Google AI Studio | +| Google Calendar | +| Google Cloud | +| Google Cloud Console | +| Google Doc | +| Google Driver | +| Google Finance | +| Google Gemini API | +| Google Keep | +| Google NotebookLM | +| Google Opal | +| Google Sheets | +| Google Vids | ### Home Network -| **Macmini** | **NAS** | **Ubuntu1** | **Ubuntu2** | **VPS1** | **VPS2** | -| --- | --- | --- | --- | --- | --- | -| **Macmini - Portainer - Local** | **NAS - Portainer - Internal** | **Ubuntu1 - Portainer - Internal** | **Ubuntu2 - ragflow - Internal** | **Remote - RackNerd 1GB KVM VPS - FRP - External** | **Bandwagon Host - Request IP Change** | -| **Macmini - vaultwarden - External** | **NAS - SHENWEI_DS718 - Internal** | **Ubuntu1 - ddns go - Internal** | **Ubuntu2 - Portainer - Internal** | **Remote - RackNerd 1 GB KVM VPS** | **Bandwagon - 3X UI Console** | -| **Macmini - RabbitMQ - Internal** | **NAS - SHENWEI_DS718 - External** | **Ubuntu1 - IT Tools - Internal** | **Ubuntu2 - Vibe Kanban - Internal** | **Remote - RackNerd 1 GB KVM VPS - Control Panel** | | -| **MacMini - OpenCode Server - Local** | **NAS - Vaultwarden - Internal** | **Ubuntu1 - Transmission Web - Internal** | **Ubuntu2 - tiktok pm dev - Internal** | | | -| **Macmini - Glance - Local** | **NAS - Vaultwarden - External** | **Ubuntu1 - Transmission Web - External** | **Ubuntu2 - Glances - Local** | | | -| **Macmini - Quartz - Local** | **NAS - CloudDrive2 - Internal** | **Ubuntu1 - cAdvisor - Internal** | **Ubuntu2 - MD - Local** | | | -| | **NAS-V2RAYA - Internal** | **Ubuntu1 - Prometheus - Internal** | **Ubuntu2 - it-tools - External** | | | -| | **NAS - Calibre Web - Internal** | **Ubuntu1 - Grafana - Internal** | **Ubuntu2 - Grafana- Internal** | | | -| | **NAS - Calibre Web - External** | **Ubuntu1 - Grafana - External** | **Ubuntu2 - drawio - External** | | | -| | **NAS - Navidrome - Internal** | **Ubuntu1 - Blackbox Exporter - Internal** | **Ubuntu2 - n8n - local** | | | -| | **NAS - Navidrome - External** | **Ubuntu1 - Node Exporter - Internal** | **Ubuntu2 - n8n - External** | | | -| | **NAS - Obsidian WebDAV - External** | **Ubuntu1 - superset - Internal** | **Ubuntu2 - AgentBase - Local** | | | -| | **NAS - zipline - Internal** | **Ubuntu1 - superset - External** | | | | -| | **NAS - zipline - External** | **Ubuntu1 - tiktok_pm - Internal** | | | | -| | **NAS - minio console - Internal** | **Ubuntu1 - tiktok_pm - External** | | | | -| | **NAS - Web Portal - External** | **Ubuntu1 - Prompt Optimizer - Internal** | | | | -| | **NAS - Web Portal - Internal** | **Ubuntu1 - Homarr - Internal** | | | | -| | **NAS - Jellyfin - Internal** | **Ubuntu1 - Homarr - External** | | | | -| | **NAS - Jellyfin - External** | **Ubuntu1 - Glances - Local** | | | | -| | **NAS - Gitea - Local** | | | | | + + + + + + + + + + + + + + + + + + + + + + +
MacminiNAS
Macmini - Portainer - Local NAS - Portainer - Internal
Macmini - vaultwarden - External NAS - SHENWEI_DS718 - Internal
Macmini - RabbitMQ - Internal NAS - SHENWEI_DS718 - External
MacMini - OpenCode Server - Local NAS - Vaultwarden - Internal
Macmini - Glance - Local NAS - Vaultwarden - External
Macmini - Quartz - Local NAS - CloudDrive2 - Internal
NAS-V2RAYA - Internal
NAS - Calibre Web - Internal
NAS - Calibre Web - External
NAS - Navidrome - Internal
NAS - Navidrome - External
NAS - Obsidian WebDAV - External
NAS - zipline - Internal
NAS - zipline - External
NAS - minio console - Internal
NAS - Web Portal - External
NAS - Web Portal - Internal
NAS - Jellyfin - Internal
NAS - Jellyfin - External
NAS - Gitea - Local
+ + + + + + + + + + + + + + + + + + + + + + +
Ubuntu1Ubuntu2
Ubuntu1 - Portainer - Internal Ubuntu2 - ragflow - Internal
Ubuntu1 - ddns go - Internal Ubuntu2 - Portainer - Internal
Ubuntu1 - IT Tools - Internal Ubuntu2 - Vibe Kanban - Internal
Ubuntu1 - Transmission Web - Internal Ubuntu2 - tiktok pm dev - Internal
Ubuntu1 - Transmission Web - External Ubuntu2 - Glances - Local
Ubuntu1 - cAdvisor - Internal Ubuntu2 - MD - Local
Ubuntu1 - Prometheus - Internal Ubuntu2 - it-tools - External
Ubuntu1 - Grafana - Internal Ubuntu2 - Grafana- Internal
Ubuntu1 - Grafana - External Ubuntu2 - drawio - External
Ubuntu1 - Blackbox Exporter - Internal Ubuntu2 - n8n - local
Ubuntu1 - Node Exporter - Internal Ubuntu2 - n8n - External
Ubuntu1 - superset - Internal Ubuntu2 - AgentBase - Local
Ubuntu1 - superset - External
Ubuntu1 - tiktok_pm - Internal
Ubuntu1 - tiktok_pm - External
Ubuntu1 - Prompt Optimizer - Internal
Ubuntu1 - Homarr - Internal
Ubuntu1 - Homarr - External
Ubuntu1 - Glances - Local
+ + + + + + + + +
VPS
Remote - RackNerd 1GB KVM VPS - FRP - External
Remote - RackNerd 1 GB KVM VPS
Remote - RackNerd 1 GB KVM VPS - Control Panel
Bandwagon Host - Request IP Change
Bandwagon - 3X UI Console
+ | Title | |---| -| **Aliyun Console** | -| **Bandwagon VPS** | -| **Cloudflare** | -| **Cloudflare Worker - Nodewarden - External** | -| **Ping, mtr, dig, TCP port check and real time BGP looking glass from multiple locations** | -| **RAX 50 ** | -| **ThinkBook - Portainer - Internal** | -| **华为凌霄子母路由 Q6 网线版** | -| **糖果云** | +| Aliyun Console | +| Bandwagon VPS | +| Cloudflare | +| Cloudflare Worker - Nodewarden - External | +| Grafana Dashboard | +| Ping, mtr, dig, TCP port check and real time BGP looking glass from multiple locations | +| RAX 50 | +| ThinkBook - Portainer - Internal | +| 华为凌霄子母路由 Q6 网线版 | +| 糖果云 | ### Learning | Title | |---| -| **AI 知乎学堂** | -| **Engoo Daily News** | -| **Google Trend Tutorial** | -| **Slide Share** | -| **TED Talks List** | +| AI 知乎学堂 | +| Engoo Daily News | +| Google Trend Tutorial | +| Slide Share | +| TED Talks List | ### Music -| **Guitar** | -| --- | -| **C大调音阶系统练习方法** | + + + +
Guitar
C大调音阶系统练习方法
+ ### Others -| **Tableau** | **Youtube Video** | -| --- | --- | -| **Tableau Community** | **Every Type of Math Explained in 9 Minutes** | -| **Tableau Training Videos** | **Colors Family Song** | -| | **Awesome Alphabet** | -| | **Count 1 to 5!** | + + + + + + +
TableauYoutube Video
Tableau Community Every Type of Math Explained in 9 Minutes
Tableau Training Videos Colors Family Song
Awesome Alphabet
Count 1 to 5!
+ | Title | |---| -| **Brookings - Quality. Independence. Impact.** | -| **Foreign Affairs Magazine** | -| **FOSSHUB** | -| **Free eBooks \| Project Gutenberg** | -| **https://ieltsonlinetests.com/ielts-exam-library** | -| **Musicca – Learn music theory for free** | -| **Oreilly** | -| **Pocket Explore** | -| **Reddit** | -| **ShapeZ** | -| **Snopes.com \| The definitive fact-checking site and reference source for urban legends, folklore, myths, rumors, and misinformation.** | -| **Study English, Stay Informed - Engoo Daily News** | -| **Tableau 举个栗子** | -| **The Economist \| World News, Economics, Politics, Business & Finance** | -| **Welcome \| Open Yale Courses** | -| **xbox game pass** | -| **yotube download** | -| **发送至 Kindle** | -| **照片上传** | +| Brookings - Quality. Independence. Impact. | +| Foreign Affairs Magazine | +| FOSSHUB | +| Free eBooks \| Project Gutenberg | +| https://ieltsonlinetests.com/ielts-exam-library | +| Musicca – Learn music theory for free | +| Oreilly | +| Pocket Explore | +| Reddit | +| ShapeZ | +| Snopes.com \| The definitive fact-checking site and reference source for urban legends, folklore, myths, rumors, and misinformation. | +| Study English, Stay Informed - Engoo Daily News | +| Tableau 举个栗子 | +| The Economist \| World News, Economics, Politics, Business & Finance | +| Welcome \| Open Yale Courses | +| xbox game pass | +| yotube download | +| 发送至 Kindle | +| 照片上传 | ### Productivity | Title | |---| -| **AWS Cost Estimation** | -| **Chrome Settings** | -| **Convert HTML to PDF** | -| **Crontab.guru - The cron schedule expression generator** | -| **DAX 函数** | -| **Exchange Admin Center** | -| **FOSSHUB** | -| **IFIXIT** | -| **Internet Archive: Digital Library of Free & Borrowable Texts, Movies, Music & Wayback Machine** | -| **InVision – Free Web & Mobile Mockup and UI Prototyping Tool** | -| **it-tools** | -| **MajorGeeks** | -| **Office 365** | -| **PowerBI** | -| **Raindrop** | -| **Shortcuts.design \| Every shortcut for designers in one place 🚀** | -| **Stack Overflow - Where Developers Learn, Share, & Build Careers** | -| **Wiki Template** | -| **Word New** | -| **字幕** | -| **常用字符串图案** | -| **常用网络&特殊符号大全** | +| AWS Cost Estimation | +| Chrome Settings | +| Convert HTML to PDF | +| Crontab.guru - The cron schedule expression generator | +| DAX 函数 | +| Exchange Admin Center | +| FOSSHUB | +| IFIXIT | +| Internet Archive: Digital Library of Free & Borrowable Texts, Movies, Music & Wayback Machine | +| InVision – Free Web & Mobile Mockup and UI Prototyping Tool | +| it-tools | +| MajorGeeks | +| Office 365 | +| PowerBI | +| Raindrop | +| Shortcuts.design \| Every shortcut for designers in one place 🚀 | +| Stack Overflow - Where Developers Learn, Share, & Build Careers | +| Wiki Template | +| Word New | +| 字幕 | +| 常用字符串图案 | +| 常用网络&特殊符号大全 | ### STQ | Title | |---| -| **stq-admin** | -| **stq-n8n** | -| **stq-web** | +| stq-admin | +| stq-n8n | +| stq-web | ### Shen Wei -| **Game** | **Movie** | **Music** | **NAS** | **PT** | **TV** | -| --- | --- | --- | --- | --- | --- | -| **Internet Game Database** | **TMDB** | **MusicBrainz** | **矿神源** | **BT School** | **智能电视网** | -| **Moby Game** | **Sub HD** | | **矿神源** | **Torrentleech** | **银河录像局** | -| **Diep.io** | | | | **PT邀请网** | | -| **Backloggery** | | | | **Milkie** | | -| | | | | **Milkie** | | -| | | | | **GTK** | | -| | | | | **PT Fans** | | -| | | | | **PTFans - Powered by NexusPHP** | | -| | | | | **PT China 铂金学院** | | -| | | | | **纪录片之家** | | + + + + + + +
GameMovie
Internet Game Database TMDB
Moby Game Sub HD
Diep.io
Backloggery
+ + + + + +
MusicNAS
MusicBrainz 矿神源
矿神源
+ + + + + + + + + + + + + +
PTTV
BT School 智能电视网
Torrentleech 银河录像局
PT邀请网
Milkie
Milkie
GTK
PT Fans
PTFans - Powered by NexusPHP
PT China 铂金学院
纪录片之家
+ | Title | |---| -| **1024** | -| **Backloggd - A Video Game Collection Tracker** | -| **https://whc.unesco.org/** | -| **https://www.bacancytechnology.com/** | -| **TowardsDataScience** | -| **wechat format** | -| **免费图床** | -| **老画报** | +| 1024 | +| Backloggd - A Video Game Collection Tracker | +| https://whc.unesco.org/ | +| https://www.bacancytechnology.com/ | +| TowardsDataScience | +| wechat format | +| 免费图床 | +| 老画报 | ### Social | Title | |---| -| **linkedin** | +| linkedin | ### Technical -| **视频剪辑课程** | -| --- | -| **剪映创作课堂** | -| **视频滑动教程** | -| **分屏定格卡点** | + + + + + +
视频剪辑课程
剪映创作课堂
视频滑动教程
分屏定格卡点
+ | Title | |---| -| **Bright Data** | -| **Django** | -| **Fast API** | -| **Jinjia** | -| **Mermaid Liv 自动渲染图形化 ER 图** | -| **Trendshift - A better way to find open source project** | +| Bright Data | +| Django | +| Fast API | +| Jinjia | +| Mermaid Liv 自动渲染图形化 ER 图 | +| Trendshift - A better way to find open source project | ### Tools -| **IP 检查** | -| --- | -| **测试IP纯净度** | -| **显示查询自己的IP地址** | -| **ip111.cn -测试三个地方IP一致性** | -| **IP伪装检查** | -| **ipconfig.me** | -| **What's My IP** | -| **Test IPv6** | -| **db-ip (JSON)** | -| **真实地址生成器** | + + + + + + + + + + + +
IP 检查
测试IP纯净度
显示查询自己的IP地址
ip111.cn -测试三个地方IP一致性
IP伪装检查
ipconfig.me
What's My IP
Test IPv6
db-ip (JSON)
真实地址生成器
+ | Title | |---| -| **Adobe Color** | -| **AdsPower - 指纹浏览器** | -| **Anna's Archive** | -| **Bilibili视频下载工具** | -| **Coolors** | -| **EasyPeasyEase - 免费工具,用于拼接短视频并应用缓动曲线** | -| **https://uptime.is/** | -| **Immersive Translate ** | -| **IPv6 Tunnel Broker** | -| **Koodo Web** | -| **Magazine Lib** | -| **My IP** | -| **Opencut** | -| **PDF convert to Markdown** | -| **Pingme - 接受美国短信验证** | -| **Slideshare Downloader** | -| **Snapany视频下载插件** | -| **Strong Password Generator** | -| **TinyWoW** | -| **Ubuntu1 - IT Tools - Internal** | -| **WildCard 虚拟信用卡** | -| **World Time Buddy** | -| **临时邮箱** | -| **在线格式转换** | +| Adobe Color | +| AdsPower - 指纹浏览器 | +| Anna's Archive | +| Bilibili视频下载工具 | +| Coolors | +| EasyPeasyEase - 免费工具,用于拼接短视频并应用缓动曲线 | +| https://uptime.is/ | +| Immersive Translate | +| IPv6 Tunnel Broker | +| Koodo Web | +| Magazine Lib | +| My IP | +| Opencut | +| PDF convert to Markdown | +| Pingme - 接受美国短信验证 | +| Slideshare Downloader | +| Snapany视频下载插件 | +| Strong Password Generator | +| TinyWoW | +| Ubuntu1 - IT Tools - Internal | +| WildCard 虚拟信用卡 | +| World Time Buddy | +| 临时邮箱 | +| 在线格式转换 | ### eCommerce -| **公司报税** | **财务** | **货代物流** | **选品工具** | -| --- | --- | --- | --- | -| **国家税务总局 上海税务局** | **PingPong** | **方舟跨境** | **erank** | -| **全国统一规范电子税务局** | | **腾飞速达 货小易** | **Fastmoss** | -| | | **腾飞速达** | **遨虾** | -| | | **3X 货代** | **Echotik** | -| | | **超达系统** | | + + + + +
公司报税财务
国家税务总局 上海税务局 PingPong
全国统一规范电子税务局
+ + + + + + + + +
货代物流选品工具
方舟跨境 erank
腾飞速达 货小易 Fastmoss
腾飞速达 遨虾
3X 货代 Echotik
超达系统
+ | Title | |---| -| **1688** | -| **1688开放平台** | -| **AMZ 123** | -| **Bright Data** | -| **FurryNest Supplies** | -| **Rapid API** | -| **TikTok 123** | -| **TikTok Business Suite** | -| **TikTok for Developer** | -| **TikTok Shop** | -| **TikTok Shop Seller Log In \| Cross Border** | -| **TikTok Shop Seller Log In \| Cross Border** | -| **TikTok 学习中心** | -| **TIKTOK 跨境商家** | -| **买方工作台** | -| **国家企业信用信息公示系统** | -| **妙手ERP** | -| **海外跨境Kevin** | -| **淘宝开放平台** | +| 1688 | +| 1688开放平台 | +| AMZ 123 | +| Bright Data | +| FurryNest Supplies | +| Rapid API | +| TikTok 123 | +| TikTok Business Suite | +| TikTok for Developer | +| TikTok Shop | +| TikTok Shop Seller Log In \| Cross Border | +| TikTok Shop Seller Log In \| Cross Border | +| TikTok 学习中心 | +| TIKTOK 跨境商家 | +| 买方工作台 | +| 国家企业信用信息公示系统 | +| 妙手ERP | +| 海外跨境Kevin | +| 淘宝开放平台 | --- @@ -338,18 +431,18 @@ | Title | |---| -| **Google** | +| Google | ### Shen Wei | Title | |---| -| **APKMirror - Free APK Downloads - Free and safe Android APK downloads** | -| **Google** | -| **Pluto TV - Drop In. Watch Free.** | -| **Sao.Fm-思奥FM,在线电台收听,在线听广播,网络收音机在线收听** | -| **来自半岛电视台的突发新闻、世界新闻和视频 --- Breaking News, World News and Video from Al Jazeera** | -| **欢迎来到 Steam** | +| APKMirror - Free APK Downloads - Free and safe Android APK downloads | +| Google | +| Pluto TV - Drop In. Watch Free. | +| Sao.Fm-思奥FM,在线电台收听,在线听广播,网络收音机在线收听 | +| 来自半岛电视台的突发新闻、世界新闻和视频 --- Breaking News, World News and Video from Al Jazeera | +| 欢迎来到 Steam | --- @@ -357,6 +450,6 @@ | Title | |---| -| **Bt7086 - bt7086.com,xp1024.com-  1024核工厂** | +| Bt7086 - bt7086.com,xp1024.com-  1024核工厂 | --- diff --git a/wiki/concepts/Boto3.md b/wiki/concepts/Boto3.md new file mode 100644 index 00000000..10f7c2fa --- /dev/null +++ b/wiki/concepts/Boto3.md @@ -0,0 +1,40 @@ +--- +id: boto3 +title: "Boto3" +type: concept +tags: + - AWS + - Python + - SDK +last_updated: 2026-04-18 +--- + +## Summary +AWS SDK for Python,用于通过 Python 代码与 AWS 服务交互。 + +## Definition +Boto3 是 Amazon 官方提供的 Python SDK,允许开发者通过 Python 代码调用 AWS API,管理 AWS 资源和服务。 + +## Key Attributes +- **类型**:AWS SDK +- **语言**:Python +- **安装方式**:pip install boto3 +- **认证方式**:IAM 凭证、环境变量、AWS CLI 配置 + +## Core Concepts + +### Clients vs Resources +- **Clients**:底层服务 API,提供精确控制 +- **Resources**:高层次、面向对象的抽象 + +### Waiters +自动轮询服务响应直到特定状态 + +### Paginators +自动处理分页结果 + +## Common Use Cases +- 扫描 EC2 实例、安全组、负载均衡器 +- 创建、修改、删除 S3 存储桶 +- 触发 Lambda 函数 +- 查询 CloudWatch 指标 \ No newline at end of file diff --git a/wiki/concepts/Cloud-Guardrails.md b/wiki/concepts/Cloud-Guardrails.md new file mode 100644 index 00000000..f5dbd807 --- /dev/null +++ b/wiki/concepts/Cloud-Guardrails.md @@ -0,0 +1,42 @@ +--- +title: "Cloud Guardrails" +type: concept +tags: [Cloud, Security, Guardrails, Enterprise-Architecture] +last_updated: 2026-04-18 +--- + +## Definition +云守护栏(Cloud Guardrails)捕获可扩展性、成本最小化和灵活性的强制性要求和最佳实践。 + +## Key Attributes +- **Purpose**:确保云环境符合企业安全和治理标准 +- **Scope**:应用于所有云工作负载 +- **Implementation**:通过 Landing Zone 框架自动执行 + +## Core Components +- 设计概念(Design Concepts) +- 能力(Capabilities) +- 最佳实践(Best Practices) + +## Design Principles +- Cloud-First:优先使用云原生服务 +- Well-Architected Frameworks:遵循架构最佳实践 +- Infrastructure as Code (Terraform):基础设施即代码 +- Resource Tagging:资源标签策略 + +## Executable Packaging +优先使用现有云服务和托管服务,最小化自定义代码。 + +## Functional Partitioning +将单体应用分解为更小的独立块或无服务器功能。 + +## Relationships +- [[Enterprise Architecture]] → defines → [[Cloud Guardrails]] +- [[Cloud Guardrails]] → enforces → [[Landing Zone]] +- [[Terraform]] → implements → [[Cloud Guardrails]] + +## See Also +- [[Landing Zone]] +- [[Enterprise Architecture]] +- [[Terraform]] +- [[Zero Trust Architecture]] \ No newline at end of file diff --git a/wiki/concepts/Cloud-Volume-ONTAP.md b/wiki/concepts/Cloud-Volume-ONTAP.md new file mode 100644 index 00000000..00d78871 --- /dev/null +++ b/wiki/concepts/Cloud-Volume-ONTAP.md @@ -0,0 +1,39 @@ +--- +title: "Cloud Volume ONTAP" +type: concept +tags: + - storage + - AWS + - NetApp +last_updated: 2026-04-18 +--- + +## Definition + +Cloud Volume ONTAP (CVO) 是 NetApp 的云端存储解决方案,纯软件定义的存储设备,运行在 AWS EC2 实例上。 + +## Architecture + +- **部署模式**:单节点或 HA 对(高可用) +- **存储后端**:AWS EBS 卷(GP3、GP2、IO1、IO2、ST1) +- **数据分层**:活跃数据存 EBS,非活跃数据(30天以上)自动迁移到 S3 +- **管理工具**:Cloud Manager + +## Features + +- **协议支持**:NFS、SMB/CIFS、iSCSI、FC +- **数据保护**:Snapshot、Snapmirror、SnapVault +- **加密**:支持 AWS KMS 或 NetApp 自带加密(256位) +- **安全集成**:与 McAfee 杀毒集成(VSES) + +## Components + +- **Aggregate**:磁盘组,组成 RAID 组 +- **FlexVolume**:数据容器,托管在 aggregate 上 +- **Qtree**:卷的子目录,支持权限和配额 +- **LUN**:逻辑单元号,FC 或 iSCSI 的块存储 +- **SVM**:存储虚拟机,支持多租户 + +## Links + +- 对应源页面:[[ctp-topic-46-netapps-on-aws]] \ No newline at end of file diff --git a/wiki/concepts/Domain-Join.md b/wiki/concepts/Domain-Join.md new file mode 100644 index 00000000..9cc41ae9 --- /dev/null +++ b/wiki/concepts/Domain-Join.md @@ -0,0 +1,30 @@ +--- +title: "Domain Join" +type: concept +tags: + - aws + - active-directory + - automation +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Definition +通过 SRE-provided AMIs 实现自动化将 Windows/Linux 实例加入 Active Directory 域的技术。 + +## Windows Implementation +在 Terraform user_data 中调用 PowerShell 脚本: +- 自动域加入 +- 自动命名 +- 管理员权限分配 +- 旧对象清理 + +## Linux Implementation +- 支持安全动态 DNS 更新 +- 自动注册 DNS A 记录 + +## Related Concepts +- [[Gruntwork-Landing-Zone]] +- [[swinford-net]] +- [[intsas-local]] +- [[SRE-provided-AMIs]] \ No newline at end of file diff --git a/wiki/concepts/Enterprise-Architecture.md b/wiki/concepts/Enterprise-Architecture.md new file mode 100644 index 00000000..7a354718 --- /dev/null +++ b/wiki/concepts/Enterprise-Architecture.md @@ -0,0 +1,38 @@ +--- +title: "Enterprise Architecture" +type: concept +tags: [Cloud, Enterprise, Architecture, Governance] +aliases: [EA] +last_updated: 2026-04-18 +--- + +## Definition +企业架构(Enterprise Architecture,EA)帮助组织阐明云架构,向应用团队传达可用资源和要求,确保技术决策与企业目标一致。 + +## Key Attributes +- **Purpose**:提供技术战略视图和治理框架 +- **Scope**:涵盖业务架构、数据架构、应用架构、技术架构 +- **Output**:企业级标准、指南和路线图 + +## Core Functions +1. 阐明云架构(Articulate cloud architecture) +2. 传达可用资源(Communicate available resources) +3. 定义要求(Define requirements) +4. 指导技术决策(Guide technical decisions) + +## Cloud EA Focus Areas +- 业务架构概念(Business architecture concepts) +- 数据连接(Data connections) +- 应用信息(Application information) +- 技术路线图(Technology roadmaps) + +## Relationships +- [[Enterprise Architecture]] → defines → [[Cloud Guardrails]] +- [[Enterprise Architecture]] → guides → [[Landing Zone]] +- [[Enterprise Architecture]] → informs → [[Multi-Account Strategy]] + +## See Also +- [[Landing Zone]] +- [[Cloud Guardrails]] +- [[Multi-Account Strategy]] +- [[Zero Trust Architecture]] \ No newline at end of file diff --git a/wiki/concepts/Federated-User.md b/wiki/concepts/Federated-User.md new file mode 100644 index 00000000..e7410655 --- /dev/null +++ b/wiki/concepts/Federated-User.md @@ -0,0 +1,27 @@ +--- +title: "Federated User" +type: concept +tags: + - aws + - security + - identity +sources: [ctp-topic-1-gruntwork-landing-zone-architecture] +last_updated: 2026-04-18 +--- + +## Summary +通过 AD 组映射到 IAM 角色的联邦身份访问机制,替代传统 IAM 用户实现安全账户管理。 + +## Definition +Federated User(联邦用户)是基于身份提供商(IdP)的访问方式,用户通过企业 Active Directory(AD)进行身份验证,然后通过 SAML 或 OIDC 映射到 AWS IAM 角色获取访问权限。 + +## Advantages +- **集中管理**:用户凭据由企业 AD 集中管理,无需在 AWS 中单独创建 IAM 用户 +- **自动生命周期**:员工离职后自动失去 AWS 访问权限 +- **最小权限原则**:通过 AD 组精确控制用户获得的 IAM 角色和权限 +- **审计合规**:所有访问通过企业身份系统记录和审计 + +## Connections +- [[IAM]] ← accepts ← [[Federated-User]] +- [[Active-Directory]] ← authenticates ← [[Federated-User]] +- [[Gruntwork-Landing-Zone]] ← uses ← [[Federated-User]] \ No newline at end of file diff --git a/wiki/concepts/Gruntwork-Landing-Zone.md b/wiki/concepts/Gruntwork-Landing-Zone.md new file mode 100644 index 00000000..b4e8a5ac --- /dev/null +++ b/wiki/concepts/Gruntwork-Landing-Zone.md @@ -0,0 +1,27 @@ +--- +title: "Gruntwork Landing Zone" +type: concept +tags: + - aws + - infrastructure + - landing-zone +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Definition +Gruntwork 提供的预配置 AWS 基础架构框架,分为 R&D Labs 和 SAS 两种环境类型。 + +## Types +- **R&D Labs**:研发实验室环境,统一使用 swinford.net 域名 +- **SAS (Staging and Production)**:分阶段和生产环境,使用 intsas.local 域名 + +## Key Components +- SRE-provided AMIs:内置自动域加入脚本 +- 自助服务工具(如 MIM) +- 支持渠道(如 SMACKS 工单系统) + +## Connections +- [[Gruntwork]] ← provides ← [[Gruntwork-Landing-Zone]] +- [[swinford-net]] ← serves ← [[Gruntwork-Landing-Zone]] +- [[intsas-local]] ← serves ← [[Gruntwork-Landing-Zone]] \ No newline at end of file diff --git a/wiki/concepts/Purpose-Built-Database.md b/wiki/concepts/Purpose-Built-Database.md new file mode 100644 index 00000000..5870f951 --- /dev/null +++ b/wiki/concepts/Purpose-Built-Database.md @@ -0,0 +1,37 @@ +--- +title: "Purpose-Built Database" +type: concept +tags: [database, AWS, architecture] +date: 2026-04-18 +--- + +## Definition +专用数据库(Purpose-Built Database)为特定用例优化的数据库架构。根据用例选择最佳工具,避免一刀切的数据库架构。 + +## Rationale +现代应用程序从传统的客户端-服务器模型演进,原因包括: +- 客户需求变化 +- 新设备类型多样化 +- 数据类型多样化 +- 经济因素 + +选择专用数据库需考虑: +- 应用规模 +- 用户数量 +- 访问模式 +- 使用高峰 +- 性能要求(延迟、可用性) + +## AWS Database Portfolio +| 数据库类型 | AWS 服务 | 适用场景 | +|------------|---------|----------| +| 关系型 | Aurora, RDS | 固定模式、事务处理 | +| 键值 | DynamoDB | 高扩展、低延迟 | +| 文档 | DocumentDB | JSON 文档、灵活模式 | +| 内存 | ElastiCache | 缓存、实时分析 | +| 图形 | Neptune | 欺诈检测、推荐 | +| 时序 | Timestream | IoT、监控数据 | +| 宽列 | Keyspaces | 大规模写入 | + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] \ No newline at end of file diff --git a/wiki/concepts/RTO.md b/wiki/concepts/RTO.md index 2386cb4c..b864b080 100644 --- a/wiki/concepts/RTO.md +++ b/wiki/concepts/RTO.md @@ -22,6 +22,12 @@ RTO(Recovery Time Objective,恢复时间目标)是指系统允许的最大 | Important | Admin dashboards, reporting | < 1 hour | | Nice-to-have | Internal tools, dev environments | < 4 hours | +## RDS vs Aurora RTO Comparison +| Database | RTO (AZ Failure) | +|----------|-----------------| +| Aurora | 30 秒 | +| RDS PostgreSQL | 2 分钟 | + ## Connections - [[RPO (Recovery Point Objective)]] ← 配对指标 → [[RTO (Recovery Time Objective)]] - [[灾难恢复]] ← 应用领域 → [[RTO (Recovery Time Objective)]] diff --git a/wiki/concepts/Reference-Architecture.md b/wiki/concepts/Reference-Architecture.md new file mode 100644 index 00000000..f5e0e56f --- /dev/null +++ b/wiki/concepts/Reference-Architecture.md @@ -0,0 +1,25 @@ +--- +title: "Reference Architecture" +type: concept +tags: + - aws + - landing-zone + - infrastructure +sources: [ctp-topic-1-gruntwork-landing-zone-architecture] +last_updated: 2026-04-18 +--- + +## Summary +包含核心账户和工作负载账户的最佳实践起点,是云平台部署的参考标准。 + +## Definition +Reference Architecture(参考架构)是一套经过实战验证的最佳实践集合,作为云平台部署的起点,包含预定义的账户结构和基础设施组件。 + +## Key Components +- **核心账户**:Shared(共享)、Logs(日志)、Security(安全) +- **工作负载账户**:Prod(生产)、Stage(预发)、Dev(开发) + +## Connections +- [[Gruntwork-Landing-Zone]] ← implements ← [[Reference-Architecture]] +- [[AWS-Organizations]] ← manages ← [[Reference-Architecture]] +- [[Multi-Account-Strategy]] ← relies_on ← [[Reference-Architecture]] \ No newline at end of file diff --git a/wiki/concepts/SRE-provided-AMIs.md b/wiki/concepts/SRE-provided-AMIs.md new file mode 100644 index 00000000..487e74e0 --- /dev/null +++ b/wiki/concepts/SRE-provided-AMIs.md @@ -0,0 +1,26 @@ +--- +title: "SRE-provided AMIs" +type: concept +tags: + - aws + - ami + - automation +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Definition +SRE 团队预先构建的 Amazon Machine Images,内置用于自动加入域的 PowerShell 和 Shell 脚本。 + +## Use Cases +- Windows 实例自动域加入 +- Linux 实例 DNS 动态更新 +- 自动化用户权限分配 +- 自动清理旧 AD 对象 + +## Provider +SRE 团队 + +## Related +- [[Gruntwork-Landing-Zone]] +- [[Domain-Join]] \ No newline at end of file diff --git a/wiki/concepts/Service-Control-Policies.md b/wiki/concepts/Service-Control-Policies.md new file mode 100644 index 00000000..38f4e9dd --- /dev/null +++ b/wiki/concepts/Service-Control-Policies.md @@ -0,0 +1,52 @@ +--- +id: service-control-policies +title: "Service Control Policies (SCPs)" +type: concept +tags: + - AWS + - Policy + - Governance +last_updated: 2026-04-18 +--- + +## Summary +AWS Organizations 的策略类型之一,用于集中管理组织内所有账户的最大可用权限。 + +## Definition +Service Control Policies (SCPs) 是 AWS Organizations 的一种策略类型,用于设置组织内所有账户的最大权限边界。它们不允许授予权限,而是限制可用的权限范围。 + +## Key Attributes +- **类型**:组织策略 +- **作用域**:组织单元(OU)或单个账户 +- **效果**:Allow(允许)或 Deny(拒绝) +- **优先级**:仅拒绝(Deny)策略优先于 Allow 策略 + +## Use Cases +- 实施标签规范,阻止创建不带标签的 EC2 实例 +- 限制特定区域的资源部署 +- 防止删除关键资源(如 CloudTrail、VPC Flow Logs) + +## Examples +```json +{ + "Version": "2012-10-17", + "Statement": [ + { + "Effect": "Deny", + "Action": [ + "ec2:RunInstances" + ], + "Resource": ["arn:aws:ec2:*:*:instance/*"], + "Condition": { + "StringEquals": { + "aws:RequestTag/CostCenter": "absent" + } + } + } + ] +} +``` + +## Related Concepts +- [[Multi-Account Strategy]]:SCPs 是多账号策略的一部分 +- [[Gruntwork Landing Zone]]:Gruntwork Landing Zone 使用 SCPs 实施治理 \ No newline at end of file diff --git a/wiki/entities/Amazon-DocumentDB.md b/wiki/entities/Amazon-DocumentDB.md new file mode 100644 index 00000000..d9db9255 --- /dev/null +++ b/wiki/entities/Amazon-DocumentDB.md @@ -0,0 +1,23 @@ +--- +title: "Amazon DocumentDB" +type: entity +tags: [AWS, Database, NoSQL, Document] +date: 2026-04-18 +--- + +## Definition +Amazon DocumentDB 是 AWS 提供的全托管 MongoDB 兼容文档数据库,提供灵活模式处理 JSON 文档。 + +## Key Characteristics +- 兼容性:MongoDB 兼容 +- 模式:灵活 JSON 模式 +- 复制:自动多可用区复制 +- 扩展:自动扩展存储 + +## Use Cases +- 内容管理系统 +- 用户配置文件 +- 目录管理 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] \ No newline at end of file diff --git a/wiki/entities/Amazon-DynamoDB.md b/wiki/entities/Amazon-DynamoDB.md new file mode 100644 index 00000000..0cf3dcc1 --- /dev/null +++ b/wiki/entities/Amazon-DynamoDB.md @@ -0,0 +1,29 @@ +--- +title: "Amazon DynamoDB" +type: entity +tags: [AWS, Database, NoSQL, Key-Value, Document] +date: 2026-04-18 +--- + +## Definition +Amazon DynamoDB 是 AWS 提供的全托管键值和文档数据库,提供单数字毫秒级延迟,支持每日数万亿请求。 + +## Key Characteristics +- 类型:键值存储 + 文档数据库 +- 延迟:单数字毫秒级别 +- 规模:支持每日数万亿请求 +- 模式:灵活模式,无需预定义 schema +- 备份:自动备份和点时间恢复 + +## Use Cases +- 物联网数据存储 +- 游戏玩家数据 +- 电子商务购物车 +- 个性化推荐 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] + +## Case Studies +- Duolingo:使用 DynamoDB 存储个性化用户数据 +- Netflix:使用 DynamoDB 实现弹性和低延迟 JSON 文档访问 \ No newline at end of file diff --git a/wiki/entities/Amazon-ElastiCache.md b/wiki/entities/Amazon-ElastiCache.md new file mode 100644 index 00000000..91032842 --- /dev/null +++ b/wiki/entities/Amazon-ElastiCache.md @@ -0,0 +1,28 @@ +--- +title: "Amazon ElastiCache" +type: entity +tags: [AWS, Database, In-Memory, Cache] +date: 2026-04-18 +--- + +## Definition +Amazon ElastiCache 是 AWS 提供的全托管内存数据库服务,支持 Redis 和 Memcached,用于缓存、实时分析等场景。 + +## Key Characteristics +- 引擎:Redis、Memcached +- 类型:内存数据库/缓存 +- 延迟:微秒级 +- 复制:自动主从复制 + +## Use Cases +- 缓存常用数据 +- 会话存储 +- 实时分析 +- 游戏排行榜 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] + +## Case Studies +- Duolingo:使用 ElastiCache 缓存常见词汇和短语 +- Peloton:使用 ElastiCache Redis 为客户提供即时反馈 \ No newline at end of file diff --git a/wiki/entities/Amazon-Keyspaces.md b/wiki/entities/Amazon-Keyspaces.md new file mode 100644 index 00000000..ba91e572 --- /dev/null +++ b/wiki/entities/Amazon-Keyspaces.md @@ -0,0 +1,23 @@ +--- +title: "Amazon Keyspaces" +type: entity +tags: [AWS, Database, Wide-Column, Cassandra] +date: 2026-04-18 +--- + +## Definition +Amazon Keyspaces 是 AWS 提供的 Apache Cassandra 托管服务,提供无服务器选项。 + +## Key Characteristics +- 兼容性:Apache Cassandra 兼容 +- 部署:无服务器选项 +- 复制:自动多可用区复制 +- 扩展:自动扩展 + +## Use Cases +- 物联网时序数据 +- 事件日志 +- 大规模应用 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] \ No newline at end of file diff --git a/wiki/entities/Amazon-Neptune.md b/wiki/entities/Amazon-Neptune.md new file mode 100644 index 00000000..6bddf999 --- /dev/null +++ b/wiki/entities/Amazon-Neptune.md @@ -0,0 +1,23 @@ +--- +title: "Amazon Neptune" +type: entity +tags: [AWS, Database, Graph] +date: 2026-04-18 +--- + +## Definition +Amazon Neptune 是 AWS 提供的全托管图形数据库,适用于欺诈检测、社交网络和推荐系统。 + +## Key Characteristics +- 类型:图形数据库 +- 协议:SPARQL 和 Gremlin +- 复制:自动多可用区复制 + +## Use Cases +- 欺诈检测 +- 社交网络分析 +- 推荐引擎 +- 网络安全 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] \ No newline at end of file diff --git a/wiki/entities/Amazon-Timestream.md b/wiki/entities/Amazon-Timestream.md new file mode 100644 index 00000000..de3c42f8 --- /dev/null +++ b/wiki/entities/Amazon-Timestream.md @@ -0,0 +1,23 @@ +--- +title: "Amazon Timestream" +type: entity +tags: [AWS, Database, Time-Series] +date: 2026-04-18 +--- + +## Definition +Amazon Timestream 是 AWS 提供的全托管时序数据库,专为 IoT 设备等高容量时间序列数据设计。 + +## Key Characteristics +- 类型:时序数据库 +- 优化:高写入吞吐量 +- 分析:内置时间序列分析函数 +- 存储:内存引擎 + 磁带引擎分层 + +## Use Cases +- IoT 传感器数据 +- 基础设施监控 +- 应用性能监控 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] \ No newline at end of file diff --git a/wiki/entities/Aurora.md b/wiki/entities/Aurora.md new file mode 100644 index 00000000..86e73539 --- /dev/null +++ b/wiki/entities/Aurora.md @@ -0,0 +1,29 @@ +--- +title: "Aurora" +type: entity +tags: + - AWS + - Database + - Cloud Native +sources: + - ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora +last_updated: 2026-04-18 +--- + +## Definition +Aurora 是 Amazon 自研的云原生关系型数据库,与 MySQL 和 PostgreSQL 兼容。其架构使用 6 个 EBS 卷跨 3 个可用区存储数据,由 Amazon 管理。 + +## Key Characteristics +- 存储架构:6 个 EBS 卷跨 3 个 AZ +- RTO:30 秒(AZ 故障场景) +- 自动扩展:支持 Serverless v2 +- 读副本:与主库共享存储,无需数据复制 + +## Pricing +- 最低实例规格和成本高于 RDS +- IO 按 IOPS 计费(实际无上限) + +## Use Cases +- 大型数据库(10-20TB+) +- 需要高 availability 的生产环境 +- 需要快速故障恢复的业务 \ No newline at end of file diff --git a/wiki/entities/Duolingo.md b/wiki/entities/Duolingo.md new file mode 100644 index 00000000..98851fe6 --- /dev/null +++ b/wiki/entities/Duolingo.md @@ -0,0 +1,16 @@ +--- +title: "Duolingo" +type: entity +tags: [company, AWS, case-study] +date: 2026-04-18 +--- + +## Profile +- 角色:案例公司,多语言学习平台 +- 用例:使用 DynamoDB 存储个性化数据,ElastiCache 缓存常见词汇/短语,Aurora 处理事务数据 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] — AWS 专用数据库架构 + +## Aliases +- Duolingo \ No newline at end of file diff --git a/wiki/entities/Femi-George.md b/wiki/entities/Femi-George.md new file mode 100644 index 00000000..c3d15690 --- /dev/null +++ b/wiki/entities/Femi-George.md @@ -0,0 +1,16 @@ +--- +title: "Femi George" +type: entity +tags: [person, AWS, database] +date: 2026-04-18 +--- + +## Profile +- 角色:AWS 数据库销售专家(Database Sales Specialist) +- 贡献:CTP Topic 51 主讲人,讲解 AWS 专用数据库架构 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] — AWS 专用数据库架构 + +## Aliases +- Femi George \ No newline at end of file diff --git a/wiki/entities/Gruntwork.md b/wiki/entities/Gruntwork.md new file mode 100644 index 00000000..f5fdeab4 --- /dev/null +++ b/wiki/entities/Gruntwork.md @@ -0,0 +1,26 @@ +--- +title: "Gruntwork" +type: entity +tags: + - aws + - landing-zone + - infrastructure +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Summary +Gruntwork 提供基于最佳实践的预配置 AWS 基础架构框架 Landing Zones,包括 R&D Labs 和 SAS 两种环境类型。 + +## Definition +AWS Landing Zone 框架提供商,定义企业级 AWS 多账号架构和环境命名规范。 + +## Key Attributes +- **类型**:基础设施框架提供商 +- **产品**:Gruntwork Landing Zones +- **域名规范**:swinford.net(研发)、intsas.local(生产/SAS) + +## Connections +- [[AWS]] ← hosts ← [[Gruntwork]] +- [[swinford-net]] ← uses ← [[Gruntwork-Landing-Zone]] +- [[intsas-local]] ← uses ← [[Gruntwork-Landing-Zone]] \ No newline at end of file diff --git a/wiki/entities/MIM.md b/wiki/entities/MIM.md new file mode 100644 index 00000000..daaefa7b --- /dev/null +++ b/wiki/entities/MIM.md @@ -0,0 +1,18 @@ +--- +title: "MIM" +type: entity +tags: + - identity-management + - microsoft +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Summary +MIM(Microsoft Identity Manager)是 R&D 环境中用于安全组管理和权限申请的自助服务解决方案。 + +## Definition +Microsoft Identity Manager,企业身份管理工具,用于 R&D 环境的安全组管理和权限申请。 + +## Connections +- [[swinford-net]] ← manages ← [[MIM]] \ No newline at end of file diff --git a/wiki/entities/NetApp.md b/wiki/entities/NetApp.md new file mode 100644 index 00000000..2226cd05 --- /dev/null +++ b/wiki/entities/NetApp.md @@ -0,0 +1,28 @@ +--- +title: "NetApp" +type: entity +tags: + - storage + - enterprise +last_updated: 2026-04-18 +--- + +## Company + +NetApp(网宿科技)是一家美国混合云数据管理和存储解决方案提供商,成立于 1992 年,NASDAQ 上市。 + +## Products + +- **ONTAP**:NetApp 的核心操作系统,运行在 FAS、AFF、ASA 等存储系统上 +- **Cloud Volume ONTAP (CVO)**:AWS、Azure、GCP 上的云端版本,纯软件定义存储 +- **SnapMirror**:块级数据复制工具,用于灾难恢复和数据迁移 +- **SnapVault**:备份和归档解决方案 + +## AWS Services + +NetApp 在 AWS 上提供 Cloud Volume ONTAP (CVO),通过 EC2 实例运行,支持单节点或 HA 部署。 + +## Links + +- AWS Marketplace: CVO 产品页面 +- 官方文档:NetApp ONTAP 文档 \ No newline at end of file diff --git a/wiki/entities/Netflix.md b/wiki/entities/Netflix.md new file mode 100644 index 00000000..ff7c076e --- /dev/null +++ b/wiki/entities/Netflix.md @@ -0,0 +1,16 @@ +--- +title: "Netflix" +type: entity +tags: [company, AWS, case-study] +date: 2026-04-18 +--- + +## Profile +- 角色:案例公司,流媒体平台 +- 用例:使用 DynamoDB 实现弹性和低延迟访问 JSON 文档 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] — AWS 专用数据库架构 + +## Aliases +- Netflix \ No newline at end of file diff --git a/wiki/entities/Peloton.md b/wiki/entities/Peloton.md new file mode 100644 index 00000000..e9a98ea1 --- /dev/null +++ b/wiki/entities/Peloton.md @@ -0,0 +1,16 @@ +--- +title: "Peloton" +type: entity +tags: [company, AWS, case-study] +date: 2026-04-18 +--- + +## Profile +- 角色:案例公司,健身平台 +- 用例:使用 ElastiCache Redis 为客户提供即时反馈 + +## Sources +- [[ctp-topic-51-architecting-with-aws-purpose-built-databases]] — AWS 专用数据库架构 + +## Aliases +- Peloton \ No newline at end of file diff --git a/wiki/entities/SMACKS-Ticket.md b/wiki/entities/SMACKS-Ticket.md new file mode 100644 index 00000000..5cf23a50 --- /dev/null +++ b/wiki/entities/SMACKS-Ticket.md @@ -0,0 +1,21 @@ +--- +title: "SMACKS Ticket" +type: entity +tags: + - ticketing + - support +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Summary +SMACKS 是 Gruntwork Landing Zones 中的内部服务管理工单系统,用于申请新账号、密码重置和处理生产环境变更。 + +## Definition +内部服务工单系统,处理生产/SAS 环境的: +- 账号申请 +- 密码重置 +- 生产环境变更请求 + +## Related +- [[intsas-local]] ← 用于生产环境 \ No newline at end of file diff --git a/wiki/entities/intsas-local.md b/wiki/entities/intsas-local.md new file mode 100644 index 00000000..c37e4080 --- /dev/null +++ b/wiki/entities/intsas-local.md @@ -0,0 +1,22 @@ +--- +title: "intsas.local" +type: entity +tags: + - active-directory + - domain +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Summary +intsas.local 是 Gruntwork Landing Zones 中生产与分阶段 SAS 环境的 Active Directory 域名,强调资源所有权和审计。 + +## Definition +生产与分阶段 SAS(Staging and Production)环境的内部域名,强调资源所有权和审计追踪。 + +## Type +- 生产/SAS 环境专用域名 + +## Related +- [[Gruntwork-Landing-Zone]] +- [[SMACKS-Ticket]] ← 用于账号申请和密码重置 \ No newline at end of file diff --git a/wiki/entities/swinford-net.md b/wiki/entities/swinford-net.md new file mode 100644 index 00000000..f207aba5 --- /dev/null +++ b/wiki/entities/swinford-net.md @@ -0,0 +1,22 @@ +--- +title: "swinford.net" +type: entity +tags: + - active-directory + - domain +sources: [ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs] +last_updated: 2026-04-18 +--- + +## Summary +swinford.net 是 Gruntwork Landing Zones 中 R&D Labs(研发实验室)环境专用的 Active Directory 域名。 + +## Definition +研发实验室环境的统一域名,支持自助服务管理。 + +## Type +- 研发实验室(R&D Labs)专用域名 + +## Related +- [[Gruntwork-Landing-Zone]] +- [[MIM]] ← 用于安全组管理和权限申请 \ No newline at end of file diff --git a/wiki/index.md b/wiki/index.md index d3c74973..341ceb0b 100644 --- a/wiki/index.md +++ b/wiki/index.md @@ -39,7 +39,7 @@ - [Never write another prompt](sources/never-write-another-prompt.md) — 通过工具简化 AI 提示词创建流程 -- [CTP Topic 44 AWS Backup in Micro Focus](sources/ctp-topic-44-aws-backup-in-micro-focus.md) — AWS Backup 服务及其在 Micro Focus 云迁移项目中的应用 +- [CTP Topic 46 NetApps on AWS](sources/ctp-topic-46-netapps-on-aws.md) — NetApp on AWS (CVO) 架构、部署、数据分层、安全与迁移 - [养虾日记1:我用 OpenClaw 管了 28 万张照片:一次真实的多设备照片整理实战](sources/养虾日记1-我用-OpenClaw-管了-28-万张照片-一次真实的多设备照片整理实战.md) — 利用 AI Agent 自动化整理 28 万张照片(MD5 去重 + 批次任务 + Cron 定时执行) @@ -252,8 +252,27 @@ - [CTP Topic 14 Octane Hub on AWS Real life experience](sources/ctp-topic-14-octane-hub-on-aws-real-life-experience.md) — Octane Hub 将生产服务迁移到 AWS 的真实经验分享 +- [CTP Topic 28 AWS Tag Validation Tool](sources/ctp-topic-28-aws-tag-validation-tool.md) — AWS 标签验证工具,用于审计资源标签合规性 + +- [CTP Topic 66 Exposing the differences between PostgreSQL RDS and Aurora](sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md) — PostgreSQL on RDS 与 Aurora 的详细对比(架构、性能、成本、故障切换) + +- [CTP Topic 72 Implementing an Enterprise DR Strategy using AWS Backup](sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md) — 使用 AWS Backup 实现企业级灾难恢复策略 + +- [CTP Topic 17 Active Directory Services in Gruntwork AWS LZs](sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md) — 在 Gruntwork AWS Landing Zones 中集成 Active Directory 服务实践 + +- [CTP Topic 51 Architecting with AWS Purpose-Built Databases](sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md) — AWS 专用数据库架构,选择合适的数据库服务 + +- [CTP Topic 47 Enterprise Architecture Cloud Standards](sources/ctp-topic-47-enterprise-architecture-cloud-standards.md) — 企业云架构标准、Landing Zone 框架与 Cloud Guardrails + +## Sources +- [CTP Topic 1 Gruntwork Landing Zone Architecture](sources/ctp-topic-1-gruntwork-landing-zone-architecture.md) — 基于 Gruntwork 的 AWS Landing Zone 架构设计 + ## Entities - [Holger Rode](entities/Holger-Rode.md) — Octane Hub CTO 软件工厂团队负责人 +- [Femi George](entities/Femi-George.md) — AWS 数据库销售专家,CTP Topic 51 主讲人 +- [Duolingo](entities/Duolingo.md) — 案例公司,使用 DynamoDB + ElastiCache + Aurora +- [Netflix](entities/Netflix.md) — 案例公司,使用 DynamoDB 存储 JSON 文档 +- [Peloton](entities/Peloton.md) — 案例公司,使用 ElastiCache Redis 提供即时反馈 - [Mem0](entities/Mem0.md) — Camp 1 记忆后端领导者,53.1k stars - [MemPalace](entities/MemPalace.md) — 本地优先逐字存储,46.2k stars - [Supermemory](entities/Supermemory.md) — 时间感知记忆,21.8k stars @@ -276,7 +295,20 @@ - [Apache](entities/Apache.md) — Apache 软件基金会,全球最大的开源软件基金会之一 - [Apache Superset](entities/Apache-Superset.md) — Apache 软件基金会旗下的开源 BI 平台 - [BMC](entities/BMC.md) — 企业软件和云解决方案提供商 +- [NetApp](entities/NetApp.md) — 企业级存储解决方案提供商,Cloud Volume ONTAP (CVO) 产品 - [AWS](entities/AWS.md) — 全球最大公有云平台(EKS、RDS、S3、Lambda 等) +- [Aurora](entities/Aurora.md) — Amazon 自研云原生关系型数据库,6 个 EBS 卷跨 3 个 AZ +- [Amazon DynamoDB](entities/Amazon-DynamoDB.md) — 键值和文档数据库,单数字毫秒延迟,支持每日数万亿请求 +- [Amazon DocumentDB](entities/Amazon-DocumentDB.md) — MongoDB 兼容文档数据库 +- [Amazon ElastiCache](entities/Amazon-ElastiCache.md) — 内存数据库(Redis、Memcached) +- [Amazon Neptune](entities/Amazon-Neptune.md) — 图形数据库 +- [Amazon Timestream](entities/Amazon-Timestream.md) — 时序数据库,专为 IoT 设计 +- [Amazon Keyspaces](entities/Amazon-Keyspaces.md) — Apache Cassandra 托管服务 +- [Gruntwork](entities/Gruntwork.md) — Gruntwork Landing Zones 框架提供商,定义 R&D 和 SAS 环境域名规范 +- [swinford.net](entities/swinford-net.md) — R&D Labs 环境 Active Directory 域名 +- [intsas.local](entities/intsas-local.md) — SAS 生产环境 Active Directory 域名 +- [MIM](entities/MIM.md) — R&D 环境的安全组管理和权限申请自助服务解决方案 +- [SMACKS Ticket](entities/SMACKS-Ticket.md) — 内部服务管理工单系统,用于生产环境账号申请和密码重置 - [GCP](entities/GCP.md) — Google Cloud Platform(GKE、GCS、Cloud SQL 等) - [Azure](entities/Azure.md) — Microsoft 公有云平台(AKS、Cosmos DB 等) - [Kubernetes](entities/Kubernetes.md) — CNCF 开发的开源容器编排平台 @@ -432,7 +464,18 @@ - [Choi Wontak](entities/Choi-Wontak.md) — tutor-skills 作者 ## Concepts +- [Service Control Policies](concepts/Service-Control-Policies.md) — AWS Organizations 的策略类型,管理组织内账户的最大权限边界 + +- [Boto3](concepts/Boto3.md) — AWS SDK for Python,允许通过 Python 代码调用 AWS API + +- [Gruntwork Landing Zone](concepts/Gruntwork-Landing-Zone.md) — Gruntwork 提供的预配置 AWS 基础架构框架,分为 R&D Labs(swinford.net)和 SAS(intsas.local)环境 +- [Enterprise Architecture](concepts/Enterprise-Architecture.md) — 企业架构,帮助阐明云架构并传达可用资源 +- [Cloud Guardrails](concepts/Cloud-Guardrails.md) — 云守护栏,捕获可扩展性、成本最小化和灵活性的强制性要求 +- [Domain Join](concepts/Domain-Join.md) — 通过 SRE-provided AMIs 实现自动化将 Windows/Linux 实例加入 AD 域的技术 +- [Cloud Volume ONTAP](concepts/Cloud-Volume-ONTAP.md) — NetApp 云端存储解决方案,运行在 AWS EC2 实例上,支持数据分层到 S3 +- [SRE-provided AMIs](concepts/SRE-provided-AMIs.md) — SRE 团队预构建的机器镜像,内置自动域加入脚本 - [语义形状系统](concepts/语义形状系统.md) — fireworks-tech-graph 将语义概念映射为固定 SVG 形状的词汇表 +- [Purpose-Built Database](concepts/Purpose-Built-Database.md) — 专用数据库,根据用例选择最佳工具而非一刀切 - [记忆后端](concepts/记忆后端.md) — Camp 1 类别的记忆工具,从对话中提取事实并存储到向量数据库 - [上下文基质](concepts/上下文基质.md) — Camp 2 类别的记忆架构,通过维护结构化文件实现上下文累积 diff --git a/wiki/log.md b/wiki/log.md index bf30b10b..cf633489 100644 --- a/wiki/log.md +++ b/wiki/log.md @@ -1,3 +1,66 @@ +## [2026-04-18] ingest | CTP Topic 72 Implementing an Enterprise DR Strategy using AWS Backup +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md +- Status: ✅ 成功摄入 +- Summary: 使用 AWS Backup 实现企业级灾难恢复策略,涵盖 DR 与 HA 区别、RTO/RPO 定义、AWS Backup 架构、Vault Lock、跨账户备份 +- Concepts created: 灾难恢复(已有) +- Entities created: AWS(已有) +- Source page: wiki/sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md +- Notes: + +## [2026-04-18] ingest | CTP Topic 47 Enterprise Architecture Cloud Standards +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-47-enterprise-architecture-cloud-standards.md +- Status: ✅ 成功摄入 +- Summary: 企业云架构标准与 Landing Zone 框架,涵盖 Enterprise Architecture、Cloud Guardrails、Terraform IaC 和 Terragrunt +- Concepts created: Enterprise Architecture(新增), Cloud Guardrails(新增) +- Entities created: Lindsay(新增) +- Source page: wiki/sources/ctp-topic-47-enterprise-architecture-cloud-standards.md +- Notes: 讲师 Lindsay 是有开发背景的企业架构师,强调应用团队输入对完善守护栏的重要性 + +## [2026-04-18] ingest | CTP Topic 1 Gruntwork Landing Zone Architecture +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-1-gruntwork-landing-zone-architecture.md +- Status: ✅ 成功摄入 +- Summary: 基于 Gruntwork 的 AWS Landing Zone 架构设计,涵盖参考架构、联邦用户、CI/CD 流程和 Git 工作流 +- Concepts created: Reference Architecture, Federated User +- Entities created: Gruntwork(已有) +- Source page: wiki/sources/ctp-topic-1-gruntwork-landing-zone-architecture.md +- Notes: Gruntwork 是拥有大量 Terraform 代码的组织,其代码经过多次实践验证 + +## [2026-04-18] ingest | CTP Topic 51 Architecting with AWS Purpose-Built Databases +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-51-architecting-with-aws-purpose-built-databases.md +- Status: ✅ 成功摄入 +- Summary: AWS 专用数据库架构,讲解如何为现代应用选择合适的数据库( DynamoDB、Aurora、DocumentDB、ElastiCache、Neptune、Timestream、Keyspaces) +- Concepts created: Purpose-Built Database +- Entities created: Femi George, Duolingo, Netflix, Peloton, Amazon DynamoDB, Amazon DocumentDB, Amazon ElastiCache, Amazon Neptune, Amazon Timestream, Amazon Keyspaces +- Source page: wiki/sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md +- Notes: 现代应用需考虑可伸缩性、全球低延迟交付和开发者访问;DBA 角色从平台管理转向应用创新 + +## [2026-04-18] ingest | CTP Topic 46 NetApps on AWS +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-46-netapps-on-aws.md +- Status: ✅ 成功摄入 +- Summary: NetApp on AWS (CVO) 架构、部署模式、数据分层机制(EBS→S3)、安全加密与灾备方案(SnapMirror),企业级混合云存储方案 +- Concepts created: Cloud Volume ONTAP +- Entities created: NetApp +- Source page: wiki/sources/ctp-topic-46-netapps-on-aws.md +- Notes: 当前生产约 15 个 NetApp 集群,1.3 PB 数据;支持 30 天自动分层到 S3 + +## [2026-04-18] ingest | CTP Topic 17 Active Directory Services in Gruntwork AWS LZs +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md +- Status: ✅ 成功摄入 +- Summary: 在 Gruntwork AWS Landing Zones 中集成和管理 Active Directory 服务,涵盖 R&D(swinford.net)和 SAS(intsas.local)域名规范 +- Concepts created: Gruntwork Landing Zone, Domain Join, SRE-provided AMIs +- Entities created: Gruntwork, swinford.net, intsas.local, MIM, SMACKS Ticket +- Source page: wiki/sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md +- Notes: 旧的 infra 和 AST 域名已废弃,需迁移到新规范 + +## [2026-04-18] ingest | CTP Topic 66 Exposing the differences between PostgreSQL RDS and Aurora +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md +- Status: ✅ 成功摄入 +- Summary: PostgreSQL on RDS 与 Aurora 的详细对比,涵盖架构、性能、成本、故障切换和高可用性优化。Aurora 适合大型数据库(10-20TB+),RDS 适合中小型数据库 +- Concepts created: Aurora, Multi-AZ, Blue-Green-Deployment +- Entities created: Aurora +- Source page: wiki/sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md +- Notes: Aurora RTO 30秒 vs RDS 2分钟;Aurora 使用 6 个 EBS 卷跨 3 个 AZ + ## [2026-04-18] ingest | CTP Topic 14 Octane Hub on AWS Real life experience - Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-14-octane-hub-on-aws-real-life-experience-moving-production-services-i.md - Status: ✅ 成功摄入 @@ -1690,3 +1753,11 @@ - Source page: wiki/sources/install-wsl.md - Notes: +## [2026-04-18] ingest | CTP Topic 28 AWS Tag Validation Tool +- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-28-aws-tag-validation-tool.md +- Status: ✅ 成功摄入 +- Summary: AWS 标签验证工具,用于审计 EC2、安全组、负载均衡器、Lambda 函数的标签合规性,通过 YAML 配置文件定义预期值并生成 CSV 报告 +- Concepts created: Service Control Policies, Boto3 +- Source page: wiki/sources/ctp-topic-28-aws-tag-validation-tool.md +- Notes: 与 Gruntwork Landing Zone 关联,标签验证用于 Landing Zone 治理 + diff --git a/wiki/overview.md b/wiki/overview.md index 09b183a8..ad586aa2 100644 --- a/wiki/overview.md +++ b/wiki/overview.md @@ -18,6 +18,8 @@ AI 开源项目、Cloud & DevOps、Vibe Coding、AI时代个人发展、跨境 - GDM3:GNOME Display Manager,Ubuntu 的登录管理器,支持 Wayland 和 X11 两种显示协议 - ITSM(IT 服务管理):从工单系统演进为战略推动者,实现运营卓越、风险缓解和创新加速 - Multi-Account Strategy(多账号策略):AWS 推荐的企业级云架构模式,通过将工作负载分离到多个 AWS 账号来提升安全性、治理能力和故障隔离 +- Gruntwork Landing Zone:Gruntwork 提供的预配置 AWS 基础架构框架,基于 Reference Architecture 包含核心账户和工作负载账户 +- Cloud Guardrails:云守护栏,捕获可扩展性、成本最小化和灵活性的强制性要求和最佳实践 - RTO(Recovery Time Objective):系统允许的最大停机时间,是灾难恢复的核心指标 - RPO(Recovery Point Objective):可接受的最大数据丢失量,是数据保护的核心指标 - 开源平替:功能可替代闭源商业产品的开源项目 @@ -201,6 +203,9 @@ AI 开源项目、Cloud & DevOps、Vibe Coding、AI时代个人发展、跨境 - **What is DevSecOps? Best Practices, Benefits, and Tools** — DevSecOps 方法论详解(SDLC 安全集成、SAST/SCA/IAST/DAST 四大工具、Shift Left/Right 策略、企业实施挑战) - **Ubuntu 服务器通过 rsync 实现日常增量备份** — 使用 rsync 实现 Ubuntu 服务器到 NAS 的增量备份,涵盖 NFS 永久挂载和灾难恢复 + +- **CTP Topic 46 NetApps on AWS** — NetApp Cloud Volume ONTAP (CVO) 架构、部署、数据分层(EBS→S3)、安全加密与灾备(SnapMirror) +- **CTP Topic 28 AWS Tag Validation Tool** — AWS 标签验证工具,通过 YAML 配置文件审计资源标签合规性,生成 CSV 报告 - **如何在Ubuntu Server上通过NFS挂载Synology NAS上的共享文件夹** — �� Ubuntu Server 上通过 NFS 协议挂载 Synology NAS 共享文件夹 - **Ubuntu 禁用合盖休眠** — 在 Ubuntu 24.04 中通过修改 systemd-logind 配置禁用笔记本合盖休眠行为 - **群晖NAS科学上网方法** — 在群晖 NAS 上通过 V2RayA 配置透明代理,使 Docker 可以科学上网 diff --git a/wiki/sources/ctp-topic-1-gruntwork-landing-zone-architecture.md b/wiki/sources/ctp-topic-1-gruntwork-landing-zone-architecture.md new file mode 100644 index 00000000..a037711f --- /dev/null +++ b/wiki/sources/ctp-topic-1-gruntwork-landing-zone-architecture.md @@ -0,0 +1,55 @@ +--- +title: "CTP Topic 1 Gruntwork Landing Zone Architecture" +type: source +tags: + - AWS + - Landing-Zone + - Gruntwork + - CTP + - DevOps +date: 2026-04-14 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-1-gruntwork-landing-zone-architecture.md]] + +## Summary +- 核心主题:基于 Gruntwork 的 AWS Landing Zone 架构设计与实现 +- 问题域:云转型项目的基础设施最佳实践 +- 方法/机制:参考架构(Reference Architecture)+ Landing Zone + 联邦用户 + Jenkins CI/CD + Git 工作流 +- 结论/价值:Gruntwork 提供经过实战验证的 Terraform 模块,是云平台部署的最佳实践起点 + +## Key Claims +- Gruntwork 是拥有大量 Terraform 代码的组织,其代码经过多次实践验证,被认为是最佳实践 +- 参考架构(Reference Architecture)是包含核心账户(Shared/Logs/Security)和工作负载账户(Prod/Stage/Dev)的最佳实践起点 +- Landing Zone 基于 Gruntwork,不包含具体 ECS 集群或 RDS 数据库,由产品团队自行定义 +- 安全账户使用联邦用户,通过 AD 组映射到 IAM 角色,替代传统 IAM 用户 +- 每个 Landing Zone 有一个 Jenkins 服务器部署基础设施变更,每个产品团队有独立 Jenkins 任务 + +## Key Quotes +> "服务应具有业务上下文,而非简单的资源" — Gruntwork Terraform AWS 服务目录的设计理念 + +## Key Concepts +- [[Reference Architecture]]:包含核心账户和工作负载账户的最佳实践起点 +- [[Landing Zone]]:基于 Gruntwork 的基础设施部署单元,每个 Zone 有独立 GitHub 仓库管理 IaC +- [[Federated User]]:通过 AD 组映射到 IAM 角色的联邦身份访问,简化安全账户管理 +- [[Gruntwork Modules]]:经过实战验证的 Terraform 模块,提供业务上下文和粒度支持 +- [[CI/CD Pipeline]]:基于特性分支 + PR + Jenkins 的基础设施变更自动化流程 + +## Key Entities +- [[Gruntwork]]:提供 Landing Zone 框架的组织,定义 R&D 和 SAS 环境域名规范 + +## Connections +- [[ctp-topic-2-git]] — Git 版本控制基础(CI/CD 前提) +- [[ctp-topic-3-deploy-and-maintain-infrastructure]] — Terraform 部署与维护 +- [[ctp-topic-9-ci-cd-with-gruntwork]] — Gruntwork CI/CD 流水线实践 + +## Contradictions +- (暂无) + +## 行动项 +- [ ] 熟悉 Gruntwork Terraform AWS Service Catalog,了解可用模块 +- [ ] 采用特性分支开发流程,通过 PR 合并到主分支 +- [ ] 配置 Jenkins 流水线,实现 Terraform Plan/Apply 自动化 +- [ ] 探索 TerraTest 用于基础设施变更的自动化测试 +- [ ] 确定 Active Directory 联邦访问的具体配置方案 \ No newline at end of file diff --git a/wiki/sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md b/wiki/sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md new file mode 100644 index 00000000..98228abe --- /dev/null +++ b/wiki/sources/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md @@ -0,0 +1,61 @@ +--- +title: "CTP Topic 17 Active Directory Services in Gruntwork AWS LZs" +type: source +tags: + - AWS + - Landing-Zone + - AD + - Gruntwork + - CTP +date: 2026-04-14 +--- +## Source File +[[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-17-active-directory-services-in-gruntwork-aws-lzs.md]] + +## Summary +- 核心主题:在 Gruntwork AWS Landing Zones 架构中集成和管理 Active Directory 服务 +- 问题域:R&D Labs 生产环境域名的选择与迁移,旧域名(infra/AST)废弃 +- 方法/机制:使用 SRE 预制 AMIs 实现自动域加入,通过 Terraform user_data 调用 PowerShell/Shell 脚本 +- 结论/价值:明确域名规范(swinford.net 用于研发环境,intsas.local 用于生产/SAS 环境),提供自动化域加入方案和支持渠道 + +## Key Claims +- R&D Labs 环境统一使用 swinford.net 域名,支持自助服务管理 +- 生产与分阶段 SAS 环境使用 intsans.local 域名,强调资源所有权和审计 +- 旧的 infra 和 AST 域名已在 Gruntwork 落地页中废弃,需要迁移 +- SRE 团队提供的预制 AMIs 内置自动域加入脚本(PowerShell/Shell) +- MIM 自助工具用于研发环境的安全组管理和权限申请 +- SMACKS 工单系统用于生产环境账号申请和密码重置 + +## Key Quotes +> "本次视频是 DevOps 云学习系列课程之一,重点介绍了在 Gruntwork AWS Landing Zones 架构中集成与管理 Active Directory (AD) 服务的核心实践" + +> "研发实验室(R&D Labs)统一使用 `swinford.net` 域名" +> "生产与分阶段 SAS 环境则采用 `intsas.local`" + +> "旧有的 `infra` 和 `AST` 域名在新的 Gruntwork 落地页中已被废弃" + +## Key Concepts +- [[Gruntwork-Landing-Zone]]: Gruntwork 提供的预配置 AWS 基础架构框架,分为 R&D Labs 和 SAS 两种环境类型 +- [[SRE-provided-AMIs]]: SRE 团队预先构建的机器镜像,内置用于自动加入域的 PowerShell 和 Shell 脚本 +- [[Domain-Join]]: 通过 SRE-provided AMIs 在 Terraform user_data 中调用脚本实现自动化域加入 +- [[MIM]]: Microsoft Identity Manager,用于 R&D 环境的安全组管理和权限申请 +- [[SMACKS-Ticket]]: 内部服务管理工单系统,用于申请新账号、密码重置、生产环境变更 +- [[Secure-Dynamic-Updates]]: 安全机制,允许 Linux 系统加入域时自动注册 DNS A 记录 + +## Key Entities +- [[AWS]]: 全球最大公有云平台,Hosting Landing Zones 基础设施 +- [[Gruntwork]]: 提供 Landing Zone 框架的公司,定义环境域名规范 +- [[Paul]]: 视频演讲者,详细阐述 AD 服务集成方案 +- [[SRE-Team]]: 构建和提供预制 AMIs 的团队 + +## Connections +- [[AWS-Landing-Zone]] ← uses ← [[Gruntwork-Landing-Zone]] +- [[SRE-provided-AMIs]] ← implements ← [[Domain-Join]] +- [[MIM]] ← manages ← [[swinford.net]] +- [[SMACKS-Ticket]] ← processes ← [[intsas.local]] + +## Contradictions +- 与旧域名规范冲突: + - 冲突点:旧的 infra 和 AST 域名已被废弃 + - 当前观点:统一使用 swinford.net(研发)和 intsas.local(生产) + - 对方观点:继续使用 infra/AST 域名 \ No newline at end of file diff --git a/wiki/sources/ctp-topic-28-aws-tag-validation-tool.md b/wiki/sources/ctp-topic-28-aws-tag-validation-tool.md new file mode 100644 index 00000000..315a85da --- /dev/null +++ b/wiki/sources/ctp-topic-28-aws-tag-validation-tool.md @@ -0,0 +1,57 @@ +--- +id: ctp-topic-28-aws-tag-validation-tool +title: "CTP Topic 28 AWS Tag Validation Tool" +type: source +tags: + - AWS + - Tagging + - Validation + - Tool + - CTP + - Landing-Zone +date: 2026-04-18 +last_updated: 2026-04-18 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-28-aws-tag-validation-tool.md]] + +## Summary + +- 核心主题:AWS 标签验证工具,用于审计资源标签合规性 +- 问题域:云资源治理、标签策略执行、自动化审计 +- 方法/机制:通过 YAML 配置文件定义合法标签值,使用 Boto3 扫描 EC2、安全组、负载均衡器、Lambda 函数,与预期值比对并生成 CSV 报告 +- 结论/价值:提高标签合规审计效率,为成本核算提供标签数据基础 + +## Key Claims + +- 在该组织中,Checkpoint 防火墙会读取 EC2 实例、安全组和负载均衡器的标签值来配置网络访问权限,标签无效或缺失会被拦截网络流量 +- Service Control Policies (SCPs) 可在组织层面拦截不合规资源的创建,主要应用于 SAS 账户 +- 对于已存在的存量资源,需要有效的审计手段,标签验证工具可自动扫描并生成问题报告 + +## Key Quotes + +> "标签不仅影响资源元数据,还直接影响网络安全" — Lewis Brown + +> "通过 YAML 配置文件定义各账户的合法标签值,工具会自动扫描并比对" — Lewis Brown + +## Key Concepts + +- [[AWS Tags]]:附加在 AWS 资源上的元数据键值对 +- [[Service Control Policies]]:AWS Organizations 的策略,管理组织内账户的最大可用权限 +- [[Boto3]]:适用于 Python 的 AWS SDK +- [[Poetry]]:Python 依赖管理和打包工具 + +## Key Entities + +- [[AWS]]:AWS 标签验证工具的云平台 +- [[SRE Team]]:工具开发者 + +## Connections + +- [[CTP Topic 10 - AWS Tagging Deep Dive]] ← depends_on ← [[CTP Topic 28 - AWS Tag Validation Tool]] +- [[CTP Topic 28 - AWS Tag Validation Tool]] → extends → [[Gruntwork Landing Zone]] + +## Contradictions + +- 暂无冲突记录 \ No newline at end of file diff --git a/wiki/sources/ctp-topic-46-netapps-on-aws.md b/wiki/sources/ctp-topic-46-netapps-on-aws.md new file mode 100644 index 00000000..255dd7b1 --- /dev/null +++ b/wiki/sources/ctp-topic-46-netapps-on-aws.md @@ -0,0 +1,74 @@ +--- +title: "CTP Topic 46 NetApps on AWS" +type: source +tags: + - NetApp + - AWS + - Storage + - CTP +date: 2026-04-14 +--- + +## Source File + +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-46-netapps-on-aws.md]] + +## Summary + +- **核心主题**:NetApp on AWS(Cloud Volume ONTAP - CVO)的架构、部署、数据分层、安全、备份与灾难恢复 +- **问题域**:传统 NetApp 存储系统云端部署、数据迁移、企业级存储方案 +- **方法/机制**: + - CVO:软件定义的存储设备,运行在 EC2 实例上 + - 数据分层:EBS 存放活跃数据,S3 存放非活跃数据(30天以上) + - 备份恢复:SnapMirror(块级复制)、SnapVault、Snapshot + - 加密:AWS KMS 或 NetApp 自带加密(256位) +- **结论/价值**:NetApp on AWS 提供企业级混合云存储方案,支持从本地数据中心无缝迁移 + +## Key Claims + +- CVO 作为纯软件定义存储,运行在 EC2 实例上,支持单节点或 HA 对部署 +- 数据分层机制:活跃数据存 EBS,非活跃数据(超过 30 天)自动迁移至 S3 +- SnapMirror 支持块级复制,保持 Deduplication 和压缩,数据传输高效 +- 支持多协议:NFS、SMB、CIFS、iSCSI、FC +- 当前生产环境约 15 个 NetApp 集群,存储约 1.3 PB 数据 + +## Key Quotes + +> "NetApp on AWS (CVO) is a software-only storage appliance hosted on EC2 instances, functioning as nodes. It can be a single node or HA pair, utilizing a mediator instance to aid during takeover and give back processes." — 培训讲师 Sandeep 和 Yael + +> "Data inactive for 30 days or more is automatically moved to S3 and pulled back to EBS when accessed." — 数据分层机制 + +## Key Concepts + +- [[Cloud Volume ONTAP]]:AWS 上的 NetApp 存储解决方案,纯软件定义 +- [[EBS]]:AWS 块存储,CVO 的物理存储后端(GP3、GP2、IO1、IO2、ST1 卷类型) +- [[S3]]:用于存储非活跃数据的对象存储,与 EBS 数据分层配合 +- [[SnapMirror]]:NetApp 块级复制工具,用于数据中心到 AWS 的数据迁移 +- [[Snapshot]]:卷的点-in-time 只读快照,只存储指针,最小化存储空间占用 + +## Key Entities + +- [[AWS]]:公有云平台,CVO 部署的目标云 +- [[NetApp]]:存储解决方案供应商,CVO 产品提供方 +- [[EBS]]:AWS Elastic Block Store,CVO 使用的块存储服务 +- [[S3]]:Simple Storage Service,CVO 数据分层的目标存储 + +## Connections + +- [[CTP Topic 44 AWS Backup in Micro Focus]] ← uses_similar_pattern ← [[ctp-topic-46-netapps-on-aws]] +- [[ctp-topic-46-netapps-on-aws]] → relies_on → [[EBS]] +- [[ctp-topic-46-netapps-on-aws]] → uses_for_tiering → [[S3]] + +## Contradictions + +- 当前无冲突 + +## Migration Tools + +| Tool | Use Case | Protocol | +|------|----------|----------| +| SnapMirror | 块级复制,保持 Dedeup/压缩 | NetApp to NetApp | +| NetApp XCP | 文件级复制,多会话并发 | NFS/SMB | +| NetApp Cloud Sync | 同步到 S3/EFS | 文件级 | +| AWS DataSync | 迁移到 EFS/S3 | 文件级 | +| Silver Peak | WAN 优化 | 压缩流量 | \ No newline at end of file diff --git a/wiki/sources/ctp-topic-47-enterprise-architecture-cloud-standards.md b/wiki/sources/ctp-topic-47-enterprise-architecture-cloud-standards.md new file mode 100644 index 00000000..5f36574a --- /dev/null +++ b/wiki/sources/ctp-topic-47-enterprise-architecture-cloud-standards.md @@ -0,0 +1,56 @@ +--- +title: "CTP Topic 47 Enterprise Architecture Cloud Standards" +type: source +tags: [Enterprise-Architecture, Cloud-Standards, CTP, AWS, Landing-Zone] +sources: [nas:///volume2/work/Public Cloud Learning Sessions/CTP _ Topic 47_Enterprise Architecture Cloud Standards.mp4] +last_updated: 2026-04-18 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-47-enterprise-architecture-cloud-standards.md]] + +## Summary +- **核心主题**:企业云架构标准、Landing Zone 框架、云守护栏(Guardrails) +- **问题域**:企业如何在云环境中实现标准化、安全性和治理 +- **方法/机制**:Landing Zone 框架、Enterprise Architecture、Cloud Guardrails、Terraform IaC +- **结论/价值**:通过预配置框架降低应用团队安全审查负担,實現标准化和自动化 + +## Key Claims +- Landing Zone 是托管云工作负载的框架,聚焦安全性、合规性和可管理性,核心组件包括账户结构、网络、安全、访问管理和遥测 +- Enterprise Architecture 帮助阐明云架构,向应用团队传达可用资源和要求 +- Cloud Guardrails 捕获可扩展性、成本最小化和灵活性的强制性要求和最佳实践 +- Terraform IaC 允许通过代码指定期望环境,促进标准化和可测试性 + +## Key Quotes +> "A landing zone is a framework for hosting cloud workloads, focusing on security, compliance, and manageability." +> — Lindsay, Enterprise Architect + +> "The account structure aligns with environments (dev, staging, production), and roles define access based on zero trust and least privilege principles." +> — Lindsay + +> "We want your knowledge collected here for reuse and help other app developers down the road." +> — Lindsay, on guardrails refinement + +## Key Concepts +- [[Landing Zone]]:托管云工作负载的框架,聚焦安全性、合规性和可管理性 +- [[Enterprise Architecture]]:企业架构,帮助阐明云架构并传达可用资源 +- [[Cloud Guardrails]]:云守护栏,捕获强制要求和最佳实践 +- [[Terraform]]:基础设施即代码工具,支持环境标准化和可测试性 +- [[Terragrunt]]:Terraform 包装器,帮助生成不同环境 + +## Key Entities +- [[Lindsay]]:Enterprise Architect with development background,讲师 +- [[AWS]]:云服务提供商 + +## Connections +- [[Terraform]] ← enables ← [[Landing Zone]] +- [[Terragrunt]] ← wraps ← [[Terraform]] +- [[Cloud Guardrails]] ← derived_from ← [[Enterprise Architecture]] +- [[Landing Zone]] ← implements ← [[Zero Trust]] + +## Contradictions +- (暂无) + +## Action Items +- 应用团队应提供输入以完善守护栏 +- 企业架构团队在 intranet 站点创建了包含业务架构概念、数据连接、应用信息和技术路线图的页面 \ No newline at end of file diff --git a/wiki/sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md b/wiki/sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md new file mode 100644 index 00000000..4cec3d23 --- /dev/null +++ b/wiki/sources/ctp-topic-51-architecting-with-aws-purpose-built-databases.md @@ -0,0 +1,62 @@ +--- +title: "CTP Topic 51 Architecting with AWS Purpose-Built Databases" +type: source +tags: [AWS, Database, Purpose-Built, CTP, Cloud-Learning] +date: 2026-04-18 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-51-architecting-with-aws-purpose-built-databases.md]] + +## Summary +- 核心主题:AWS 专用数据库架构,讲解如何为现代应用选择合适的数据库 +- 问题域:数据库选型、NoSQL vs 关系型、AWS 数据库服务 +- 方法/机制:根据用例选择专用数据库,避免一刀切的数据库架构 +- 结论/价值:AWS 提供全面的专用数据库产品组合,支持不同类型的应用场景 + +## Key Claims +- 现代应用从客户端-服务器模型演进,需考虑可伸缩性、全球低延迟交付和开发者访问 +- 专用数据库选择需考虑应用规模、用户数、访问模式、使用高峰和性能要求 +- Duolingo 使用 DynamoDB 存储个性化数据,ElastiCache 缓存常见词汇,Aurora 处理事务数据 +- DBA 角色在云端演进,从平台管理转向应用创新 + +## Key Quotes +> "We need to start thinking of the right purpose built database for the right application." — Femi George + +> "Amazon Aurora has two flavors, MySQL and PostgreSQL." — Femi George + +> "The role of the DBA is evolving in the cloud." — Femi George + +## Key Concepts +- [[Purpose-Built Database]]:为特定用例优化的数据库,选择最佳工具而非一刀切 +- [[Amazon Aurora]]:云原生关系型数据库,支持 MySQL 和 PostgreSQL,存储计算分离 +- [[Amazon DynamoDB]]:键值和文档数据库,单数字毫秒延迟,支持每日数万亿请求 +- [[Amazon DocumentDB]]:MongoDB 兼容的文档数据库,灵活模式 +- [[Amazon ElastiCache]]:内存数据库(Redis、Memcached),用于缓存、实时分析 +- [[Amazon Neptune]]:图形数据库,适用于欺诈检测、社交网络、推荐系统 +- [[Amazon Timestream]]:时序数据库,专为 IoT 等高容量时间序列数据设计 +- [[Amazon Keyspaces]]:Apache Cassandra 托管服务,无服务器选项 + +## Key Entities +- [[AWS]]:云平台提供商 +- [[Femi George]]:AWS 数据库销售专家,主讲人 +- [[Duolingo]]:案例公司,使用 DynamoDB + ElastiCache + Aurora +- [[Netflix]]:案例公司,使用 DynamoDB 存储 JSON 文档 +- [[Peloton]]:案例公司,使用 ElastiCache Redis 提供即时客户反馈 + +## Connections +- [[AWS]] ← offers ← [[Amazon Aurora]] +- [[AWS]] ← offers ← [[Amazon DynamoDB]] +- [[AWS]] ← offers ← [[Amazon DocumentDB]] +- [[AWS]] ← offers ← [[Amazon ElastiCache]] +- [[AWS]] ← offers ← [[Amazon Neptune]] +- [[AWS]] ← offers ← [[Amazon Timestream]] +- [[AWS]] ← offers ← [[Amazon Keyspaces]] +- [[Duolingo]] ← uses ← [[Amazon DynamoDB]] +- [[Duolingo]] ← uses ← [[Amazon ElastiCache]] +- [[Duolingo]] ← uses ← [[Aurora]] +- [[Netflix]] ← uses ← [[Amazon DynamoDB]] +- [[Peloton]] ← uses ← [[Amazon ElastiCache]] + +## Contradictions +- (暂无) \ No newline at end of file diff --git a/wiki/sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md b/wiki/sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md new file mode 100644 index 00000000..d353eb1c --- /dev/null +++ b/wiki/sources/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md @@ -0,0 +1,45 @@ +--- +title: "CTP Topic 66 Exposing the differences between PostgreSQL RDS and Aurora" +type: source +tags: + - AWS + - RDS + - Aurora + - PostgreSQL + - CTP +date: 2026-04-14 +source_file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-66-exposing-the-differences-between-postgresql-rds-and-aurora.md +--- + +## Summary +- 核心主题:PostgreSQL on RDS 与 Aurora 的详细对比,涵盖架构、性能、成本、故障切换和高可用性优化 +- 问题域:选择适合的 AWS 数据库方案 +- 方法/机制:存储架构对比、故障转移机制、监控工具、高可用优化技巧 +- 结论/价值:Aurora 适合大型数据库(10-20TB+),RDS 适合中小型数据库 + +## Key Claims +- Aurora 提供 30 秒 RTO,RDS 为 2 分钟(AZ 故障场景) +- Aurora 最低实例规格和成本高于 RDS,但扩展性更好 +- Aurora 使用 6 个 EBS 卷跨 3 个 AZ,RDS 使用附加存储(EBS)+计算节点 + +## Key Quotes +> "With Aurora, you get six EBS volumes. They're spread across three availability zones." — Aurora 存储架构 +> "Aurora IO is generally unbounded because they're motivated to give you as much IO as you can consume because they're charging you per IO." — IO 计费差异 + +## Key Concepts +- [[Aurora]]:Amazon 自研云原生数据库,使用 6 个 EBS 卷跨 3 个 AZ +- [[RDS]]:Amazon 关系型数据库服务,使用计算+附加存储架构 +- [[RTO]](Recovery Time Objective):恢复时间目标,Aurora 30秒 vs RDS 2分钟 +- [[Multi-AZ]]:多可用区部署,实现高可用 +- [[Blue-Green Deployment]]:蓝绿部署,Aurora MySQL 支持大版本升级 + +## Key Entities +- [[AWS]]:提供 RDS 和 Aurora 服务的公有云平台 + +## Connections +- [[Aurora]] ← extends ← [[RDS]] +- [[AWS]] ← provides ← [[RDS]] +- [[AWS]] ← provides ← [[Aurora]] + +## Contradictions +- (暂无) \ No newline at end of file diff --git a/wiki/sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md b/wiki/sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md new file mode 100644 index 00000000..2bb02c77 --- /dev/null +++ b/wiki/sources/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md @@ -0,0 +1,62 @@ +--- +id: ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup +title: "CTP Topic 72: Implementing an Enterprise DR Strategy using AWS Backup" +type: source +tags: + - AWS + - DR + - Backup + - Enterprise + - CTP +date: 2026-04-14 +sources: [] +last_updated: 2026-04-14 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-72-implementing-an-enterprise-dr-strategy-using-aws-backup.md]] + +## Summary +- **核心主题**: 使用 AWS Backup 实现企业级灾难恢复策略 +- **问题域**: DR 与 HA 的区别、RTO/RPO 定义、AWS Backup 架构 +- **方法/机制**: AWS Backup 服务、全备份与增量备份、备份计划、Vault Lock、跨账户备份 +- **结论/价值**: AWS Backup 是完全托管的策略驱动备份服务,支持多种资源类型,与 Organizations 集成实现跨账户备份副本 + +## Key Claims +- 高可用性(HA)关注系统运行时间和平均故障间隔,灾难恢复(DR)关注数据丢失防护 +- RPO 定义可接受的数据丢失量,RTO 定义可接受的停机时间 +- AWS Backup 是策略驱动的备份服务,支持与 Organizations 集成实现跨账户备份 +- Vault Lock(合规模式)防止任何人(包括 root 用户)在生命周期结束前删除恢复点 + +## Key Quotes +> "We should always be prepared for a situation that everything falls all the time." — Sabith (AWS) + +> "Human errors, technical failures, and natural disasters are major categories to consider when creating DR plans." + +> "AWS Backup is a fully managed, policy-based backup service that simplifies data protection." + +## Key Concepts +- [[灾难恢复]]: 系统故障后的数据还原流程 +- [[高可用性]]: 通过冗余和故障转移确保系统持续可用的设计原则 +- [[RPO]]: Recovery Point Objective,可接受的数据丢失量 +- [[RTO]]: Recovery Time Objective,可接受的停机时间 +- [[Shared Responsibility Model]]: AWS 与客户在云安全方面的责任划分 + +## Key Entities +- [[AWS]]: 全球最大公有云平台,提供 AWS Backup 服务 +- [[AWS-Organizations]]: AWS 账户管理服务,用于跨账户备份 +- [[IAM]]: AWS 身份与访问管理,用于备份访问控制 +- [[AWS-Backup-Audit-Manager]]: AWS Backup 合规审计服务(BAM) + +## Connections +- [[灾难恢复]] ← depends_on ← [[RPO]] +- [[灾难恢复]] ← depends_on ← [[RTO]] +- [[AWS-Backup]] ← implements ← [[灾难恢复]] +- [[高可用性]] ← distinguishes_from ← [[灾难恢复]] + +## Contradictions +- (暂无) + +## Related Topics +- [[CTP-Topic-46-NetApp-on-AWS]]: 存储相关的 AWS 服务 +- [[CTP-Topic-66-PostgreSQL-RDS-vs-Aurora]]: 数据库灾备对比 \ No newline at end of file diff --git a/wiki/sources/ctp-topic-73-aws-backup-implementation-of-the-cloud-transformation-program.md b/wiki/sources/ctp-topic-73-aws-backup-implementation-of-the-cloud-transformation-program.md new file mode 100644 index 00000000..405c35a9 --- /dev/null +++ b/wiki/sources/ctp-topic-73-aws-backup-implementation-of-the-cloud-transformation-program.md @@ -0,0 +1,81 @@ +--- +title: "CTP Topic 73 AWS Backup implementation of the Cloud Transformation Program" +type: source +tags: [AWS, Backup, CTP] +date: 2026-04-14 +--- + +## Source File +- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/01_AWS-Landing-Zone/ctp-topic-73-aws-backup-implementation-of-the-cloud-transformation-program.md]] + +## Summary + +### 核心主题 +AWS Backup 在云转型计划(CTP)中的实施,标准化备份流程。 + +### 问题域 +- 生产工作负载的备份策略 +- 跨账户跨区域备份设计 +- SRE 模型的备份自动化 + +### 方法/机制 +- AWS Backup 作为统一备份工具 +- SRE 模型:允许产品组创建和控制备份 +- 初始备份 + 复制到 DR 账户 +- AWS Backup Audit Manager 审计与合规报告 + +### 结论/价值 +- 备份策略灵活性和标准化兼顾 +- 支持点时间恢复(PITR) +- 开箱即用的审计框架 +- DR 账户存储备份,实现即时恢复 + +--- + +## Key Claims + +- 生产工作负载备份策略要求:每24小时至少备份一次,保留至少30天,两个备份位置 +- AWS Backup 设计:源账户初始备份 → 复制到 DR 账户/区域,支持无 DR 账户时使用 Databunker 作为集中备份账户 +- SRE 备份模型简化 AWS Backup 采用:备份计划、选择、金库、KMS 策略、生命周期策略、审计报告等自动化 +- AWS Backup Audit Manager 提供合规控制评估:备份计划保护、最小频率和保留、防止删除恢复点、加密恢复点、跨区域跨账户备份 + +--- + +## Key Quotes + +> "AWS Backup was chosen as the strategic tool for backup in the cloud transformation program to standardize backup processes." +> "The design involves taking initial backups within the source accounts and copying them to a remote account and region, ideally a dedicated DR account." +> "AWS Backup Audit Manager provides out-of-the-box reports and compliance reports to evaluate backup practices." + +--- + +## Key Concepts + +- [[AWS-Backup]]: AWS 原生备份服务,支持多种 AWS 资源备份 +- [[SRE]]: 站点可靠性工程,SRE 团队设计备份模型 +- [[DR-Account]]: 灾难恢复账户,存储备份副本 +- [[KMS-Key]]: AWS Key Management Service,备份加密 +- [[PITR]]: Point-in-Time Restore,点时间恢复 + +--- + +## Key Entities + +- [[AWS]]: 亚马逊云科技 +- [[SRE]]: 站点可靠性工程团队 +- [[Gruntwork]]: Landing Zone 框架提供商 +- [[CTP]]: Cloud Transformation Program,云转型计划 + +--- + +## Connections + +- [[AWS]] ← uses ← [[AWS-Backup]] +- [[SRE]] ← provides ← [[SRE-Models-for-Backup]] +- [[CTP]] ← implements ← [[AWS-Backup]] + +--- + +## Contradictions + +- (暂无) \ No newline at end of file