Stats
Links
Categories
Homelab infrastructure, development tooling, and device plugin skills
npx claudepluginhub thurstonsand/ansiblonomiconAmp-specific skill creation, tool building, permissions management, and tmux interactive sessions
Skills for managing homelab infrastructure including remote server management
Project lifecycle management including git workflows, code review, and system architecture planning
System configuration via Ansible + Chezmoi, replacing nix-darwin + home-manager.
# First time setup (installs Xcode CLI, Homebrew, Ansible, chezmoi, 1Password CLI, runs playbook)
./scripts/bootstrap.sh
# After changes
anup
Ansible uses op run with SUDO_ASKPASS to get the sudo password from 1Password automatically. Just run poe macos — no manual password entry needed.
Interactive sudo still uses TouchID as normal, including inside tmux sessions.
On macOS, dark-notify now acts as the source of truth for terminal theme state. An Ansible-managed terminal_theme role installs a user LaunchAgent (house.thurstons.terminal-theme-watch), the ~/.local/bin/terminal-theme-watch watcher, ~/.local/bin/terminal-theme-switch.py, and the shared zsh helper at ~/.config/zsh/tmux-theme.zsh. Together they keep ~/.terminal-bg, Claude, and Codex theme state in sync while reloading the LaunchAgent only when the theme manager changes. Pi uses pi-ansi-themes and a file-watching extension, so it follows ~/.terminal-bg and inherits the terminal's ANSI palette instead of hardcoded colors.
├── ansible/
│ ├── ansible.cfg # Ansible configuration
│ ├── inventory/ # Host definitions (localhost, truenas)
│ ├── config.yml # Shared configuration variables
│ ├── darwin.config.yml # macOS-specific config
│ ├── debian.config.yml # Debian-specific config (openclaw)
│ ├── archlinux.config.yml # Arch Linux-specific config
│ ├── Brewfile # Homebrew packages, casks, and MAS apps
│ ├── requirements.yml # Ansible Galaxy dependencies
│ ├── roles/ # Custom and Galaxy roles
│ ├── tasks/ # Task files by category
│ ├── collections/ # Local Ansible collections (local.truenas)
│ ├── stacks/ # Docker Compose stacks for TrueNAS
│ └── playbooks/
│ ├── macos.yml # macOS playbook
│ ├── openclaw.yml # OpenClaw (Debian VM) playbook
│ ├── truenas.yml # TrueNAS playbook
│ └── udmp.yml # UDMP playbook
├── chezmoi/ # Dotfiles managed by chezmoi
├── cloudflare-pages/ # Static sites deployed via Cloudflare Pages
├── agents/ # Local AI agent skills (source for agent_harness role)
├── terraform/cloudflare/ # Cloudflare infrastructure (DNS, tunnels, Zero Trust, R2)
├── wrangler/ # Cloudflare Workers (deployed via wrangler)
└── scripts/
├── bootstrap.sh # One-liner bootstrap for new machines
└── test-bootstrap.sh # Test bootstrap in a clean macOS VM (requires tart)
anup — Apply macOS Ansible playbook (alias set up by this playbook)anup --check — Dry-run mode (shows what would change without applying)poe macos — Apply macOS Ansible playbook (same as anup)poe openclaw — Apply OpenClaw (Debian VM) Ansible playbookpoe truenas — Apply TrueNAS Ansible playbookpoe udmp — Apply UDMP Ansible playbookpoe cz-diff — Preview dotfile changes (source → home), excluding lockfilespoe cz-status — Show files that differ between source and homepoe cz-re-add — Update source from local changes (dry-run by default, use --apply to apply)poe cz-managed — List all files managed by chezmoipoe cz-edit <file> — Edit a managed file in source dirpoe tfi — Terraform init (Cloudflare)poe tfp — Terraform plan (Cloudflare)poe tfa — Terraform apply (Cloudflare)poe pages-deploy — Deploy Cloudflare Pages (tesla)poe wrangler — Deploy all Workers (llms + aig)poe wrangler:llms — Deploy llms Worker via Wrangler (includes secrets)poe wrangler:aig — Deploy aig (AI Gateway proxy) Workerpoe wrangler:hooks — Deploy hooks (webhook gateway) Workerpoe lint:pi — Lint and type-check pi extension packages (--format applies Biome formatting/fixes first)poe pi:update-deps — Update tracked pi extension packages to the currently installed pi versionSee nixonomicon/docs/designs/nix-to-chezmoi-ansible-migration.md for the full migration plan.
SSH aliases are configured via chezmoi (~/.ssh/config) and use ssh-smart-proxy to prefer LAN access with Cloudflare Access fallback:
Claude Code marketplace entries for the plugin-safe Antigravity Awesome Skills library and its compatible editorial bundles.
Production-ready workflow orchestration with 84 marketplace plugins, 192 local specialized agents, and 156 local skills - optimized for granular installation and minimal token usage
Directory of popular Claude Code extensions including development tools, productivity plugins, and MCP integrations