Install via Kubernetes
What you'll accomplish: Deploy Hoziron to a Kubernetes cluster using the official Helm chart, configure ingress, and verify the deployment.
Prerequisites
- A running Kubernetes cluster (1.24+)
- Helm 3 installed
kubectlconfigured for your cluster
1. Install with Helm
helm install hoziron ./charts/hoziron \
--set image.tag=latest \
--set config.defaultModel.provider=anthropic \
--set config.defaultModel.modelId=claude-sonnet-4-20250514 \
--set secrets.anthropicApiKey=$ANTHROPIC_API_KEY
2. Choose your values file
The chart ships with two value presets:
| File | Purpose |
|---|---|
values-prod.yaml | Production: multiple replicas, resource limits, PDB |
values-dev.yaml | Development: single replica, relaxed limits |
# Production deployment
helm install hoziron ./charts/hoziron -f ./charts/hoziron/values-prod.yaml
# Development / staging
helm install hoziron ./charts/hoziron -f ./charts/hoziron/values-dev.yaml
3. TLS configuration
In Kubernetes, TLS is typically terminated at the ingress layer. Disable native TLS in the Hoziron config:
[server]
listen = "0.0.0.0:4200"
[server.tls]
enabled = false
The ingress controller handles TLS termination — traffic between the ingress and the pod is plaintext within the cluster.
4. Ingress setup
The Helm chart includes an ingress template. Enable it in your values:
ingress:
enabled: true
className: nginx
hosts:
- host: hoziron.internal.company.com
paths:
- path: /
pathType: Prefix
tls:
- secretName: hoziron-tls
hosts:
- hoziron.internal.company.com
5. Verify deployment
kubectl get pods -l app.kubernetes.io/name=hoziron
kubectl logs -l app.kubernetes.io/name=hoziron --tail=20
# Health check
kubectl port-forward svc/hoziron 4200:4200
curl http://localhost:4200/health
6. Volume permissions
The container runs as UID 65532 (distroless nonroot). Set fsGroup in the pod security context:
securityContext:
fsGroup: 65532
This ensures the persistent volume is writable by the Hoziron process.
Next steps
Your cluster deployment is live. Now create your first agent or dive into the production deployment guide for PDB, HPA, and network policies.
Related: