bytelyst-devops-tools/vm-oom-watchdog.service at f1fe66fd4df6ad038681e648503b0c199b1cfe9f - bytelyst-devops-tools - Gitea: Git with a cup of tea

bytelyst/bytelyst-devops-tools

Hermes VM 76ef17f26b feat(vm): Phase 2.3 closure — OOM watchdog + orphan-container docs

OOM watchdog:
- vm-oom-watchdog.sh — scans journalctl -k since cursor for oom-kill,
  killed-process, and "out of memory ... killed" entries; maps cgroup
  hits back to container names via docker inspect; posts a single
  Telegram alert per scan window (no dedupe needed — cursor advances
  on every run). Cursor at /var/log/vm-oom-cursor, log at
  /var/log/vm-oom-watchdog.log.
- Systemd: OnBootSec=10min, OnUnitActiveSec=1h, Persistent=true.

Orphan containers (no compose file on disk):
- trading-backend → docker update --memory=768m (high-I/O bot)
- gitea-npm-registry → docker update --memory=512m
- orphan-containers.md captures canonical configs for recovery
  (env, mounts, networks, restart policy, memory limits).

Closes Phase 2.3 (post-monitoring) and Phase 3.3 (orphan limits).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-30 05:26:49 +00:00

11 lines

244 B

Desktop File

Raw Blame History

 [Unit]
 Description=Detect kernel OOM-kill events and alert via Telegram
 After=docker.service network-online.target
 [Service]
 Type=oneshot
 User=root
 Group=root
 Environment="HERMES_HOME=/root/.hermes"
 ExecStart=/usr/local/bin/vm-oom-watchdog.sh