Arche — Modules

Arche provides the reusable OpenTofu child modules consumed by all platform infrastructure layers:

• pt-arche-core-helpers — Environment detection, labels, project naming
• pt-arche-google-project — GCP project creation with CIS compliance
• pt-arche-google-network — VPC, subnets, and firewall rules
• pt-arche-google-kubernetes-engine — GKE cluster provisioning
• pt-arche-google-storage-bucket — Cloud Storage with KMS encryption
• pt-arche-google-cloud-sql — Cloud SQL instances
• pt-arche-kubernetes-istio — Istio service mesh
• pt-arche-kubernetes-cert-manager — cert-manager
• pt-arche-kubernetes-datadog-operator — Datadog Operator
• pt-arche-kubernetes-opa-gatekeeper — OPA Gatekeeper
• pt-arche-datadog-google-integration — Datadog GCP integration

All modules are pinned to full 40-character commit SHAs and follow strict versioning.