fix: playwright MCP sidecar startup args (#41)

The Playwright MCP image (mcr.microsoft.com/playwright/mcp) doesn't
support --transport flag. Use node cli.js entrypoint with --headless,
--browser chromium, --no-sandbox, and --port for SSE mode.

Fixes #41

Generated with [Claude Code](https://claude.ai/code)
via [Happy](https://happy.engineering)

Co-Authored-By: Claude <noreply@anthropic.com>
Co-Authored-By: Happy <yesreply@happy.engineering>

CLAUDE.md

@@ -20,7 +20,7 @@ The stack is primarily **Bash scripts + YAML** — there is no Node.js package,
 ```bash
 make build                              # Build Docker image
 make build REGISTRY=ghcr.io/myuser IMAGE_TAG=v1.0  # Custom registry/tag
-docker build -t ghcr.io/cpfarhood/antigravity:latest .  # Direct build
+docker build -t ghcr.io/cpfarhood/devcontainer:latest .  # Direct build
 ```
 
 ### Running Locally
@@ -77,7 +77,7 @@ Container start
 | `chart/templates/pvc.yaml` | PersistentVolumeClaim for user home |
 | `chart/templates/service.yaml` | ClusterIP Service (VNC + optional SSH) |
 | `chart/values.yaml` | Default Helm values |
-| `.mcp.json` | MCP server connection config (Kubernetes, Flux, GitHub, Home Assistant, Playwright) |
+| `.mcp.json` | MCP server connection config (GitHub Copilot, Kubernetes, Flux, Playwright, pgtuner) |
 | `Makefile` | Build/deploy automation |
 
 ### MCP Sidecars
@@ -88,15 +88,14 @@ MCP (Model Context Protocol) servers run as sidecar containers in the pod, enabl
 |---------|-------|---------|------|----------|---------|
 | `kubernetes-mcp` | `quay.io/containers/kubernetes_mcp_server` | v0.0.57 | 8080 | `http://localhost:8080/sse` | Enabled |
 | `flux-mcp` | `ghcr.io/controlplaneio-fluxcd/flux-operator-mcp` | v0.41.1 | 8081 | `http://localhost:8081/sse` | Enabled |
-| `github-mcp` | `ghcr.io/modelcontextprotocol/servers/github` | latest | 8088 | `http://localhost:8088/sse` | Disabled |
 | `homeassistant-mcp` | `ghcr.io/homeassistant-ai/ha-mcp` | stable | 8087 | `http://localhost:8087/sse` | Disabled |
 | `pgtuner-mcp` | `dog830228/pgtuner_mcp` | latest | 8085 | `http://localhost:8085/sse` | Disabled |
-| `playwright-mcp` | `microsoft/playwright-mcp` | latest | 8086 | `http://localhost:8086/sse` | Enabled |
+| `playwright-mcp` | `mcr.microsoft.com/playwright/mcp` | latest | 8086 | `http://localhost:8086/sse` | Enabled |
 
 **Note:**
+- GitHub MCP is accessed via the Copilot API (`https://api.githubcopilot.com/mcp/`), not as a sidecar
 - Kubernetes and Flux sidecars require `clusterAccess` != `none` to be deployed (they need RBAC permissions)
 - Kubernetes and Flux sidecars inherit the pod's ServiceAccount RBAC permissions
-- GitHub sidecar uses `GITHUB_TOKEN` from the env secret (same token used for repo cloning)
 - Home Assistant sidecar requires `HOMEASSISTANT_URL` and `HOMEASSISTANT_TOKEN` in the env secret
 - PostgreSQL tuner sidecar requires `DATABASE_URI` in the env secret (PostgreSQL connection string)
 - Playwright sidecar provides browser automation and web testing capabilities
@@ -109,34 +108,30 @@ To control MCP sidecars, set the `enabled` flag in your values override:
 # Disable all MCP sidecars
 mcp:
   sidecars:
-  kubernetes:
+    kubernetes:
-    enabled: false
+      enabled: false
-  flux:
+    flux:
-    enabled: false
+      enabled: false
-  github:
+    homeassistant:
-    enabled: false
+      enabled: false
-  homeassistant:
+    pgtuner:
-    enabled: false
+      enabled: false
-  pgtuner:
+    playwright:
-    enabled: false
+      enabled: false
-  playwright:
-    enabled: false
 
 # Or selectively enable/disable
 mcp:
   sidecars:
-  kubernetes:
+    kubernetes:
-    enabled: true  # Keep Kubernetes MCP enabled
+      enabled: true  # Keep Kubernetes MCP enabled
-  flux:
+    flux:
-    enabled: false # Disable Flux MCP
+      enabled: false # Disable Flux MCP
-  github:
+    homeassistant:
-    enabled: true  # Keep GitHub MCP enabled (uses GITHUB_TOKEN)
+      enabled: true  # Enable Home Assistant MCP (requires secrets)
-  homeassistant:
+    pgtuner:
-    enabled: true  # Enable Home Assistant MCP (requires secrets)
+      enabled: true  # Enable PostgreSQL tuner MCP (requires DATABASE_URI)
-  pgtuner:
+    playwright:
-    enabled: true  # Enable PostgreSQL tuner MCP (requires DATABASE_URI)
+      enabled: true  # Enable Playwright MCP for browser automation
-  playwright:
-    enabled: true  # Enable Playwright MCP for browser automation
 ```
 
 When deploying via Helm:

README.md

@@ -48,9 +48,9 @@ The secret is picked up automatically via `envFrom`. Keys recognised:
 | `VNC_PASSWORD` | Password for the VNC web UI |
 | `ANTHROPIC_API_KEY` | API key — alternative to browser-based Claude login |
 | `SSH_AUTHORIZED_KEYS` | Public key(s) for SSH access (required when `ssh: true`) |
-| `HOMEASSISTANT_URL` | Home Assistant URL (required when `mcpSidecars.homeassistant.enabled: true`) |
+| `HOMEASSISTANT_URL` | Home Assistant URL (required when `mcp.sidecars.homeassistant.enabled: true`) |
-| `HOMEASSISTANT_TOKEN` | Home Assistant long-lived access token (required when `mcpSidecars.homeassistant.enabled: true`) |
+| `HOMEASSISTANT_TOKEN` | Home Assistant long-lived access token (required when `mcp.sidecars.homeassistant.enabled: true`) |
-| `DATABASE_URI` | PostgreSQL connection string (required when `mcpSidecars.pgtuner.enabled: true`) |
+| `DATABASE_URI` | PostgreSQL connection string (required when `mcp.sidecars.pgtuner.enabled: true`) |
 | `PGTUNER_EXCLUDE_USERIDS` | Comma-separated PostgreSQL user OIDs to exclude from monitoring (optional) |
 
 ```bash
@@ -119,14 +119,14 @@ The Helm chart uses a logical organization with these main sections:
 |-------|---------|-------------|
 | `name` | `""` | Instance name — used in all resource names (`devcontainer-{name}`) |
 | `githubRepo` | `""` | Repository to clone into `/workspace` on startup |
-| `ide` | `vscode` | IDE to launch — `vscode`, `antigravity`, or `none` (see below) |
+| `ide.type` | `vscode` | IDE to launch — `vscode`, `antigravity`, or `none` (see below) |
-| `ssh` | `false` | Also start an OpenSSH server on port 22 (additive, any `ide`) |
+| `ssh.enabled` | `false` | Also start an OpenSSH server on port 22 (additive, any IDE) |
 | `image.repository` | `ghcr.io/cpfarhood/devcontainer` | Container image |
 | `image.tag` | `latest` | Image tag |
 
 ### IDE choice
 
-`ide` controls what GUI is launched in the VNC session:
+`ide.type` controls what GUI is launched in the VNC session:
 
 | Value | Port | Description |
 |-------|------|-------------|
@@ -136,14 +136,14 @@ The Helm chart uses a logical organization with these main sections:
 
 ### SSH access
 
-`ssh: true` starts OpenSSH on port 22 **in addition to** the IDE. It works with any `ide` value:
+`ssh.enabled: true` starts OpenSSH on port 22 **in addition to** the IDE. It works with any `ide.type` value:
 
 ```bash
 # SSH-only (no VNC)
-helm install mydev ./chart --set name=mydev --set ide=none --set ssh=true
+helm install mydev ./chart --set name=mydev --set ide.type=none --set ssh.enabled=true
 
 # VSCode in VNC + SSH access at the same time
-helm install mydev ./chart --set name=mydev --set ssh=true
+helm install mydev ./chart --set name=mydev --set ssh.enabled=true
 ```
 
 Add your public key to the env secret:
@@ -165,10 +165,10 @@ ssh -p 2222 user@localhost
 
 | Value | Default | Description |
 |-------|---------|-------------|
-| `happyServerUrl` | `https://happy.farh.net` | Happy Coder server endpoint |
+| `happy.serverUrl` | `https://happy.farh.net` | Happy Coder server endpoint |
-| `happyWebappUrl` | `https://happy-coder.farh.net` | Happy Coder webapp URL |
+| `happy.webappUrl` | `https://happy-coder.farh.net` | Happy Coder webapp URL |
-| `happyHomeDir` | `/home/user/.happy` | Happy runtime state directory (persists on the home PVC) |
+| `happy.homeDir` | `/config/userdata/.happy` | Happy runtime state directory (persists on the home PVC) |
-| `happyExperimental` | `true` | Enable experimental Happy features |
+| `happy.experimental` | `true` | Enable experimental Happy features |
 
 ### Kubernetes cluster access
 
@@ -200,16 +200,16 @@ The devcontainer includes MCP (Model Context Protocol) servers as sidecar contai
 |---------|---------|---------|
 | `mcp.sidecars.kubernetes.enabled` | `true` | Kubernetes API access via MCP |
 | `mcp.sidecars.flux.enabled` | `true` | Flux GitOps operations via MCP |
-| `mcp.sidecars.github.enabled` | `false` | GitHub API access via MCP (DISABLED: archived image) |
 | `mcp.sidecars.homeassistant.enabled` | `false` | Home Assistant smart home control via MCP |
 | `mcp.sidecars.pgtuner.enabled` | `false` | PostgreSQL performance tuning and analysis via MCP |
 | `mcp.sidecars.playwright.enabled` | `true` | Browser automation and web testing via MCP |
 
 **Notes:**
+- GitHub MCP is accessed via the Copilot API (`https://api.githubcopilot.com/mcp/`), not as a sidecar
 - Kubernetes and Flux sidecars require `clusterAccess` != `none` to be deployed (automatically disabled when no cluster access)
 - Kubernetes and Flux sidecars inherit the pod's ServiceAccount RBAC permissions (controlled by `clusterAccess`)
-- Home Assistant sidecar requires `homeassistant-url` and `homeassistant-token` in the env secret
+- Home Assistant sidecar requires `HOMEASSISTANT_URL` and `HOMEASSISTANT_TOKEN` in the env secret
-- PostgreSQL tuner sidecar requires `database-uri` in the env secret (PostgreSQL connection string)
+- PostgreSQL tuner sidecar requires `DATABASE_URI` in the env secret (PostgreSQL connection string)
 - Playwright sidecar provides browser automation and web testing capabilities
 
 **Disable MCP sidecars:**
@@ -263,62 +263,46 @@ helm install mydev ./chart \
 # values.yaml override
 mcp:
   sidecars:
-  kubernetes:
+    kubernetes:
-    enabled: true
+      enabled: true
-    image:
+      image:
-      repository: quay.io/containers/kubernetes_mcp_server
+        repository: quay.io/containers/kubernetes_mcp_server
-      tag: v0.0.57
+        tag: v0.0.57
-    port: 8080
+      port: 8080
-    resources:
+      resources:
-      requests:
+        requests:
-        memory: "64Mi"
+          memory: "64Mi"
-        cpu: "50m"
+          cpu: "50m"
-      limits:
+        limits:
-        memory: "256Mi"
+          memory: "256Mi"
-        cpu: "500m"
+          cpu: "500m"
-  flux:
+    flux:
-    enabled: false  # Disabled in this example
+      enabled: false  # Disabled in this example
-  github:
+    homeassistant:
-    enabled: false  # Disabled by default (archived image)
+      enabled: true
-  homeassistant:
+      image:
-    enabled: true
+        repository: ghcr.io/homeassistant-ai/ha-mcp
-    image:
+        tag: stable
-      repository: ghcr.io/homeassistant-ai/ha-mcp
+      port: 8087
-      tag: stable
+    pgtuner:
-    port: 8087
+      enabled: true
-    resources:
+      image:
-      requests:
+        repository: dog830228/pgtuner_mcp
-        memory: "64Mi"
+        tag: latest
-        cpu: "50m"
+      port: 8085
-      limits:
+    playwright:
-        memory: "256Mi"
+      enabled: true
-        cpu: "500m"
+      image:
-  pgtuner:
+        repository: mcr.microsoft.com/playwright/mcp
-    enabled: true
+        tag: latest
-    image:
+      port: 8086
-      repository: dog830228/pgtuner_mcp
+      resources:
-      tag: latest
+        requests:
-    port: 8085
+          memory: "128Mi"
-    resources:
+          cpu: "100m"
-      requests:
+        limits:
-        memory: "64Mi"
+          memory: "512Mi"
-        cpu: "50m"
+          cpu: "1000m"
-      limits:
-        memory: "256Mi"
-        cpu: "500m"
-  playwright:
-    enabled: true
-    image:
-      repository: microsoft/playwright-mcp
-      tag: latest
-    port: 8086
-    resources:
-      requests:
-        memory: "128Mi"
-        cpu: "100m"
-      limits:
-        memory: "512Mi"
-        cpu: "1000m"
 ```
 
 ### Display and resources
@@ -327,9 +311,9 @@ mcp:
 |-------|---------|-------------|
 | `display.width` | `1920` | VNC width (px) |
 | `display.height` | `1080` | VNC height (px) |
-| `secureConnection` | `0` | Set to `1` if TLS is not terminated upstream |
+| `display.secureConnection` | `0` | Set to `1` if TLS is not terminated upstream |
-| `userId` | `1000` | UID for the app user |
+| `user.id` | `1000` | UID for the app user |
-| `groupId` | `1000` | GID for the app user |
+| `user.groupId` | `1000` | GID for the app user |
 | `storage.size` | `32Gi` | Home PVC size |
 | `storage.className` | `ceph-filesystem` | StorageClass (must be ReadWriteMany) |
 | `shm.sizeLimit` | `2Gi` | `/dev/shm` size (memory-backed; used by Electron apps) |
@@ -362,10 +346,10 @@ Container start
 
 | Mount | Source | Persistence |
 |-------|--------|-------------|
-| `/home` | ReadWriteMany PVC (`userhome-{name}`) | Survives pod restarts — stores Claude credentials, dotfiles, git config |
+| `/config` | ReadWriteMany PVC (`userhome-{name}`) | Survives pod restarts — stores Claude credentials, dotfiles, git config |
 | `/workspace` | `emptyDir` | Ephemeral — repo is re-cloned on each pod start |
 
-Happy Coder's runtime state (`HAPPY_HOME_DIR`) is kept in `/home/user/.happy` on the persistent home PVC, so auth credentials and settings survive pod restarts when manually started.
+Happy Coder's runtime state (`HAPPY_HOME_DIR`) is kept in `/config/userdata/.happy` on the persistent home PVC, so auth credentials and settings survive pod restarts when manually started.
 
 ---
 

chart/Chart.yaml

@@ -1,6 +1,6 @@
 apiVersion: v2
 name: devcontainer
-description: Antigravity Dev Container with Happy Coder AI assistant
+description: Dev Container with AI coding agents and MCP sidecars
 type: application
-version: 0.3.0
+version: 0.4.1
 appVersion: "latest"

chart/templates/_helpers.tpl

@@ -1,28 +1,28 @@
 {{/*
 Resource name prefix: devcontainer-{name}
 */}}
-{{- define "antigravity.fullname" -}}
+{{- define "devcontainer.fullname" -}}
 {{- printf "devcontainer-%s" .Values.name }}
 {{- end }}
 
 {{/*
 PVC name: userhome-{name}
 */}}
-{{- define "antigravity.pvcName" -}}
+{{- define "devcontainer.pvcName" -}}
 {{- printf "userhome-%s" .Values.name }}
 {{- end }}
 
 {{/*
 Secret name for env vars, default to devcontainer-{name}-secrets-env
 */}}
-{{- define "antigravity.envSecretName" -}}
+{{- define "devcontainer.envSecretName" -}}
 {{- .Values.envSecretName | default (printf "devcontainer-%s-secrets-env" .Values.name) }}
 {{- end }}
 
 {{/*
 Common labels
 */}}
-{{- define "antigravity.labels" -}}
+{{- define "devcontainer.labels" -}}
 app: devcontainer
 instance: {{ .Values.name }}
 {{- end }}
@@ -30,7 +30,7 @@ instance: {{ .Values.name }}
 {{/*
 Smart resource sizing based on enabled features
 */}}
-{{- define "antigravity.smartResources" -}}
+{{- define "devcontainer.smartResources" -}}
 {{- $baseMemory := "2Gi" }}
 {{- $baseCpu := "1000m" }}
 {{- $limitMemory := "8Gi" }}
@@ -59,7 +59,7 @@ limits:
 {{/*
 Auto-detect environment type and set smart defaults
 */}}
-{{- define "antigravity.smartDefaults" -}}
+{{- define "devcontainer.smartDefaults" -}}
 {{- $isDev := or (contains "dev" .Values.name) (contains "test" .Values.name) (contains "local" .Values.name) }}
 {{- $isProd := or (contains "prod" .Values.name) (contains "production" .Values.name) }}
 {{- $isTeam := or (contains "team" .Values.name) (contains "shared" .Values.name) }}
@@ -79,7 +79,7 @@ team: true
 {{/*
 Smart MCP sidecar selection based on cluster access
 */}}
-{{- define "antigravity.mcpDefaults" -}}
+{{- define "devcontainer.mcpDefaults" -}}
 {{- if eq .Values.clusterAccess "none" }}
   {{/* No cluster access - disable k8s/flux sidecars */}}
   kubernetes:

chart/templates/deployment.yaml

@@ -1,21 +1,21 @@
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  name: {{ include "antigravity.fullname" . }}
+  name: {{ include "devcontainer.fullname" . }}
   labels:
-    {{- include "antigravity.labels" . | nindent 4 }}
+    {{- include "devcontainer.labels" . | nindent 4 }}
 spec:
   replicas: 1
   selector:
     matchLabels:
-      {{- include "antigravity.labels" . | nindent 6 }}
+      {{- include "devcontainer.labels" . | nindent 6 }}
   template:
     metadata:
       labels:
-        {{- include "antigravity.labels" . | nindent 8 }}
+        {{- include "devcontainer.labels" . | nindent 8 }}
     spec:
       {{- if ne (.Values.clusterAccess | default "none") "none" }}
-      serviceAccountName: {{ include "antigravity.fullname" . }}
+      serviceAccountName: {{ include "devcontainer.fullname" . }}
       {{- end }}
       securityContext:
         fsGroup: 1000
@@ -81,7 +81,7 @@ spec:
               value: {{ .Values.githubRepo | quote }}
           envFrom:
             - secretRef:
-                name: {{ include "antigravity.envSecretName" . }}
+                name: {{ include "devcontainer.envSecretName" . }}
                 optional: true
           resources:
             {{- toYaml .Values.resources | nindent 12 }}
@@ -178,13 +178,13 @@ spec:
             - name: HOMEASSISTANT_URL
               valueFrom:
                 secretKeyRef:
-                  name: {{ include "antigravity.envSecretName" . }}
+                  name: {{ include "devcontainer.envSecretName" . }}
                   key: HOMEASSISTANT_URL
                   optional: true
             - name: HOMEASSISTANT_TOKEN
               valueFrom:
                 secretKeyRef:
-                  name: {{ include "antigravity.envSecretName" . }}
+                  name: {{ include "devcontainer.envSecretName" . }}
                   key: HOMEASSISTANT_TOKEN
                   optional: true
           livenessProbe:
@@ -200,43 +200,11 @@ spec:
           resources:
             {{- toYaml .Values.mcp.sidecars.homeassistant.resources | nindent 12 }}
         {{- end }}
-        {{- if .Values.mcp.sidecars.github.enabled }}
-        - name: github-mcp
-          image: "{{ .Values.mcp.sidecars.github.image.repository }}:{{ .Values.mcp.sidecars.github.image.tag }}"
-          imagePullPolicy: Always
-          args:
-            - --sse
-            - --port={{ .Values.mcp.sidecars.github.port }}
-          ports:
-            - name: github
-              containerPort: {{ .Values.mcp.sidecars.github.port }}
-          env:
-            - name: GITHUB_PERSONAL_ACCESS_TOKEN
-              valueFrom:
-                secretKeyRef:
-                  name: {{ include "antigravity.envSecretName" . }}
-                  key: GITHUB_TOKEN
-                  optional: true
-          livenessProbe:
-            httpGet:
-              path: /health
-              port: {{ .Values.mcp.sidecars.github.port }}
-            initialDelaySeconds: 10
-            periodSeconds: 10
-          readinessProbe:
-            httpGet:
-              path: /health
-              port: {{ .Values.mcp.sidecars.github.port }}
-            initialDelaySeconds: 5
-            periodSeconds: 5
-          resources:
-            {{- toYaml .Values.mcp.sidecars.github.resources | nindent 12 }}
-        {{- end }}
         {{- if .Values.mcp.sidecars.pgtuner.enabled }}
         - name: pgtuner-mcp
           image: "{{ .Values.mcp.sidecars.pgtuner.image.repository }}:{{ .Values.mcp.sidecars.pgtuner.image.tag }}"
           imagePullPolicy: Always
-          command: ["python", "-m", "pgtuner_mcp", "--transport", "sse", "--port", "{{ .Values.mcp.sidecars.pgtuner.port }}"]
+          command: ["python", "-m", "pgtuner_mcp", "--mode", "sse", "--host", "0.0.0.0", "--port", "{{ .Values.mcp.sidecars.pgtuner.port }}"]
           ports:
             - name: pgtuner
               containerPort: {{ .Values.mcp.sidecars.pgtuner.port }}
@@ -244,13 +212,13 @@ spec:
             - name: DATABASE_URI
               valueFrom:
                 secretKeyRef:
-                  name: {{ include "antigravity.envSecretName" . }}
+                  name: {{ include "devcontainer.envSecretName" . }}
                   key: DATABASE_URI
                   optional: true
             - name: PGTUNER_EXCLUDE_USERIDS
               valueFrom:
                 secretKeyRef:
-                  name: {{ include "antigravity.envSecretName" . }}
+                  name: {{ include "devcontainer.envSecretName" . }}
                   key: PGTUNER_EXCLUDE_USERIDS
                   optional: true
           livenessProbe:
@@ -270,9 +238,13 @@ spec:
         - name: playwright-mcp
           image: "{{ .Values.mcp.sidecars.playwright.image.repository }}:{{ .Values.mcp.sidecars.playwright.image.tag }}"
           imagePullPolicy: Always
+          command: ["node"]
           args:
-            - --transport
+            - cli.js
-            - sse
+            - --headless
+            - --browser
+            - chromium
+            - --no-sandbox
             - --port
             - {{ .Values.mcp.sidecars.playwright.port | quote }}
           ports:
@@ -303,4 +275,4 @@ spec:
             sizeLimit: {{ .Values.shm.sizeLimit }}
         - name: userhome
           persistentVolumeClaim:
-            claimName: {{ include "antigravity.pvcName" . }}
+            claimName: {{ include "devcontainer.pvcName" . }}

chart/templates/pvc.yaml

@@ -1,9 +1,9 @@
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  name: {{ include "antigravity.pvcName" . }}
+  name: {{ include "devcontainer.pvcName" . }}
   labels:
-    {{- include "antigravity.labels" . | nindent 4 }}
+    {{- include "devcontainer.labels" . | nindent 4 }}
 spec:
   accessModes:
     - ReadWriteMany

chart/templates/rbac.yaml

@@ -1,7 +1,7 @@
 {{- $access := .Values.clusterAccess | default "none" }}
-{{- $name   := include "antigravity.fullname" . }}
+{{- $name   := include "devcontainer.fullname" . }}
 {{- $ns     := .Release.Namespace }}
-{{- $labels := include "antigravity.labels" . }}
+{{- $labels := include "devcontainer.labels" . }}
 
 {{- if ne $access "none" }}
 ---

chart/templates/service.yaml

@@ -1,22 +1,22 @@
 apiVersion: v1
 kind: Service
 metadata:
-  name: {{ include "antigravity.fullname" . }}
+  name: {{ include "devcontainer.fullname" . }}
   labels:
-    {{- include "antigravity.labels" . | nindent 4 }}
+    {{- include "devcontainer.labels" . | nindent 4 }}
 spec:
   ports:
-    {{- if ne (.Values.ide | default "vscode") "none" }}
+    {{- if ne (.Values.ide.type | default "vscode") "none" }}
     - port: 5800
       name: vnc-web
       protocol: TCP
       targetPort: vnc-web
     {{- end }}
-    {{- if .Values.ssh }}
+    {{- if .Values.ssh.enabled }}
     - port: 22
       name: ssh
       protocol: TCP
       targetPort: ssh
     {{- end }}
   selector:
-    {{- include "antigravity.labels" . | nindent 4 }}
+    {{- include "devcontainer.labels" . | nindent 4 }}

chart/values.schema.json

@@ -177,9 +177,6 @@
             "homeassistant": {
               "$ref": "#/$defs/mcpSidecar"
             },
-            "github": {
-              "$ref": "#/$defs/mcpSidecar"
-            },
             "pgtuner": {
               "$ref": "#/$defs/mcpSidecar"
             },

chart/values.yaml

@@ -123,21 +123,6 @@ mcp:
           memory: "256Mi"
           cpu: "500m"
 
-    # GitHub API access (DISABLED: archived image)
-    github:
-      enabled: false
-      image:
-        repository: ghcr.io/modelcontextprotocol/servers/github
-        tag: latest
-      port: 8088
-      resources:
-        requests:
-          memory: "64Mi"
-          cpu: "50m"
-        limits:
-          memory: "256Mi"
-          cpu: "500m"
-
     # PostgreSQL performance tuning
     pgtuner:
       enabled: false  # Requires DATABASE_URI in secrets
@@ -157,7 +142,7 @@ mcp:
     playwright:
       enabled: true
       image:
-        repository: microsoft/playwright-mcp
+        repository: mcr.microsoft.com/playwright/mcp
         tag: latest
       port: 8086
       resources: