automating-devops
DevOps knowledge reference covering Git workflows, testing strategies, DevSecOps, release pipeline orchestration (release.yml, multi-arch images, cosign integration), CI/CD pipelines, database management, observability, and performance optimization. Use when working with Git, CI/CD, release pipelines, ghcr image publishing, testing, monitoring, or infrastructure automation.
git clone --depth 1 https://github.com/telagod/code-abyss /tmp/automating-devops && cp -r /tmp/automating-devops/skills/automating-devops ~/.claude/skills/automating-devopsSKILL.md
# 炼器秘典 · DevOps ## 路由 | 意图 | 秘典 | 核心 | |------|------|------| | 版本控制 | [git-workflow](git-workflow.md) | Git 分支策略、PR 流程、rebase vs merge | | 测试 | [testing](testing.md) | 单元/集成/E2E、TDD、覆盖率 | | 安全开发 | [devsecops](devsecops.md) | CI/CD 安全、SAST/DAST、供应链 | | Release 编排 | [release-pipelines](release-pipelines.md) | release.yml 多 job 骨架、metadata tag、cosign 集成、踩坑字典 | | 数据库 | [database](database.md) | SQL/NoSQL 选型、索引优化、迁移 | | 性能 | [performance](performance.md) | Profiling、火焰图、基准/负载测试 | | 可观测 | [observability](observability.md) | 日志/指标/追踪三支柱、SLO/SLI | | 成本 | [cost-optimization](cost-optimization.md) | FinOps、右尺寸、Spot、自动伸缩 | ## CI/CD 管道模式 | 阶段 | 动作 | 工具示例 | |------|------|----------| | Commit | lint + unit test + SAST | ESLint、pytest、Semgrep | | Build | 构建 + 镜像打包 | Docker、Buildpacks | | Test | 集成测试 + E2E | Playwright、k6 | | Security | DAST + 依赖扫描 + 密钥检测 | OWASP ZAP、Trivy、gitleaks | | Deploy | 渐进发布(canary/blue-green) | ArgoCD Rollouts、Flagger | | Verify | 冒烟测试 + SLO 校验 | Prometheus、Grafana | | Rollback | 自动回滚(SLO 违约) | ArgoCD、Helm rollback | ## 原则 ``` 自动化一切 | 快速反馈(<10min) | 主干开发短分支 | 不可变制品 | 环境即代码 ```
Analyzes code changes, detects documentation drift, and evaluates change impact scope. Use when reviewing diffs, checking doc sync, or running pre-commit analysis. Automatically triggered after design-level changes or refactoring.
Scans code for security vulnerabilities, detects dangerous patterns, and ensures security decisions are documented. Use when running security scans, auditing code, or checking for OWASP issues, injection risks, or sensitive data leaks. Automatically triggered on new modules, security-related changes, or post-refactor.
Processes Excel spreadsheet files (.xlsx, .xlsm, .csv). Creates workbooks, builds formulas, preserves formatting, analyzes tabular data, and validates financial models with zero-formula-error delivery. Use when working with spreadsheet files or tabular data analysis. Do NOT use for Word documents, PDFs, presentations, or database pipelines.
Frontend UI design system selector and implementation guide covering Glassmorphism, Liquid Glass (Apple-style), Neubrutalism, and Claymorphism. Use when building UI components, choosing a visual aesthetic, implementing design tokens, or auditing accessibility/contrast on themed surfaces. Provides per-style tokens, component patterns, dark mode, and a11y constraints.
安全架构与治理:威胁建模 (STRIDE/PASTA/LINDDUN)、零信任身份架构、IAM/SSO/MFA/PAM、合规框架 (SOC2/PCI/HIPAA/GDPR)、DLP、隐私工程、安全控制设计。Use when designing security architecture, threat modeling new systems, implementing zero-trust identity, designing IAM/SSO/PAM, building compliance evidence chains, or planning privacy-by-design.
AI agent and LLM system engineering reference covering single-agent dev (ReAct, tool calling, plan-execute), multi-agent coordination (swarm, role decomposition, file locking), LLM security (prompt injection, jailbreak defense, output filtering), RAG architecture (chunking, hybrid retrieval, rerank), and prompt engineering / evaluation (RAGAS, LLM-as-Judge). Use when building AI agents, designing RAG pipelines, orchestrating multi-agent workflows, hardening LLM apps, or writing prompts.
Checks code quality metrics including complexity, duplication, naming conventions, and function length. Use when running quality gates, reviewing code smells, or checking lint rules. Automatically triggered on complex modules or post-refactor.
Processes PowerPoint presentation files (.pptx). Creates slides, rewrites templates, converts HTML to presentations, validates thumbnails, swaps layouts, and performs deep OOXML editing. Use when working with presentation files or slide decks. Do NOT use for Word documents, spreadsheets, or PDF files.