← 返回 Skills 市场

ci-cd-pipeline-builder

Name: ci-cd-pipeline-builder
Author: alirezarezvani

作者 Alireza Rezvani · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

736

总下载

当前安装

版本数

在 OpenClaw 中安装

/install ci-cd-pipeline-builder

功能描述

CI/CD Pipeline Builder

使用说明 (SKILL.md)

CI/CD Pipeline Builder

Tier: POWERFUL
Category: Engineering
Domain: DevOps / Automation

Overview

Use this skill to generate pragmatic CI/CD pipelines from detected project stack signals, not guesswork. It focuses on fast baseline generation, repeatable checks, and environment-aware deployment stages.

Core Capabilities

Detect language/runtime/tooling from repository files
Recommend CI stages (lint, test, build, deploy)
Generate GitHub Actions or GitLab CI starter pipelines
Include caching and matrix strategy based on detected stack
Emit machine-readable detection output for automation
Keep pipeline logic aligned with project lockfiles and build commands

When to Use

Bootstrapping CI for a new repository
Replacing brittle copied pipeline files
Migrating between GitHub Actions and GitLab CI
Auditing whether pipeline steps match actual stack
Creating a reproducible baseline before custom hardening

Key Workflows

1. Detect Stack

python3 scripts/stack_detector.py --repo . --format text
python3 scripts/stack_detector.py --repo . --format json > detected-stack.json

Supports input via stdin or --input file for offline analysis payloads.

2. Generate Pipeline From Detection

python3 scripts/pipeline_generator.py \
  --input detected-stack.json \
  --platform github \
  --output .github/workflows/ci.yml \
  --format text

Or end-to-end from repo directly:

python3 scripts/pipeline_generator.py --repo . --platform gitlab --output .gitlab-ci.yml

3. Validate Before Merge

Confirm commands exist in project (test, lint, build).
Run generated pipeline locally where possible.
Ensure required secrets/env vars are documented.
Keep deploy jobs gated by protected branches/environments.

4. Add Deployment Stages Safely

Start with CI-only (lint/test/build).
Add staging deploy with explicit environment context.
Add production deploy with manual gate/approval.
Keep rollout/rollback commands explicit and auditable.

Script Interfaces

python3 scripts/stack_detector.py --help
- Detects stack signals from repository files
- Reads optional JSON input from stdin/--input
python3 scripts/pipeline_generator.py --help
- Generates GitHub/GitLab YAML from detection payload
- Writes to stdout or --output

Common Pitfalls

Copying a Node pipeline into Python/Go repos
Enabling deploy jobs before stable tests
Forgetting dependency cache keys
Running expensive matrix builds for every trivial branch
Missing branch protections around prod deploy jobs
Hardcoding secrets in YAML instead of CI secret stores

Best Practices

Detect stack first, then generate pipeline.
Keep generated baseline under version control.
Add one optimization at a time (cache, matrix, split jobs).
Require green CI before deployment jobs.
Use protected environments for production credentials.
Regenerate pipeline when stack changes significantly.

References

Detection Heuristics

The stack detector prioritizes deterministic file signals over heuristics:

Lockfiles determine package manager preference
Language manifests determine runtime families
Script commands (if present) drive lint/test/build commands
Missing scripts trigger conservative placeholder commands

Generation Strategy

Start with a minimal, reliable pipeline:

Checkout and setup runtime
Install dependencies with cache strategy
Run lint, test, build in separate steps
Publish artifacts only after passing checks

Then layer advanced behavior (matrix builds, security scans, deploy gates).

Platform Decision Notes

GitHub Actions for tight GitHub ecosystem integration
GitLab CI for integrated SCM + CI in self-hosted environments
Keep one canonical pipeline source per repo to reduce drift

Validation Checklist

Generated YAML parses successfully.
All referenced commands exist in the repo.
Cache strategy matches package manager.
Required secrets are documented, not embedded.
Branch/protected-environment rules match org policy.

Scaling Guidance

Split long jobs by stage when runtime exceeds 10 minutes.
Introduce test matrix only when compatibility truly requires it.
Separate deploy jobs from CI jobs to keep feedback fast.
Track pipeline duration and flakiness as first-class metrics.

安全使用建议

This skill appears coherent and benign, but review its outputs before committing: the scripts read files in the repository and will write YAML to the output path you provide (they will create parent directories and may overwrite existing pipeline files). Inspect generated CI YAML for deploy steps or secrets before enabling in production; run the generator on a copy or branch if you want to avoid accidental overwrites. Note some generated steps use fallbacks like "|| true" or placeholder echo commands when commands are missing—adjust those to avoid masking real failures. If you plan to run these scripts in an automated environment, ensure the repository you point them at is trusted.

功能分析

Type: OpenClaw Skill Name: ci-cd-pipeline-builder Version: 1.0.0 The skill bundle is a legitimate tool for detecting project stacks and generating CI/CD pipeline configurations for GitHub Actions and GitLab CI. The Python scripts (scripts/stack_detector.py and scripts/pipeline_generator.py) perform standard file system operations limited to project-specific files (e.g., package.json, requirements.txt) and do not exhibit any signs of data exfiltration, unauthorized network access, or malicious command execution.

能力评估

✓ Purpose & Capability

Name/description (CI/CD pipeline generation) align with included scripts and references. The two Python scripts detect repo signals and emit GitHub/GitLab YAML; included template docs match the stated capabilities. There are no unrelated binaries or credentials requested.

✓ Instruction Scope

SKILL.md instructs the agent to run the provided detector and generator against a repository or JSON input; instructions restrict actions to detection, generation, validation, and local write-out. The scripts only read repository files (package.json, pyproject.toml, go.mod, lockfiles, Dockerfile, etc.) and do not attempt to access system secrets, network endpoints, or other unrelated paths.

✓ Install Mechanism

No install spec — instruction-only plus included scripts. Nothing is downloaded or extracted from external URLs; scripts are plain Python files. Low install risk.

✓ Credentials

No environment variables, credentials, or config paths are required. The scripts operate on repository files and CLI args only. There are no demands for unrelated tokens or secrets.

✓ Persistence & Privilege

Skill is not always-enabled and does not declare persistent or elevated privileges. It writes pipeline YAML to an output path specified by the user (creates parent directories if needed), which is expected behavior for a generator.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install ci-cd-pipeline-builder
安装完成后，直接呼叫该 Skill 的名称或使用 /ci-cd-pipeline-builder 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial publish

v2.1.1

v2.1.1: optimization, reference splits

元数据

Slug ci-cd-pipeline-builder

版本 1.0.0

许可证 MIT-0

累计安装 10

当前安装数 10

历史版本数 2

常见问题