← 返回 Skills 市场

GitLab

Name: GitLab
Author: ivangdavila

作者 Iván · GitHub ↗ · v1.0.0

linuxdarwinwin32 ✓ 安全检测通过

1998

总下载

当前安装

版本数

在 OpenClaw 中安装

/install gitlab

功能描述

Avoid common GitLab CI/CD mistakes — rules gotchas, silent failures, and YAML merge traps.

使用说明 (SKILL.md)

Rules Gotchas

rules: and only:/except: can't mix — use one or the other per job
First matching rule wins — put specific rules before general ones
Missing when: defaults to on_success — rules: - if: $CI_COMMIT_TAG runs on tag
Empty rules array rules: [] means never run — different from no rules at all
Add - when: never at end to prevent fallthrough — otherwise unmatched conditions may run

Silent Failures

Protected variables missing on non-protected branches — job runs but variable is empty
Runner tag mismatch — job stays pending forever with no error
docker:dind on non-privileged runner — fails with cryptic Docker errors
Masked variable format invalid — variable exposed in logs anyway

YAML Merge Traps

extends: doesn't deep merge arrays — scripts, variables arrays get replaced, not appended
Use !reference [.job, script] to reuse — script: [!reference [.base, script], "my command"]
include: files can override each other — last one wins for same keys
Anchors &/* don't work across files — use extends: for cross-file reuse

Artifacts vs Cache

Cache not guaranteed between runs — treat as optimization, not requirement
Artifacts auto-download by stage — add dependencies: [] to skip if not needed
needs: downloads artifacts by default — needs: [{job: x, artifacts: false}] to skip

Docker-in-Docker

Shared runners usually don't support privileged — need self-hosted or special config
DOCKER_HOST: tcp://docker:2375 required — job uses wrong Docker otherwise
DOCKER_TLS_CERTDIR: "" or configure TLS properly — half-configured TLS breaks builds

Pipeline Triggers

CI_PIPELINE_SOURCE differs by trigger — push, merge_request_event, schedule, api, trigger
MR pipelines need rules: - if: $CI_MERGE_REQUEST_IID — not just branch rules
Detached vs merged result pipelines — detached tests source, merged tests result of merge

安全使用建议

This skill is a read-only set of GitLab CI/CD tips and appears internally consistent and low-risk: it doesn't ask for credentials, install binaries, or run code. If you need stronger guarantees, prefer official GitLab docs or sources you trust; check the skill author and changelog before installing in environments with strict compliance requirements. If you plan to let an autonomous agent act on pipelines, ensure the agent's permissions and credentials are limited — the skill itself does not request any secrets, but agents can be granted them elsewhere.

功能分析

Type: OpenClaw Skill Name: gitlab Version: 1.0.0 The skill bundle contains only metadata (`_meta.json`) and a documentation file (`SKILL.md`). The `SKILL.md` provides informational content about GitLab CI/CD best practices and common pitfalls. There are no executable commands, network calls, file system access, or any instructions that could lead to prompt injection against the agent, data exfiltration, or other malicious activities. The content is purely educational and aligns with a benign knowledge-base skill.

能力评估

✓ Purpose & Capability

The name/description (GitLab CI/CD gotchas) match the SKILL.md content. The skill does not request unrelated binaries, env vars, or config paths — everything present is explanatory guidance about GitLab pipelines.

✓ Instruction Scope

SKILL.md contains static best-practice notes (rules, artifacts, dind, triggers). It does not instruct the agent to read local files, access system credentials, or transmit data to external endpoints. Mentions of CI variables are contextual and not instructions to exfiltrate them.

✓ Install Mechanism

No install spec and no code files are present. As an instruction-only skill it does not write to disk or fetch remote code during install.

✓ Credentials

The skill declares no required environment variables or credentials. There are no disproportionate or unexplained requests for secrets or unrelated service keys.

✓ Persistence & Privilege

always is false and model invocation is not disabled (normal). The skill does not request permanent presence or modify other skills or system-wide settings.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install gitlab
安装完成后，直接呼叫该 Skill 的名称或使用 /gitlab 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release

元数据

Slug gitlab

版本 1.0.0

许可证 —

累计安装 17

当前安装数 17

历史版本数 1

常见问题

GitLab 是什么？

Avoid common GitLab CI/CD mistakes — rules gotchas, silent failures, and YAML merge traps. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 1998 次。

如何安装 GitLab？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install gitlab」即可一键安装，无需额外配置。

GitLab 是免费的吗？

是的，GitLab 完全免费（开源免费），可自由下载、安装和使用。

GitLab 支持哪些平台？

GitLab 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（linux, darwin, win32）。

谁开发了 GitLab？

由 Iván（@ivangdavila）开发并维护，当前版本 v1.0.0。