adteco/.claude/skills/pre-deploy-checklist
.claude/skills/pre-deploy-checklist/SKILL.md
# Pre-Deployment Checklist Skill ## Purpose Run comprehensive quality checks before committing code and creating pull requests. This skill ensures code quality, documentation, API specs, and tests are all in order before deployment. ## When to Use This Skill - Before committing significant changes - Before creating a pull request - When user invokes `/ship`, `/pre-deploy`, or `/checklist` - When preparing code for production deployment ## Checklist Items ### 1. TypeScript Compilation **Com
development
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add adteco/glapi .claude/skills/pre-deploy-checklistInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 9:30 PM4.3s1 file scanned
SKILL.md
Pre-Deployment Checklist Skill
Purpose
Run comprehensive quality checks before committing code and creating pull requests. This skill ensures code quality, documentation, API specs, and tests are all in order before deployment.
When to Use This Skill
- Before committing significant changes
- Before creating a pull request
- When user invokes
/ship,/pre-deploy, or/checklist - When preparing code for production deployment
Checklist Items
1. TypeScript Compilation
Command: pnpm type-check or npx tsc --noEmit
Purpose: Ensure no type errors
Required: Yes
2. Linting
Command: pnpm lint or npx eslint .
Purpose: Code style and best practices
Required: Yes
3. Build Validation
Command: pnpm build
Purpose: Ensure production build succeeds
Required: Yes (for PRs)
4. OpenAPI Spec Sync
Command: pnpm --filter @glapi/trpc generate-openapi (project-specific)
Purpose: Ensure API documentation matches code
Check: Compare generated spec with committed spec
Required: If API routes changed
5. Documentation Validation
Command: Check for apps/docs/scripts/validate-snippets.ts and run if exists
Purpose: Validate code snippets in documentation
Required: If docs exist
6. Test Execution
Commands:
- Unit tests:
pnpm testorvitest run - E2E tests:
pnpm test:e2eorplaywright testPurpose: Ensure tests pass Required: Tests covering changed code
7. Changelog Update
Check: CHANGELOG.md modified if user-facing changes Purpose: Document changes for users Required: For features and fixes
8. Database Migration Validation
Check: New migrations run successfully
Command: source .env && psql "$DATABASE_ADMIN_URL" -f <migration>
Required: If schema changed
9. RLS Policy Check
Check: New tables have Row Level Security policies Purpose: Multi-tenant data isolation Required: For new database tables
10. Secrets Check
Check: No .env, credentials, API keys in staged files Purpose: Security Required: Always
Execution Flow
1. Identify what changed (git status, git diff)
2. Run applicable checks based on changes
3. Report results with pass/fail status
4. Block commit if critical checks fail
5. Warn for advisory checks
Check Categories
Critical (Must Pass)
- TypeScript compilation
- No secrets in code
- Linting errors
Required (Should Pass)
- Build succeeds
- Tests pass for changed code
- OpenAPI spec up-to-date (if API changed)
Advisory (Warning Only)
- Changelog updated
- Documentation updated
- Full test suite passes
Project Detection
The skill auto-detects project capabilities:
| File/Directory | Capability |
|----------------|------------|
| package.json with type-check script | TypeScript checking |
| package.json with lint script | Linting |
| packages/trpc/scripts/generate-openapi.ts | OpenAPI generation |
| apps/docs/ | Documentation |
| CHANGELOG.md | Changelog tracking |
| tests/ or __tests__/ | Test suites |
| packages/database/drizzle/ | Migrations |
| .env.example | Environment variables |
Output Format
Pre-Deployment Checklist
========================
[PASS] TypeScript Compilation
[PASS] Linting
[PASS] Build
[WARN] OpenAPI Spec - regenerate with: pnpm --filter @glapi/trpc generate-openapi
[FAIL] Tests - 2 failing in contacts.spec.ts
[SKIP] Changelog - no user-facing changes detected
[PASS] No Secrets Detected
Summary: 4 passed, 1 warning, 1 failed, 1 skipped
Action Required:
- Fix failing tests before committing
- Consider regenerating OpenAPI spec
Integration Options
As a Skill (Manual)
Invoke with /ship or /pre-deploy command
As a Hook (Automatic)
Add to .claude/settings.json:
{
"hooks": {
"PreCommit": {
"command": "claude-code skill pre-deploy-checklist"
}
}
}
In CI/CD
Run checks in GitHub Actions or other CI systems
Cross-Project Usage
This skill is designed to be portable. Copy the skill to any project's .claude/skills/ directory. It will:
- Auto-detect available tooling
- Skip checks that don't apply
- Use project-specific commands from package.json
- Adapt to monorepo or single-package layouts
Customization
Create .claude/pre-deploy-config.json to customize:
{
"required_checks": ["typescript", "lint", "build"],
"skip_checks": ["changelog"],
"custom_commands": {
"openapi": "pnpm generate:api-spec",
"test": "pnpm test:unit"
},
"paths": {
"changelog": "CHANGELOG.md",
"migrations": "db/migrations"
}
}
Related Skills
adteco/skill-developer
tools
VerifiedTrustedCommunity
Create and manage Claude Code skills following Anthropic best practices. Use when creating new skills, modifying skill-rules.json, understanding trigger patterns, working with hooks, debugging skill activation, or implementing progressive disclosure. Covers skill structure, YAML frontmatter, trigger types (keywords, intent patterns, file paths, content patterns), enforcement levels (block, suggest, warn), hook mechanisms (UserPromptSubmit, PreToolUse), session tracking, and the 500-line rule.
SKILL.mdUpdated Apr 16, 2026
adteco/glapi-rls-guide
development
VerifiedTrustedCommunity
Row Level Security (RLS) implementation guide for GLAPI multi-tenant database isolation. Covers PostgreSQL RLS policies, session variables, contextual database connections, tRPC middleware, and common troubleshooting. Use when working with RLS, multi-tenancy, organization isolation, database security, or debugging RLS policy violations.
SKILL.mdUpdated Apr 16, 2026
adteco/adteco-frontend-guidelines
development
VerifiedTrustedCommunity
Frontend development guidelines for Adteco's React 18/19 + ShadCN/Radix UI + Tailwind stack. Patterns for building accessible, performant components with type safety, TanStack Query data fetching, and modern styling.
SKILL.mdUpdated Apr 16, 2026
adteco/glapi-backend-guidelines
development
VerifiedTrustedCommunity
GLAPI backend development guide for Next.js + TRPC + Drizzle ORM + PostgreSQL + Clerk. TRPC for internal type-safety, REST API exposure via OpenAPI. Covers layered architecture (routers → services → Drizzle), dual TRPC/REST endpoints, Clerk authentication, and testing strategies.
SKILL.mdUpdated Apr 16, 2026