dneprokos/git-workflow-orchestrator
.cursor/skills/git-workflow-orchestrator/SKILL.md
Run a phased git workflow: create branch (optional), commit, push, and open a GitHub pull request. Reports success or failure per phase and surfaces the PR URL when the final phase succeeds. Use when the user wants to ship a feature branch end-to-end or wants a single scripted pipeline with phase status.
$ install --global
skillsauthnpx skillsauth add dneprokos/skills-examples git-workflow-orchestratorInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 2:39 AM4.4s2 files scanned
SKILL.md
- name:
- git-workflow-orchestrator
- description:
- >-
- Run a phased git workflow:
- create branch (optional), commit, push, and open a
- argument-hint:
- branch name, commit message, or 'use orchestrator script'
Git Workflow Orchestrator
Coordinate git-branch-creator, git-commit-creator, git-push-creator, and git-pr-creator as sequential phases. After the last phase, return the pull request URL when available.
When this skill fits
Use it for requests like:
- "run the full ship workflow: branch, commit, push, PR"
- "orchestrate git phases and tell me if each step succeeded"
- "create a branch, commit my changes, push, and open a PR"
Do not use it for:
- rewriting history, force push, or merge (use explicit user request outside these skills)
- operations on the resolved core branch (
mainordevelop) as the branch to push (push-creator blocks it)
GitHub token (non-DryRun)
Opening a PR needs a GitHub token with the same resolution as git-pr-creator: GITHUB_TOKEN or GH_TOKEN, then repo-root github-pr.local.json (preferred for Copilot + Cursor skill layouts), then legacy .github/skills/git-pr-creator/config/github-pr.local.json. Details: git-pr-creator README.
-
Script-driven:
run-git-ship-workflow.ps1checks the token before Phase 1 when-DryRunis not set, then setsGH_TOKENfor subprocesses. -
Agent-driven: Confirm a token is configured before Phase 4 (or at workflow start); if missing, stop and point to the git-pr-creator README.
Two ways to run
A. Agent-driven (interactive commit)
Run each underlying skill in order. After every phase, state SUCCESS or FAILED and paste relevant script output. Stop on first failure.
-
Phase 1 — Branch — Follow git-branch-creator (staging question N/A; use its script with the requested branch name).
- Success:
create-branch.ps1exits 0, or user is already on the intended branch and you document SKIPPED with reason. - Skip: If the user explicitly says they are already on the correct branch and must not create a new one, mark Phase 1 SKIPPED.
- Success:
-
Phase 2 — Commit — Follow git-commit-creator (staging prompt, preview, proposed message OK / Not OK, then commit).
- Success: commit completes and working tree has no unintended uncommitted requirement for push (report
git status --shortif ambiguous). - Do not use the orchestrator script for this path; preserve message approval.
- Success: commit completes and working tree has no unintended uncommitted requirement for push (report
-
Phase 3 — Push — Follow git-push-creator (
push-branch.ps1).- Success: exit code 0; capture exact git output.
-
Phase 4 — PR — Follow git-pr-creator (
create-pr.ps1).- Success: exit code 0; capture exact output including the PR URL (usually printed by
gh pr create).
- Success: exit code 0; capture exact output including the PR URL (usually printed by
B. Script-driven (non-interactive commit)
When the user supplies a final commit message and wants one command, run:
pwsh -NoProfile -File ./.github/skills/git-workflow-orchestrator/scripts/run-git-ship-workflow.ps1 `
-BranchName "<name>" `
-CommitMessage "<message>" `
[-SkipBranch] `
[-BaseBranch <branch>] `
[-PrBase <branch>] `
[-ApproveInstall] [-ApproveAuth] `
[-AllowDuplicatePrefix] `
[-DryRun]
-CommitMessageis required (stages all changes and commits in one step).-SkipBranchomits Phase 1 (use when already on the target branch).- If
-BaseBranchis omitted, the script auto-detects the core branch (mainpreferred, thendevelop). - If
-PrBaseis omitted, it defaults to the resolved-BaseBranchvalue. - Forward
-ApproveInstall/-ApproveAuthfor headlessghsetup when needed.
Phase banners and subprocess output use the host stream so they stay visible when the script is invoked from tools that assign function output. On success, the script also emits PR_URL: <url> on the success stream for redirection or piping.
Interpret the script’s phase lines and final PR_URL: line for the user.
Phase summary template (agent-driven)
After all phases, respond with a compact table:
| Phase | Name | Status | Notes |
| ----- | ------ | -------- | ----- |
| 1 | Branch | SUCCESS | ... |
| 2 | Commit | SUCCESS | ... |
| 3 | Push | SUCCESS | ... |
| 4 | PR | SUCCESS | ... |
PR: <paste URL verbatim from gh output>
Use FAILED and stop populating later phases if a step errors. Include a short Notes reason on failure.
Hard rules
- Use existing scripts under
.github/skills/*/scripts/; do not reimplement git operations in the orchestrator narrative. - Treat exit code 0 as phase success for scripted steps; non-zero means FAILED.
- Return the PR link exactly as printed; do not guess URLs.
- Never push from the resolved core branch (
mainordevelop) via this workflow (push-creator will refuse; report FAILED if attempted).
Related Skills
dneprokos/windows-secretmanagement-setup
data-ai
VerifiedTrustedCommunity
Install and configure Windows Credential Manager style secret storage for PowerShell using SecretManagement and SecretStore. Use when users ask to install secret manager support, set up Credential Manager for GitHub token storage, or bootstrap GitHubToken for PR skills.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/ut-coder
development
VerifiedTrustedCommunity
Generate a complete, compilable unit test file from an Analyst test plan and Architect strategy. Uses AAA pattern, language-specific frameworks (NUnit, JUnit 5, pytest, Vitest), correct mock/real dependency instantiation, constructor null-guard tests, parameterized tests, and setup/teardown hooks. Input is the Analyst JSON plan plus Architect strategy summary. Use when asked to generate test code, write test implementation, create test file, or implement tests from a plan. Also invoked as Phase 3 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/ut-architect
development
VerifiedTrustedCommunity
Define the mocking strategy and assertion style for a unit test plan. Classifies each dependency as mock or real, resolves assertion framework and test file location from project patterns, lists constructor null-guard tests with expected exception types, and specifies abstraction interfaces for non-deterministic calls. Input is a JSON test plan from ut-analyst. Use when asked to define mocking strategy, plan test architecture, classify dependencies as mock vs real, or design test structure. Also invoked as Phase 2 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/ut-analyst
testing
VerifiedTrustedCommunity
Analyze a class or function and produce a structured JSON test plan. Classifies all dependencies (interface, abstract, valueObject, dto, primitive), detects non-deterministic calls, enumerates test cases using black-box techniques (Equivalence Partitioning, Boundary Value Analysis, Decision Table, State Transition), and lists constructor null-guard requirements. Use when asked to analyze a class for testing, create a test plan, classify dependencies, or produce test case inventory. Also invoked as Phase 1 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026