excatt/cicd
skills/cicd/SKILL.md
CI/CD 파이프라인 설계 및 구성을 위한 가이드를 실행합니다.
$ install --global
skillsauthnpx skillsauth add excatt/superclaude-plusplus cicdInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 27, 2026, 9:41 PM154.0s1 file scanned
SKILL.md
- name:
- cicd
- description:
- CI/CD 파이프라인 설계 및 구성을 위한 가이드를 실행합니다.
- user-invocable:
- true
CI/CD Skill
CI/CD 파이프라인 설계 및 구성을 위한 가이드를 실행합니다.
파이프라인 구조
기본 스테이지
┌─────────┐ ┌─────────┐ ┌─────────┐ ┌─────────┐ ┌─────────┐
│ Build │ → │ Test │ → │ Scan │ → │ Deploy │ → │ Monitor │
└─────────┘ └─────────┘ └─────────┘ └─────────┘ └─────────┘
환경별 배포
main → staging → production (수동 승인)
feature/* → preview environments
GitHub Actions
기본 템플릿
name: CI/CD Pipeline
on:
push:
branches: [main, develop]
pull_request:
branches: [main]
env:
NODE_VERSION: '20'
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: ${{ env.NODE_VERSION }}
cache: 'npm'
- name: Install dependencies
run: npm ci
- name: Build
run: npm run build
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: build
path: dist/
test:
needs: build
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: ${{ env.NODE_VERSION }}
cache: 'npm'
- run: npm ci
- run: npm test -- --coverage
- name: Upload coverage
uses: codecov/codecov-action@v3
security:
needs: build
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run security scan
uses: snyk/actions/node@master
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
deploy:
needs: [test, security]
runs-on: ubuntu-latest
if: github.ref == 'refs/heads/main'
environment: production
steps:
- uses: actions/checkout@v4
- name: Download artifact
uses: actions/download-artifact@v4
with:
name: build
path: dist/
- name: Deploy to production
run: |
# 배포 스크립트
env:
DEPLOY_TOKEN: ${{ secrets.DEPLOY_TOKEN }}
재사용 워크플로우
# .github/workflows/reusable-deploy.yml
name: Reusable Deploy
on:
workflow_call:
inputs:
environment:
required: true
type: string
secrets:
DEPLOY_TOKEN:
required: true
jobs:
deploy:
runs-on: ubuntu-latest
environment: ${{ inputs.environment }}
steps:
- name: Deploy
run: ./deploy.sh ${{ inputs.environment }}
GitLab CI
stages:
- build
- test
- security
- deploy
variables:
NODE_VERSION: "20"
build:
stage: build
image: node:${NODE_VERSION}
script:
- npm ci
- npm run build
artifacts:
paths:
- dist/
expire_in: 1 hour
test:
stage: test
image: node:${NODE_VERSION}
script:
- npm ci
- npm test
coverage: '/Coverage: \d+\.\d+%/'
security_scan:
stage: security
image: snyk/snyk:node
script:
- snyk test
deploy_staging:
stage: deploy
environment:
name: staging
url: https://staging.example.com
script:
- ./deploy.sh staging
only:
- develop
deploy_production:
stage: deploy
environment:
name: production
url: https://example.com
script:
- ./deploy.sh production
only:
- main
when: manual
베스트 프랙티스
속도 최적화
- [ ] 캐싱 활용 (dependencies, Docker layers)
- [ ] 병렬 실행 (독립적인 job)
- [ ] 변경된 파일만 테스트
- [ ] 작은 Docker 이미지
보안
- [ ] 시크릿 관리 (Vault, GitHub Secrets)
- [ ] 최소 권한 원칙
- [ ] 의존성 취약점 스캔
- [ ] 코드 서명
신뢰성
- [ ] 멱등성 보장
- [ ] 롤백 전략
- [ ] 헬스 체크
- [ ] 배포 알림
모니터링
- [ ] 파이프라인 메트릭
- [ ] 배포 추적
- [ ] 에러 알림
출력 형식
## CI/CD Pipeline Design
### Pipeline Overview
[Build] → [Test] → [Security] → [Deploy]
### Configuration
```yaml
# CI/CD 설정 파일
Environments
| 환경 | 트리거 | URL | |------|--------|-----| | staging | develop 브랜치 | staging.example.com | | production | main 브랜치 (수동) | example.com |
Secrets Required
DEPLOY_TOKEN: 배포 인증SNYK_TOKEN: 보안 스캔
Estimated Duration
- Build: ~2분
- Test: ~5분
- Deploy: ~3분
- Total: ~10분
---
요청에 맞는 CI/CD 파이프라인을 설계하세요.
Related Skills
excatt/grill-with-docs
testing
VerifiedTrustedCommunity
사용자 계획을 기존 도메인 모델에 대해 stress-test하는 인터뷰 세션. 용어를 날카롭게 다듬고, 결정이 굳어질 때마다 CONTEXT.md(도메인 어휘 사전)와 ADR을 인라인으로 갱신한다. 새 기능 요구사항 탐색은 `/brainstorm`을, 기존 도메인 모델·용어와의 정합성 점검은 이 스킬을 사용한다.
13SKILL.mdUpdated May 21, 2026
excatt/skills/xlsx
development
VerifiedTrustedCommunity
# Excel (XLSX) Spreadsheet Skill Claude Code supports comprehensive spreadsheet operations through the **xlsx** skill, enabling creation, editing, and analysis of Excel files (.xlsx, .xlsm, .csv, .tsv). ## Trigger - When user needs Excel spreadsheet creation or editing - Financial modeling or data analysis required - Spreadsheet formulas and calculations needed - Data import from CSV/TSV files ## Core Capabilities **Primary functions include:** - Creating new spreadsheets with formulas and f
13SKILL.mdUpdated May 15, 2026
excatt/workflow
tools
VerifiedTrustedCommunity
Generate structured implementation workflows from PRDs and feature requirements
13SKILL.mdUpdated May 15, 2026
excatt/websocket
development
VerifiedTrustedCommunity
실시간 통신 설계 가이드를 실행합니다.
13SKILL.mdUpdated May 15, 2026