openhands/vercel
skills/vercel/SKILL.md
Deploy and manage applications on Vercel, including preview deployments and deployment protection. Use when working with Vercel-hosted projects or configuring Vercel deployments.
$ install --global
skillsauthnpx skillsauth add openhands/extensions vercelInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 10, 2026, 9:22 AM6.2s2 files scanned
SKILL.md
- name:
- vercel
- description:
- Deploy and manage applications on Vercel, including preview deployments and deployment protection. Use when working with Vercel-hosted projects or configuring Vercel deployments.
Vercel Deployment Guide
Deployment Protection and Agent Access
Vercel deployments may have Deployment Protection enabled, which requires authentication to access preview deployments. This can block automated testing and agent access to preview URLs.
Identifying Protected Deployments
If you encounter a login page or authentication requirement when accessing a Vercel preview URL, the deployment has protection enabled. Signs include:
- Redirect to
vercel.com/loginor SSO login page - 401/403 errors when accessing the deployment
- Preview URLs that require Vercel team membership
Enabling Agent Access with Protection Bypass
To allow agents and automated systems to access protected deployments, users need to set up Protection Bypass for Automation:
-
Navigate to Project Settings
- Go to the Vercel Dashboard
- Select the project
- Click on Settings → Deployment Protection
-
Generate a Protection Bypass Secret
- Under "Protection Bypass for Automation", click Generate Secret
- Copy the generated secret securely
-
Using the Bypass Secret
The secret can be used in two ways:
As a Header:
curl -H "x-vercel-protection-bypass: <secret>" https://your-preview-url.vercel.appAs a Query Parameter:
https://your-preview-url.vercel.app?x-vercel-protection-bypass=<secret> -
For Browser-Based Testing
- Append
?x-vercel-protection-bypass=<secret>to the preview URL - The secret will be stored in a cookie for subsequent requests
- Append
Alternative: Disable Protection for Previews
If protection bypass is not suitable, users can disable protection for preview deployments:
- Go to Settings → Deployment Protection
- Set "Vercel Authentication" to Only Production Deployments or Disabled
Do NOT repeatedly attempt to access protected URLs without the bypass secret. </IMPORTANT>
Environment Variables
Set environment variables in Vercel Dashboard under Settings → Environment Variables, or use the Vercel CLI:
vercel env add MY_SECRET
Access in your application:
const secret = process.env.MY_SECRET;
Vercel CLI Commands
Common Vercel CLI commands:
# Login to Vercel
vercel login
# Deploy to preview
vercel
# Deploy to production
vercel --prod
# List deployments
vercel ls
# View deployment logs
vercel logs <deployment-url>
# Pull environment variables locally
vercel env pull
Related Skills
openhands/slack-standup-digest
tools
VerifiedTrustedCommunity
Create an automation that generates an async standup digest from Slack. Searches selected channels for messages since the previous workday, groups updates by project, highlights blockers and decisions, and posts a summary to a target channel.
108SKILL.mdUpdated Jun 5, 2026
openhands/research-brief
tools
VerifiedTrustedCommunity
Create an automation that writes a recurring research brief. Uses Tavily MCP for web research and Notion MCP to publish the final brief with executive summary, implications, and source citations.
108SKILL.mdUpdated Jun 5, 2026
openhands/linear-triage
tools
VerifiedTrustedCommunity
Create an automation that triages new Linear issues. Inspects the issue title, description, team, customer, priority, and recent related issues via Linear MCP. Suggests labels, priority, likely owner, duplicates, and posts a clarifying comment.
108SKILL.mdUpdated Jun 5, 2026
openhands/incident-retrospective
tools
VerifiedTrustedCommunity
Create an automation that drafts incident retrospectives. Gathers incident-channel messages from Slack, collects linked tickets and follow-ups from Linear, and publishes a retrospective draft to Notion with a timeline, impact summary, root-cause hypotheses, and action items.
108SKILL.mdUpdated Jun 5, 2026