# Deploy Applications With DevOps Templates

Teams often need repeatable deployment patterns without building every pipeline from scratch. This skill provides practical templates and review checklists for CI/CD, containers, Kubernetes, GitOps, and infrastructure as code.

## Install

```bash
npx skillstore add ariegoldkin/devops-deployment
```

## Metadata

- - Slug: ariegoldkin-devops-deployment
- - Version: 1.0.0
- - Author: ArieGoldkin
- - GitHub username: ArieGoldkin
- - License: MIT
- - Repository: https://github.com/ArieGoldkin/ai-agent-hub/tree/main/skills/devops-deployment
- - Ref: main
- - Supported tools: Claude, Codex, Claude Code
- - Risk level: medium
- - Risk factors: external\_commands, network, env\_access
- - Quality score: 50
- - Quality tier: warning
- - Public page: https://skillstore.pages.dev/skills/ariegoldkin-devops-deployment
- - Manifest: https://skillstore.pages.dev/api/skills/ariegoldkin-devops-deployment/manifest

## Capabilities

- Explains CI/CD stages for linting, testing, scanning, building, and deployment.
- Provides a multi-stage Node.js Dockerfile with non-root runtime setup.
- Includes Kubernetes Deployment, Service, Ingress, resource, probe, and security context examples.
- Supplies Terraform AWS patterns for VPC, EKS, RDS, and remote state.
- Shows GitOps and secrets templates for ArgoCD and External Secrets Operator.
- Offers deployment checklists for pre-deployment, active deployment, and post-deployment validation.

## Use Cases

- Create a CI/CD Baseline: Use the pipeline template to define lint, test, security scan, image build, and gated deployment stages.
- Prepare Kubernetes Manifests: Adapt the Kubernetes and Helm examples for a service that needs health checks, resources, ingress, and security context settings.
- Plan Cloud Infrastructure: Use the Terraform, ArgoCD, and secrets examples to outline AWS infrastructure and GitOps delivery workflows.

## Prompt Templates

### Beginner Deployment Checklist

```
Use the devops-deployment skill to create a release checklist for my Node.js service. Include CI checks, deployment verification, rollback planning, and post-release monitoring.
```

### Containerize an Application

```
Use the devops-deployment skill to adapt the Dockerfile pattern for my application. Explain the build stages, runtime user, health check, and production hardening changes I should make.
```

### Design Kubernetes Delivery

```
Use the devops-deployment skill to design Kubernetes deployment guidance for my service. Cover Deployment, Service, Ingress, resource limits, probes, autoscaling, secrets, and rollout strategy.
```

### Review a Production Deployment Plan

```
Use the devops-deployment skill to review my production deployment plan across GitHub Actions, Docker, Kubernetes, Terraform, ArgoCD, and External Secrets. Identify risks, missing gates, and concrete hardening steps.
```

## Limitations

- Templates are generic examples and need environment-specific review before use.
- It does not deploy infrastructure or run commands by itself.
- Cloud account permissions, domains, secrets, and compliance controls must be supplied separately.
- Some template defaults are development placeholders and are unsafe for production without changes.

## Best Practices

- Replace every placeholder domain, repository, image tag, secret name, and credential before using a template.
- Pin container images, Git revisions, action versions, provider versions, and deployment artifacts for production.
- Review generated deployment plans with security, operations, and application owners before applying them.

## Anti Patterns

- Do not reuse the development database password or connection string outside local development.
- Do not deploy latest tags or HEAD revisions to production without a controlled release process.
- Do not expose ports, ingress hosts, or public subnets without access controls and monitoring.

## Security Audit

- - Safe to publish: true
- - Audited at: 2026-06-28T09:54:04.676\+00:00
- - Summary: Static analysis flagged many command, network, secret, and weak-crypto patterns, including one critical combined-behavior heuristic. Review found no prompt injection, malicious exfiltration, or hidden executable code; most high-severity scanner hits are deployment-template placeholders or false positives. The skill should publish with a medium-risk warning because copyable templates include default development credentials, mutable image references, and production-facing network scaffolding.

## Stats

- - Views: 253
- - Downloads: 4
- - Favorites: 0
- - Popularity score: 0