The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references official and well-known resources for automation and security.
Utilizes official GitHub Actions such as actions/checkout, actions/setup-node, and actions/upload-artifact for CI/CD workflows.
Integrates the Trivy vulnerability scanner from Aqua Security's public repository (aquasecurity/trivy-action) to perform filesystem security scans.
Uses standard Docker images (e.g., node:20-slim, postgres:16, redis:7-alpine) from Docker Hub.
[COMMAND_EXECUTION]: Provides standard command-line examples for infrastructure management and application lifecycle.
Includes routine kubectl commands for deployment rollouts, status checks, and troubleshooting.
Contains npm lifecycle scripts (npm ci, npm test, npm run build) for Node.js application management.
Features docker and docker-compose commands for local development and container building.
[CREDENTIALS_UNSAFE]: Includes placeholder credentials for demonstration and local testing environments.
Defines environment variables like POSTGRES_PASSWORD: test and POSTGRES_PASSWORD: secret within CI and local development (Docker Compose) templates. These are clearly intended as placeholders and are not production secrets.
Demonstrates best practices for production secrets by referencing external-secrets.io and Kubernetes secretKeyRef rather than hardcoding actual values.

devops-engineer