Run any Skill in Manus with one click

cicd-setup

Stars0

Forks0

UpdatedMarch 31, 2026 at 09:55

Set up CI/CD pipelines for Flutter app builds and releases using Codemagic (priority) or GitHub Actions. Use this skill when the user asks about Flutter CI/CD, automated builds, Codemagic setup, GitHub Actions for Flutter, code signing automation, build pipelines, or deploying Flutter apps through CI. Also triggers on: 'automate my builds', 'set up continuous integration', 'pipeline for Flutter', 'codemagic.yaml', 'workflow for Flutter', or any mention of automating Flutter app distribution.

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

Run Skill in Manus

Source

DojoCodingLabs

DojoCodingLabs/app-gtm-release-toolkit

View GitHub Repository View Creator Repositories

Download

Run Skill in Manus

Related occupationsSOC

Based on SOC occupation classification

Software DevelopersComputer and Mathematical Occupations·SOC 15-1252

File Explorer

3 files

SKILL.md

readonly

More from this repository

same repository

alt-distribution

DojoCodingLabs/app-gtm-release-toolkit

Distribute apps through alternative channels beyond mainstream stores. Android: F-Droid, GitHub Releases (Obtainium-compatible), IzzyOnDroid, direct APK. Linux desktop: Flathub (Phase 2). Covers reproducible builds, fdroiddata metadata, AppStream metadata for Flathub, flatpak-builder manifests, and PR workflow to flathub/flathub. Use this skill when the user asks about F-Droid publishing, open source app distribution, APK distribution outside Play Store, Obtainium, reproducible builds, FOSS app stores, fdroiddata, IzzyOnDroid, self-hosted repos, sideloading, distributing without Google Play, Flathub, flatpak, flatpak-builder, AppStream, 'publish to Flathub', or 'Linux desktop FOSS distribution'.

2026-04-250

maui-publishing

DojoCodingLabs/app-gtm-release-toolkit

.NET MAUI multi-target publishing for Android, iOS, Windows (Microsoft Store), and macOS (Mac Catalyst). Covers .NET workload setup, project structure (Platforms/{Android,iOS,Windows,MacCatalyst}), build modes (Debug, Release with AOT/R2R/trimming), per-target signing (Android keystore, iOS provisioning, MSIX self-signing or Microsoft Store, Mac App Store), entitlements, code signing CI workflow, .csproj target framework matrix, MAUI Hot Reload limits in production, and typical migration pitfalls from Xamarin.Forms. Use this skill when the user asks about .NET MAUI, MAUI publishing, dotnet workload install maui, .csproj TargetFrameworks for MAUI, MAUI Android/iOS/Windows packaging, MAUI MSIX, MAUI App Store submission, Xamarin to MAUI migration, or 'ship a .NET MAUI app'.

2026-04-250

kmp-build

DojoCodingLabs/app-gtm-release-toolkit

Build, test, and prepare a Kotlin Multiplatform (KMP / KMM) project for shipping to Google Play and Apple App Store. Covers project structure (commonMain, androidMain, iosMain, iosApp/), Gradle Kotlin DSL config, Kotlin/Native compilation, iOS framework integration via CocoaPods or Swift Package Manager, Compose Multiplatform setup, expect/actual patterns, build commands per platform, signing, version sync between Gradle and iOS Info.plist, and common pitfalls (framework size, transitive Kotlin dependencies, kotlinx.* version conflicts). Use this skill when the user asks about KMP, KMM, Kotlin Multiplatform Mobile, shared Kotlin code, Compose Multiplatform, expect/actual, kotlin-multiplatform Gradle plugin, KMP iOS framework, embed Kotlin in iOS, or 'ship a Kotlin Multiplatform app'.

2026-04-250

snap-build

DojoCodingLabs/app-gtm-release-toolkit

Package and publish a Linux desktop application to the Snap Store. Covers snapcraft.yaml authoring (parts, plugs, slots, confinement), build via LXD/Multipass, naming registration on Snap Store, channels strategy (edge/beta/candidate/stable), branch tracks, public/private/unlisted visibility, and CI/CD integration. Use this skill when the user asks about Snap Store, snapcraft, Snapcraft, Ubuntu Store, Linux app distribution, snap publishing, '.snap' files, snap channels, snap confinement, classic snaps, or 'publish to Snap Store'.

2026-04-250

msstore-submission

DojoCodingLabs/app-gtm-release-toolkit

Submit an app to Microsoft Store via Microsoft Partner Center. Covers two packaging paths (PWA via PWA Builder MSIX, native MSIX from Win32/UWP/desktop apps), Partner Center account setup, app reservation, package upload, store listing requirements (description, screenshots, age rating), certification process (1-7 days typical), and post-launch updates. Use this skill when the user asks about Microsoft Store, Partner Center, MSIX, AppX, Windows Store submission, MS Store certification, Windows app distribution, 'publish to Microsoft Store', or 'Windows app store'.

2026-04-250

pwa-quality

DojoCodingLabs/app-gtm-release-toolkit

Validate and improve a Progressive Web App's quality before shipping to stores. Covers Web App Manifest schema, service worker patterns (Workbox 7 / offline-plugin / vanilla), Lighthouse PWA audits (the 14 PWA checks), HTTPS + mixed content, install prompts (beforeinstallprompt), iOS-specific quirks (apple-touch-icon, status bar, safe-areas), and common pitfalls that block app store submission. Use this skill when the user asks about PWA readiness, manifest validation, service worker setup, Lighthouse PWA score, Workbox, offline-plugin, install prompts, 'is my PWA ready', 'why does my PWA fail Lighthouse', PWA Builder requirements, or before /ship-pwa runs gate validation.

2026-04-250

name

cicd-setup

description

CI/CD Pipeline Setup for Flutter

This skill configures automated build, test, and deployment pipelines for Flutter mobile apps. It produces three workflows that cover the full release lifecycle.

Three Workflows

Every Flutter CI/CD setup needs these three workflows, regardless of platform:

PR Quality Gate — runs on pull requests, blocks merge if quality checks fail
Android Pipeline — builds, signs, and distributes Android artifacts per environment
iOS Pipeline — builds, signs, and distributes iOS artifacts per environment

Platform Selection

GitHub Actions + Custom Runners (recommended when you already have CI/CD infra):

Read references/github-actions.md for complete workflow files
If your org already uses custom runners (Blacksmith, Buildjet, self-hosted), use them for Flutter too
Add Flutter via subosito/flutter-action@v2 — works on any Ubuntu runner
Path filtering for monorepo setups
Same dashboard, secrets, and billing as your existing CI/CD
Signing: manual (keystore in secrets, key.properties generated in CI)

GitHub Actions + GitHub-hosted runners (starting from scratch, budget-conscious):

Read references/github-actions.md for complete workflow files
2000 free Linux minutes/month, 200 macOS minutes
Larger action ecosystem but slower than custom runners
Good for small projects without existing CI infra

Codemagic (recommended for iOS releases or teams without CI/CD):

Read references/codemagic.md for the complete codemagic.yaml configuration
Native Flutter support — no Docker images or custom setup
Built-in code signing UI for both Android and iOS
Mac Mini M2 instances for iOS builds — no macOS runner management
500 free build minutes/month on the free tier
Best value when you need iOS builds without managing macOS infrastructure

Common Architecture

Both platforms share the same logical architecture. The differences are in YAML syntax and platform-specific features.

Environment Detection

Pipelines detect the target environment from the branch name:

Branch	Environment	Distribution	Signing	Obfuscation
`develop`	dev	Firebase App Distribution	Debug or unsigned	No
`staging`	staging	Firebase App Distribution / TestFlight	Release signed	No
`production`	production	Google Play / App Store	Release signed	Yes

Config Injection Pattern

Never commit secrets to the repository. Use template-based injection:

Template file (committed): lib/core/env/env_ci.dart

class EnvConfig {
  static const String baseUrl = '<<BASE_URL>>';
  static const String apiKey = '<<API_KEY>>';
  static const String environment = '<<ENV_NAME>>';
}

Generator script (committed): scripts/generate_config.sh

#!/usr/bin/env bash
set -euo pipefail

ENV_NAME=${1:?Usage: $0 <env> <base-url> <api-key>}
BASE_URL=${2:?}
API_KEY=${3:?}

TEMPLATE="lib/core/env/env_ci.dart"
OUT="lib/core/env/env_ci.g.dart"

sed -e "s|<<BASE_URL>>|$BASE_URL|g" \
    -e "s|<<API_KEY>>|$API_KEY|g" \
    -e "s|<<ENV_NAME>>|$ENV_NAME|g" \
    "$TEMPLATE" > "$OUT"

echo "Config generated for $ENV_NAME"

Generated file (in .gitignore): lib/core/env/env_ci.g.dart

Quality Checks Script

Reusable across both CI platforms: scripts/quality_checks.sh

#!/usr/bin/env bash
set -euo pipefail

echo "=== Formatting ==="
dart format --output=none --set-exit-if-changed .

echo "=== Static analysis ==="
flutter analyze --fatal-infos

echo "=== Tests ==="
flutter test --no-pub --coverage

echo "=== Coverage threshold ==="
THRESHOLD=${COVERAGE_THRESHOLD:-70}
if command -v lcov >/dev/null 2>&1; then
  COVERAGE=$(lcov --summary coverage/lcov.info 2>&1 | grep 'lines' | awk '{print $2}' | sed 's/%//')
  if [ "$(echo "$COVERAGE < $THRESHOLD" | bc)" -eq 1 ]; then
    echo "Coverage $COVERAGE% is below threshold $THRESHOLD%"
    exit 1
  fi
  echo "Coverage: $COVERAGE% (threshold: $THRESHOLD%)"
fi

Sentry Symbol Upload Script

For production builds with obfuscation: scripts/upload_symbols.sh

#!/usr/bin/env bash
set -euo pipefail

RELEASE=${1:?Usage: $0 <release-id>}

if ! command -v sentry-cli >/dev/null 2>&1; then
  echo "sentry-cli not found, skipping symbol upload"
  exit 0
fi

sentry-cli releases new "$RELEASE" || true
sentry-cli upload-dif build/symbols || true
sentry-cli releases finalize "$RELEASE" || true

echo "Symbols uploaded for $RELEASE"

Build Variations by Environment

Dev builds:

flutter build appbundle --release          # Android
flutter build ios --release --no-codesign  # iOS

Staging builds:

flutter build appbundle --release          # Android (signed via key.properties)
flutter build ipa --release                # iOS (signed via profile)

Production builds:

flutter build appbundle --release \
  --obfuscate \
  --split-debug-info=build/symbols         # Android

flutter build ipa --release \
  --obfuscate \
  --split-debug-info=build/symbols         # iOS

Distribution Channels

Environment	Android	iOS
Dev	Firebase App Distribution	TestFlight (internal) or none
Staging	Firebase App Distribution	TestFlight (external)
Production	Google Play Store	App Store Connect

Required Secrets

Organize secrets into logical groups in your CI platform:

Signing:

ANDROID_KEYSTORE_BASE64 — base64-encoded .jks file
KEYSTORE_PASSWORD — keystore password
KEY_ALIAS — key alias name
KEY_PASSWORD — key password
IOS_CERTIFICATE_BASE64 — base64-encoded .p12 distribution certificate
IOS_CERTIFICATE_PASSWORD — certificate password
IOS_PROVISIONING_PROFILE_BASE64 — base64-encoded .mobileprovision

Distribution:

FIREBASE_TOKEN — from firebase login:ci
FIREBASE_ANDROID_APP_ID — Firebase console app ID
FIREBASE_IOS_APP_ID — Firebase console app ID
FIREBASE_GROUPS — comma-separated tester group names
GOOGLE_PLAY_SERVICE_ACCOUNT_JSON — Play Console service account
APP_STORE_CONNECT_API_KEY_ID — App Store Connect key ID
APP_STORE_CONNECT_API_ISSUER_ID — issuer ID
APP_STORE_CONNECT_API_KEY_CONTENT — .p8 key content

Environment:

STAGING_BASE_URL, STAGING_API_KEY
PROD_BASE_URL, PROD_API_KEY

Monitoring:

SENTRY_AUTH_TOKEN, SENTRY_ORG, SENTRY_PROJECT

Implementation

After understanding the architecture above, read the reference file for the chosen platform:

Codemagic: references/codemagic.md — complete codemagic.yaml with all three workflows
GitHub Actions: references/github-actions.md — complete .github/workflows/*.yml files

Both references produce the same outcome: signed artifacts distributed to the right channel per environment.