| name | ops-deploy |
| description | Deploy Expo frontend (EAS Update/Build) or serverless backend (Serverless Framework) to dev, staging, or production environments. |
| allowed-tools | ["Bash","Read"] |
Ops: Deploy
Deploy the application to remote environments.
Argument: $ARGUMENTS — environment (dev, staging, production) and optional target (frontend, backend, both; default: both)
Path Convention
- Frontend: Current project directory (
.)
- Backend:
${BACKEND_DIR:-../backend-v2} — set BACKEND_DIR in .claude/settings.local.json if your backend is elsewhere
Safety
CRITICAL: Production deployments require explicit human confirmation before proceeding. Always ask for confirmation when $ARGUMENTS contains production.
Discovery
- Read backend
package.json to discover deploy:*, aws:signin:* scripts
- Read frontend
package.json to discover available scripts
- Read
.env.{environment} files to find GraphQL URLs for post-deploy verification
CI/CD Path (Preferred)
The standard deployment path is via CI/CD — pushing to environment branches triggers auto-deploy. Manual deployment instructions below are for when CI/CD is not suitable.
Frontend Deployment
EAS Update (OTA — over-the-air JavaScript update)
Use for JS-only changes (no native module changes).
-
Verify EAS CLI:
eas whoami
If not authenticated: eas login
-
Copy environment file:
cp .env.{environment} .env
-
Deploy OTA update:
STAGE={env} NODE_OPTIONS="--max-old-space-size=8192" eas update --auto --channel={env} --message="Manual update"
-
Verify deployment:
eas update:list --branch {env} --limit 3
EAS Build (Native binary — only when app.config.ts or native modules change)
-
eas build --platform all --non-interactive --no-wait --profile={profile}
-
Check build status:
eas build:list --limit 5
Backend Deployment
Full Deploy (Serverless Framework)
-
Verify AWS credentials (discover the profile from backend package.json or remote-routine
~/.aws/config):
cd "${BACKEND_DIR:-../backend-v2}"
aws sts get-caller-identity --profile {aws-profile}
If this is an interactive local session and credentials are expired, refresh the backend's local
AWS signin flow. In a headless or remote-routine session, use the environment-backed assume-role
profile and do not start an SSO browser/device flow.
-
Deploy all functions:
cd "${BACKEND_DIR:-../backend-v2}"
bun run deploy:{env}
-
Verify (use the GraphQL URL from .env.{environment}):
curl -sf {graphql-url} -X POST \
-H "Content-Type: application/json" \
-d '{"query":"{ __typename }"}' \
-w "\nHTTP %{http_code} in %{time_total}s\n"
Single Function Deploy
Discover available function names from backend package.json deploy:function:* scripts:
cd "${BACKEND_DIR:-../backend-v2}"
FUNCTION_NAME={fn} bun run deploy:function:{env}
Post-Deploy Verification
After any deployment:
- Health check the deployed environment (use
ops-verify-health skill)
- Check logs for errors in the first 5 minutes (use
ops-check-logs skill)
- Monitor Sentry for new issues (use
ops-monitor-errors skill)
- Run browser UAT smoke test against the deployed environment (use
ops-browser-uat skill)
Report deployment result as a table:
| Target | Environment | Method | Status | Verification |
|---|
| Frontend | dev | EAS Update | SUCCESS/FAIL | URL responds |
| Backend | dev | Serverless | SUCCESS/FAIL | GraphQL responds |
