ワンクリックでManusで任意のスキルを実行

始める

sapphire-infra

スター1

フォーク0

更新日2026年6月6日 17:58

Infrastructure-as-code — GCP Terraform, Pi deployment configs, Docker

インストール

Codex または Claude でインストールこの Prompt をコピーして Codex、Claude、または他のアシスタントに貼り付けると、Skill ページを確認してインストールできます。

Manusで実行

ソース

arigatoexpress

arigatoexpress/Sapphire

GitHub リポジトリを開く Creator のリポジトリを見る

ダウンロード

Manusで実行

ファイルエクスプローラー

100 ファイル

SKILL.md

readonly

name	sapphire-infra
description	Infrastructure-as-code — GCP Terraform, Pi deployment configs, Docker
type	infra
runtime	terraform
deploy_target	cloud
dependencies	[]
entry_point	infra/terraform/main.tf
test_command	terraform validate

infra/

All infrastructure definitions. Never edit production Pi configs without backing up first.

Structure

infra/
├── terraform/    # GCP: Cloud Run, Firestore, Secret Manager, DNS
├── pi/           # rari1 (controller) + rari2 (trading) systemd configs
└── docker/       # Local dev docker-compose overrides

Terraform (GCP: sapphire-479610)

cd infra/terraform
terraform init
terraform plan
terraform apply

Services managed: Cloud Run (alpha, dashboard, control-plane, webhook), Firestore, Secret Manager, Cloud DNS.

Pi Configs (infra/pi/)

rari1/ — systemd units for control-plane + Kimi agent + Telegram bot
rari2/ — systemd unit for lighter-trading.service + ProtonVPN config

Deploy to Pi:

rsync -av infra/pi/rari2/ rari@100.x.x.y:/etc/systemd/system/
ssh rari@100.x.x.y sudo systemctl daemon-reload

Pi SSH Access

Use key-based SSH only. Do not use sshpass, password prompts, or inline passwords in agent workflows.

Dedicated Mac commander key:

~/.ssh/sapphire_rari_ed25519

Install the public key from a trusted interactive shell when the Pi is reachable:

ssh-copy-id -i ~/.ssh/sapphire_rari_ed25519.pub rari@100.x.x.y
ssh -i ~/.ssh/sapphire_rari_ed25519 -o BatchMode=yes rari@100.x.x.y 'printf key-ok'

If SSH is unreachable over Tailscale and LAN, leave the Pi out of the production path and keep Mac/Windows operation healthy; Sapphire must not depend on Pi availability.

Devices

Device	Tailscale IP	Role
mac	100.x.x.w	Commander
windows-pc	100.x.x.z	NemoClaw inference
rari1	100.x.x.x	Controller + Telegram
rari2	100.x.x.y	Trading (Lighter + ProtonVPN)

このリポジトリの他の Skills

同じリポジトリ

sapphire-alpha

arigatoexpress/Sapphire

Trading engine — signals, risk, execution, self-improvement loop

2026-06-051

control-plane

arigatoexpress/Sapphire

PM hub — project board, task scoring, event stream, Telegram integration

2026-06-051

signal

arigatoexpress/Sapphire

Send a test trading signal through the Sapphire pipeline

2026-05-301

sapphire-agents

arigatoexpress/Sapphire

Agent dispatch — OpenClaw, NemoClaw, orchestrator, runtime policy

2026-05-301

sapphire-aster

arigatoexpress/Sapphire

Aster DEX trading bot — Solana perpetuals, CEX-style API, Shield HFT strategy

2026-05-301

sapphire-dashboard

arigatoexpress/Sapphire

Flask trading dashboard at sapphirealpha.xyz — PnL, positions, system status

2026-05-301

name	sapphire-infra
description	Infrastructure-as-code — GCP Terraform, Pi deployment configs, Docker
type	infra
runtime	terraform
deploy_target	cloud
dependencies	[]
entry_point	infra/terraform/main.tf
test_command	terraform validate

infra/

All infrastructure definitions. Never edit production Pi configs without backing up first.

Structure

infra/
├── terraform/    # GCP: Cloud Run, Firestore, Secret Manager, DNS
├── pi/           # rari1 (controller) + rari2 (trading) systemd configs
└── docker/       # Local dev docker-compose overrides

Terraform (GCP: sapphire-479610)

cd infra/terraform
terraform init
terraform plan
terraform apply

Services managed: Cloud Run (alpha, dashboard, control-plane, webhook), Firestore, Secret Manager, Cloud DNS.

Pi Configs (infra/pi/)

rari1/ — systemd units for control-plane + Kimi agent + Telegram bot
rari2/ — systemd unit for lighter-trading.service + ProtonVPN config

Deploy to Pi:

rsync -av infra/pi/rari2/ rari@100.x.x.y:/etc/systemd/system/
ssh rari@100.x.x.y sudo systemctl daemon-reload

Pi SSH Access

Use key-based SSH only. Do not use sshpass, password prompts, or inline passwords in agent workflows.

Dedicated Mac commander key:

~/.ssh/sapphire_rari_ed25519

Install the public key from a trusted interactive shell when the Pi is reachable:

ssh-copy-id -i ~/.ssh/sapphire_rari_ed25519.pub rari@100.x.x.y
ssh -i ~/.ssh/sapphire_rari_ed25519 -o BatchMode=yes rari@100.x.x.y 'printf key-ok'

If SSH is unreachable over Tailscale and LAN, leave the Pi out of the production path and keep Mac/Windows operation healthy; Sapphire must not depend on Pi availability.

Devices

Device	Tailscale IP	Role
mac	100.x.x.w	Commander
windows-pc	100.x.x.z	NemoClaw inference
rari1	100.x.x.x	Controller + Telegram
rari2	100.x.x.y	Trading (Lighter + ProtonVPN)