원클릭으로
land-and-deploy
Merge PR, wait for CI, verify deploy, run canary. The complete landing pipeline.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Merge PR, wait for CI, verify deploy, run canary. The complete landing pipeline.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Clean up stale git worktrees with merged branch detection and disk usage report
Safely remove a git worktree with branch cleanup and safety checks
Create isolated git worktrees for feature development without switching branches
Check status of background verification tasks running in a git worktree
Perform a comprehensive code review of a pull request
Display native sandbox status, configuration, and recent violations
| name | land-and-deploy |
| description | Merge PR, wait for CI, verify deploy, run canary. The complete landing pipeline. |
| argument-hint | [--skip-checks] [--env staging|production] |
| effort | high |
| disable-model-invocation | true |
Complete landing pipeline: merge the PR, wait for CI, verify the deployment, run a health check.
Picks up where /ship left off. /ship creates the PR. This command merges it and verifies production.
Non-interactive by default. The user said "land it", so land it. Stop only for the critical readiness gate and hard blockers.
# Verify GitHub CLI is authenticated
gh auth status
# Detect PR from current branch (or use argument if provided)
gh pr view --json number,state,title,url,mergeStateStatus,mergeable,baseRefName,headRefName
Stop conditions:
gh auth login first"/ship first."# Check current CI status
gh pr checks --json name,state,status,conclusion
# Check for merge conflicts
gh pr view --json mergeable -q .mergeable
Stop conditions:
mergeable is CONFLICTING → "PR has merge conflicts. Resolve them and push before landing."# Watch CI checks with 15-minute timeout
gh pr checks --watch --fail-fast
Record CI wait duration for the deploy report.
This is the one critical confirmation before an irreversible merge. Collect all evidence, then get explicit approval.
# How many commits since the last review in this branch?
git log --oneline $(git merge-base HEAD origin/main)..HEAD | wc -l
# What changed after any review was done?
git log --oneline -10
Staleness thresholds:
# Run tests now (fast tests only)
npm test 2>/dev/null || pnpm test 2>/dev/null || \
pytest --tb=short -q 2>/dev/null || \
go test ./... 2>/dev/null
# Check exit code
echo "Tests exit code: $?"
Failing tests = BLOCKER. Cannot merge with failing tests.
# Were CHANGELOG and docs updated on this branch?
git diff --name-only $(git merge-base HEAD origin/main)...HEAD -- \
README.md CHANGELOG.md ARCHITECTURE.md CONTRIBUTING.md CLAUDE.md VERSION
If CHANGELOG.md and VERSION were NOT modified and the diff includes new features → WARNING.
Present a summary and ask for explicit confirmation:
╔══════════════════════════════════════════════════════════╗
║ PRE-MERGE READINESS REPORT ║
╠══════════════════════════════════════════════════════════╣
║ PR: #NNN: [title] ║
║ Branch: feature-branch → main ║
║ ║
║ REVIEWS ║
║ Review: CURRENT / STALE (N commits) / NOT RUN ║
║ ║
║ TESTS ║
║ Fast tests: PASS / FAIL (blocker) ║
║ ║
║ DOCUMENTATION ║
║ CHANGELOG: Updated / NOT UPDATED (warning) ║
║ VERSION: Bumped / NOT BUMPED (warning) ║
║ ║
║ WARNINGS: N | BLOCKERS: N ║
╚══════════════════════════════════════════════════════════╝
Options:
A) Merge (all checks green)
B) Don't merge yet, address warnings first
C) Merge anyway (I understand the risks)
If the user chooses B, list exactly what needs to be done and stop.
# Merge (auto-detect method from repo settings, delete branch after)
gh pr merge --auto --delete-branch
# Fallback if auto-merge is not enabled
# gh pr merge --squash --delete-branch
Record the merge commit SHA and timestamp.
If merge fails with permission error → "You don't have merge permissions. Ask a maintainer to merge."
If merge queue is active, poll until merged:
# Poll every 30 seconds, timeout after 30 minutes
gh pr view --json state -q .state
Detect how this project deploys so we know what to verify.
# Detect platform from config files
[ -f fly.toml ] && echo "PLATFORM: fly"
[ -f render.yaml ] && echo "PLATFORM: render"
[ -f vercel.json ] || [ -d .vercel ] && echo "PLATFORM: vercel"
[ -f netlify.toml ] && echo "PLATFORM: netlify"
[ -f Procfile ] && echo "PLATFORM: heroku"
[ -f railway.toml ] && echo "PLATFORM: railway"
# Detect GitHub Actions deploy workflows
for f in .github/workflows/*.yml .github/workflows/*.yaml; do
[ -f "$f" ] && grep -qiE "deploy|release|production|cd" "$f" 2>/dev/null && echo "DEPLOY_WORKFLOW: $f"
done
# Classify diff scope (frontend / backend / docs / config)
git diff --name-only $(git merge-base HEAD~1 origin/main)...HEAD | \
awk '{
if (/\.(css|scss|tsx|jsx|html|svg)$/ || /components|pages|public\//) f=1;
if (/api\/|server\/|backend\/|\.(go|py|rb|java)$/) b=1;
if (/README|CHANGELOG|docs\/|\.(md)$/) d=1;
if (/\.env|config\/|\.toml$|\.yaml$/) c=1;
} END {
if (f) print "SCOPE_FRONTEND=true";
if (b) print "SCOPE_BACKEND=true";
if (d) print "SCOPE_DOCS=true";
if (c) print "SCOPE_CONFIG=true";
}'
Decision tree:
GitHub Actions deploy workflow:
# Find the run triggered by the merge commit
gh run list --branch main --limit 10 --json databaseId,headSha,status,conclusion,workflowName
# Poll until complete (30s interval, 20 min timeout)
gh run view <run-id> --json status,conclusion
Platform-specific strategies:
| Platform | Detection | Wait strategy |
|---|---|---|
| Vercel / Netlify | Auto-deploy on push | Wait 60s for propagation, then check |
| Fly.io | fly.toml present | fly status --app <app>, check started status |
| Render | render.yaml present | Poll production URL until it responds with 200 |
| Heroku | Procfile present | heroku releases --app <app> -n 1 |
| Railway | railway.toml present | Poll production URL |
| GitHub Actions only | .github/workflows/ with deploy step | Poll gh run view |
If deploy fails → offer to investigate logs or create a revert commit.
Record deploy duration for the report.
Use diff scope (from Step 5) to determine check depth:
| Diff Scope | Canary Depth |
|---|---|
| Docs only | Already skipped in Step 5 |
| Config only | HTTP 200 smoke check only |
| Backend only | Status + response time check |
| Frontend (any) | Full: status + response time + content check |
| Mixed | Full check |
Full health check sequence:
# 1. Page loads (200 status)
curl -sf -o /dev/null -w "%{http_code}" "${PROD_URL}" 2>/dev/null
# 2. Response time check
curl -sf -o /dev/null -w "%{time_total}" "${PROD_URL}" 2>/dev/null
# 3. Health endpoint (if exists)
curl -sf "${PROD_URL}/health" 2>/dev/null || \
curl -sf "${PROD_URL}/api/health" 2>/dev/null
# 4. Content check: page is not blank
curl -sf "${PROD_URL}" 2>/dev/null | wc -c
Pass criteria:
If any check fails → offer to revert:
Post-deploy health check detected issues:
[finding, specific]
Options:
A) Investigate (this may be normal: cache warming, eventual consistency)
B) Rollback (revert the merge commit)
C) Continue (I'll monitor manually)
# Fetch the latest base branch
git fetch origin main
# Create a revert commit
git checkout main
git revert <merge-commit-sha> --no-edit
git push origin main
If conflicts → "Revert has conflicts. Run git revert <sha> manually to resolve."
If branch protections → "Create a revert PR: gh pr create --title 'revert: <title>'"
LAND & DEPLOY REPORT
═════════════════════════════════════════
PR: #NNN: [title]
Branch: feature-branch → main
Merged: [timestamp] (squash / merge)
Merge SHA: [short SHA]
Timing:
CI wait: [Xm Ys / skipped]
Deploy: [Xm Ys / no workflow detected]
Health: [Xs / skipped]
Total: [end-to-end duration]
CI: PASSED / FAILED / SKIPPED
Deploy: PASSED / FAILED / NO WORKFLOW
Production: HEALTHY / DEGRADED / SKIPPED / REVERTED
Status: [HTTP status code]
Response: [Xms]
VERDICT: DEPLOYED AND VERIFIED / DEPLOYED (UNVERIFIED) / REVERTED
═════════════════════════════════════════
After the deploy report, suggest relevant next steps:
/canary <url> for extended 10-minute monitoring."/document-release to update project docs."gh pr merge (it's safe)./canary.--delete-branch)./land-and-deploy, next thing they see is the deploy report./land-and-deploy # Auto-detect PR, no canary URL
/land-and-deploy https://app.example.com # Auto-detect PR + verify this URL
/land-and-deploy 123 # Specific PR number
/land-and-deploy 123 https://app.example.com # PR number + verification URL
/ship: run this first to create the PR/canary: extended post-deploy monitoring loop/review-pr: review the PR before landing$ARGUMENTS