Run any Skill in Manus with one click

$pwd:

keploy-pr-workflow

Name: Keploy Pr Workflow
Author: keploy

// Guide for creating PRs and issues on keploy repositories — PR format, customer-data hygiene, commit conventions, sign-off. Invoke when the user asks to open, update, or review a pull request or issue, when preparing a commit that will land in main, or whenever a change is about to leave the local machine.

Run Skill in Manus

$ git log --oneline --stat

stars:17,579

forks:2,235

updated:April 27, 2026 at 09:18

SKILL.md

readonly

name	keploy-pr-workflow
description	Guide for creating PRs and issues on keploy repositories — PR format, customer-data hygiene, commit conventions, sign-off. Invoke when the user asks to open, update, or review a pull request or issue, when preparing a commit that will land in main, or whenever a change is about to leave the local machine.

keploy-pr-workflow

When to use

About to run gh pr create, gh pr edit, or gh issue create.
Writing a commit message that will land in main.
Reviewing your own diff before pushing.
Copying error output, logs, or sample data into a PR description, issue, test fixture, or README.

1. Customer-data hygiene (non-negotiable)

Keploy records real user applications. Traces, mocks, recordings, and logs routinely carry customer data — headers with auth tokens, bodies with PII, internal hostnames, request IDs that map back to users. Treat every fixture, log snippet, and error dump as tainted until you've checked it.

Before anything leaves your machine, scrub for:

Credentials — API keys, bearer tokens, JWTs, DB passwords, session cookies, OAuth client secrets, AWS/GCP/Azure keys. If a test needs one, read from env; use placeholders in docs (sk-xxxxxxxx, Bearer <token>).
Internal hostnames and URLs — *.internal, *.prod, *.corp, real company domains. Use example.com, httpbin.org, or loopback in samples.
IP addresses that aren't RFC1918 / loopback / TEST-NET — assume any public IP in a log is traceable. Replace with 192.0.2.1 (TEST-NET-1).
User identifiers — emails, usernames, account IDs, order IDs, customer names. Substitute with user@example.com, user-123, etc.
Request/trace IDs — these tie back to real traffic in observability systems. Redact them from pasted logs.
Real recorded traffic — never commit a customer's keploy/test-set-* directory. Even anonymized ones tend to keep giveaways in paths or timings. If you need sample recordings, generate them against samples-go, samples-python, etc.
Stack traces from production runs — they leak file paths, binary versions, and sometimes in-memory values.

If you're unsure whether something is customer-derived, it is. Err on the side of redaction — you can always add detail back, you can't un-publish.

2. Commit messages

Format: <type>(<scope>): <subject> — Conventional Commits, enforced by commitizen via .pre-commit-config.yaml.

Types: feat, fix, docs, style, refactor, test, chore.

Rules:

Subject in present tense, imperative mood. fix: resolve null pointer on test-set reset, not fixed or fixes.
Every commit includes a body — blank line after the subject, then a paragraph describing what changed and why. Mandatory even for one-liners.
Sign off with git commit -s. Let git read identity from config; don't hand-construct the Signed-off-by trailer.

3. PR/issue title and body

The PR/issue template should match the template that is being used in the repository that we are working in.

4. Destructive git operations

Never, without explicit user approval:

git push --force to main (or any shared branch).
git reset --hard / git clean -fd on a branch with uncommitted work.
git branch -D on anything not your own local branch.
Rebase across other contributors' published commits.

When in doubt, ask. Destructive ops are cheap to confirm and expensive to undo.

5. Issues

When filing or commenting on an issue:

Same customer-data rules apply — scrub logs before pasting.
Include: keploy version (keploy --version), OS/arch, the exact command you ran, and whether it reproduces in Docker vs native.
If you're attaching a recording to reproduce, regenerate it against a public sample app; never attach a customer's test-set.

Related skills

keploy-e2e-test — verify a behavior change against a real sample before opening the PR.

related-skills.json

same repository

keploy-docs.md

from "keploy/keploy"

Guide for contributing to the Keploy documentation site at github.com/keploy/docs. Invoke when a change in keploy/keploy introduces, removes, or alters user-visible behavior (new CLI flag, changed default, new command, new configuration field, new on-disk format) and the docs need to catch up — or when the user asks to document a feature, write a quickstart, or fix a docs bug. Covers where to put the edit, every CI check that must pass, and how to reproduce each check locally before the PR.

2026-04-2717.6k

keploy-e2e-test.md

from "keploy/keploy"

End-to-end verification of a change to keploy/keploy using keploy's own record/replay against a real sample application. Use whenever the user asks to test a change, verify a fix, prove that a modification works in practice, add e2e coverage for a PR, reproduce a bug against a sample app, or wire a behavior into CI. Covers deciding whether e2e is the right signal, finding or extending an existing sample script, or (only when necessary) adding a new sample and matrix entry following the repo's conventions.

2026-04-2717.6k

package.json

"author": "keploy"

"repository": "keploy/keploy"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name	keploy-pr-workflow
description	Guide for creating PRs and issues on keploy repositories — PR format, customer-data hygiene, commit conventions, sign-off. Invoke when the user asks to open, update, or review a pull request or issue, when preparing a commit that will land in main, or whenever a change is about to leave the local machine.

keploy-pr-workflow

When to use

About to run gh pr create, gh pr edit, or gh issue create.
Writing a commit message that will land in main.
Reviewing your own diff before pushing.
Copying error output, logs, or sample data into a PR description, issue, test fixture, or README.

1. Customer-data hygiene (non-negotiable)

Before anything leaves your machine, scrub for:

Credentials — API keys, bearer tokens, JWTs, DB passwords, session cookies, OAuth client secrets, AWS/GCP/Azure keys. If a test needs one, read from env; use placeholders in docs (sk-xxxxxxxx, Bearer <token>).
Internal hostnames and URLs — *.internal, *.prod, *.corp, real company domains. Use example.com, httpbin.org, or loopback in samples.
IP addresses that aren't RFC1918 / loopback / TEST-NET — assume any public IP in a log is traceable. Replace with 192.0.2.1 (TEST-NET-1).
User identifiers — emails, usernames, account IDs, order IDs, customer names. Substitute with user@example.com, user-123, etc.
Request/trace IDs — these tie back to real traffic in observability systems. Redact them from pasted logs.
Real recorded traffic — never commit a customer's keploy/test-set-* directory. Even anonymized ones tend to keep giveaways in paths or timings. If you need sample recordings, generate them against samples-go, samples-python, etc.
Stack traces from production runs — they leak file paths, binary versions, and sometimes in-memory values.

If you're unsure whether something is customer-derived, it is. Err on the side of redaction — you can always add detail back, you can't un-publish.

2. Commit messages

Format: <type>(<scope>): <subject> — Conventional Commits, enforced by commitizen via .pre-commit-config.yaml.

Types: feat, fix, docs, style, refactor, test, chore.

Rules:

Subject in present tense, imperative mood. fix: resolve null pointer on test-set reset, not fixed or fixes.
Every commit includes a body — blank line after the subject, then a paragraph describing what changed and why. Mandatory even for one-liners.
Sign off with git commit -s. Let git read identity from config; don't hand-construct the Signed-off-by trailer.

3. PR/issue title and body

The PR/issue template should match the template that is being used in the repository that we are working in.

4. Destructive git operations

Never, without explicit user approval:

git push --force to main (or any shared branch).
git reset --hard / git clean -fd on a branch with uncommitted work.
git branch -D on anything not your own local branch.
Rebase across other contributors' published commits.

When in doubt, ask. Destructive ops are cheap to confirm and expensive to undo.

5. Issues

When filing or commenting on an issue:

Same customer-data rules apply — scrub logs before pasting.
Include: keploy version (keploy --version), OS/arch, the exact command you ran, and whether it reproduces in Docker vs native.
If you're attaching a recording to reproduce, regenerate it against a public sample app; never attach a customer's test-set.

Related skills

keploy-e2e-test — verify a behavior change against a real sample before opening the PR.

keploy-pr-workflow

keploy-pr-workflow

When to use

1. Customer-data hygiene (non-negotiable)

2. Commit messages

3. PR/issue title and body

4. Destructive git operations

5. Issues

Related skills

More from this repository

More from this repository

keploy-pr-workflow

When to use

1. Customer-data hygiene (non-negotiable)

2. Commit messages

3. PR/issue title and body

4. Destructive git operations

5. Issues

Related skills