Run any Skill in Manus with one click

$pwd:

infrahub-managing-checks

Name: Infrahub Managing Checks
Author: opsmill

// Creates Infrahub check definitions — Python validation logic and GraphQL queries for proposed change pipelines. TRIGGER when: writing validation checks, creating Python checks, building data quality guards for proposed changes. DO NOT TRIGGER when: designing schemas, querying live data, building transforms or generators.

Run Skill in Manus

$ git log --oneline --stat

stars:20

forks:0

updated:May 12, 2026 at 22:51

File Explorer

10 files

SKILL.md

readonly

name	infrahub-managing-checks
description	Creates Infrahub check definitions — Python validation logic and GraphQL queries for proposed change pipelines. TRIGGER when: writing validation checks, creating Python checks, building data quality guards for proposed changes. DO NOT TRIGGER when: designing schemas, querying live data, building transforms or generators.
allowed-tools	["Read","Write","Edit","Bash","Grep"]
argument-hint	[check-name] [description...]
metadata	{"version":"1.2.5","author":"OpsMill"}

Infrahub Check Creator

Overview

Expert guidance for creating Infrahub checks. Checks are user-defined validation logic (Python + GraphQL) that run as part of a proposed change pipeline. If a check logs any errors, the proposed change cannot be merged.

Project Context

Infrahub config: !cat .infrahub.yml 2>/dev/null || echo "No .infrahub.yml found"

Existing checks: !find . -name "*.py" -path "*/checks/*" 2>/dev/null | head -20

Existing queries: !find . -name "*.gql" -path "*/queries/*" 2>/dev/null | head -20

When to Use

Writing validation logic for proposed changes
Creating data quality guards (e.g., rack collision detection)
Building global checks that validate all objects of a type
Building targeted checks that validate specific grouped objects
Debugging check failures or understanding the check lifecycle

Rule Categories

Priority	Category	Prefix	Description
CRITICAL	Architecture	`architecture-`	Three components, global vs targeted, execution flow
CRITICAL	Python Class	`python-`	InfrahubCheck base class, validate(), log_error/log_info
HIGH	API Reference	`api-`	Class attributes, instance properties, methods, lifecycle
HIGH	Registration	`registration-`	.infrahub.yml config, query name matching, parameters
MEDIUM	Patterns	`patterns-`	Error collection, shared utilities, scoped validation
LOW	Testing	`testing-`	infrahubctl check commands, branch testing

Check Basics

Every check has three components:

GraphQL query (.gql file) -- fetches the data to validate, and is registered under the top-level queries: section of .infrahub.yml
Python class -- inherits from InfrahubCheck, sets query = "<query_name>", implements validate()
Configuration -- declared in .infrahub.yml under check_definitions (which does not take a query: field — see below)

from infrahub_sdk.checks import InfrahubCheck


class MyCheck(InfrahubCheck):
    query = "my_query"  # Must match queries[].name in .infrahub.yml

    def validate(self, data: dict) -> None:
        # Validation logic here
        if something_is_wrong:
            self.log_error(
                message="Problem description"
            )

Where the query is bound: the Python class (query = "..."), not check_definitions. The repository config model uses extra="forbid", so putting query: under check_definitions: makes the whole repo config fail validation. This is the #1 confusion vs. generator_definitions:, which does take a top-level query:. See rules/registration-config.md.

Workflow

Follow these steps when creating a check:

Understand the validation goal — What data condition should block a proposed change? Determine whether this is a global check (all objects of a type) or targeted (specific group). Read rules/architecture-types.md.
Write the GraphQL query — Create a .gql file that fetches the data to validate. Read ../infrahub-common/graphql-queries.md for query patterns.
Implement the Python class — Inherit from InfrahubCheck, implement validate(). Read rules/python-validate.md for the class pattern and rules/api-reference.md for available methods.
Register in .infrahub.yml — Add the check under check_definitions. The query name must match the Python class query attribute. See rules/registration-config.md.
Test — Run infrahubctl check to validate. See rules/testing-commands.md.

Supporting References

examples.md -- Complete check patterns (global, targeted, minimal)
../infrahub-common/graphql-queries.md -- GraphQL query writing reference
../infrahub-common/infrahub-yml-reference.md -- .infrahub.yml project configuration
../infrahub-common/rules/ -- Shared rules (git integration, caching gotchas) that apply across all skills
../infrahub-managing-schemas/SKILL.md -- Schema definitions checks validate against
rules/ -- Individual rules organized by category prefix

related-skills.json

same repository

infrahub-managing-schemas.md

from "opsmill/infrahub-skills"

Creates, validates, and modifies Infrahub schema YAML files — nodes, generics, attributes, relationships, and extensions. TRIGGER when: designing data models, adding schema nodes, validating schema definitions, planning schema migrations. DO NOT TRIGGER when: populating data objects, writing checks/generators/transforms, querying live data.

2026-05-2020

infrahub-auditing-repo.md

from "opsmill/infrahub-skills"

Audits an Infrahub repository against best practices and rules, producing a structured compliance report. TRIGGER when: reviewing repo for compliance, onboarding to existing project, pre-deployment validation, catching issues. DO NOT TRIGGER when: creating schemas, writing checks/generators, querying live data, populating objects.

2026-05-1920

infrahub-reporting-issues.md

from "opsmill/infrahub-skills"

Reports bugs and feature requests against the right Infrahub-ecosystem GitHub repository. Classifies the request, routes it (with the main `opsmill/infrahub` repo as the safe fallback when in doubt), searches for existing duplicates, gathers conservative environment info for bugs, and prepares the issue for the user to review before any submission. TRIGGER when: user wants to report a bug, file an issue, request a feature, open a ticket, or escalate a problem in any opsmill/infrahub-* project (SDK, Ansible, VS Code, MCP, Helm, schema-library, sync, backup, nornir, skills). DO NOT TRIGGER when: the user wants to fix the bug themselves locally, write a test, or debug code without filing.

2026-05-1620

infrahub-analyzing-data.md

from "opsmill/infrahub-skills"

Analyzes and correlates live Infrahub data via the MCP server — answers operational questions, detects drift, and investigates impact. TRIGGER when: querying infrastructure data, checking compliance, investigating change impact, producing ad-hoc reports. DO NOT TRIGGER when: writing automated checks, building transforms, designing schemas, populating data files. ALWAYS pass the user's question verbatim as args — this skill runs in a forked context and cannot see the parent conversation. Invoking without args will fail.

2026-05-1220

infrahub-common.md

from "opsmill/infrahub-skills"

Shared references and cross-cutting rules for all Infrahub skills — GraphQL syntax, .infrahub.yml format, and common patterns. DO NOT TRIGGER directly — loaded automatically by other Infrahub skills when they need shared references.

2026-05-1220

infrahub-managing-generators.md

from "opsmill/infrahub-skills"

Creates Infrahub Generators — design-driven automation that builds infrastructure objects from templates and topology definitions. TRIGGER when: building design-to-implementation workflows, auto-creating objects from templates, topology-driven generation. DO NOT TRIGGER when: designing schemas, writing data transforms, querying live data, populating static data files.

2026-05-1220

package.json

"author": "opsmill"

"repository": "opsmill/infrahub-skills"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Network and Computer Systems AdministratorsComputer and Mathematical Occupations15-1244L4

name	infrahub-managing-checks
description	Creates Infrahub check definitions — Python validation logic and GraphQL queries for proposed change pipelines. TRIGGER when: writing validation checks, creating Python checks, building data quality guards for proposed changes. DO NOT TRIGGER when: designing schemas, querying live data, building transforms or generators.
allowed-tools	["Read","Write","Edit","Bash","Grep"]
argument-hint	[check-name] [description...]
metadata	{"version":"1.2.5","author":"OpsMill"}

Infrahub Check Creator

Overview

Project Context

Infrahub config: !cat .infrahub.yml 2>/dev/null || echo "No .infrahub.yml found"

Existing checks: !find . -name "*.py" -path "*/checks/*" 2>/dev/null | head -20

Existing queries: !find . -name "*.gql" -path "*/queries/*" 2>/dev/null | head -20

When to Use

Writing validation logic for proposed changes
Creating data quality guards (e.g., rack collision detection)
Building global checks that validate all objects of a type
Building targeted checks that validate specific grouped objects
Debugging check failures or understanding the check lifecycle

Rule Categories

Priority	Category	Prefix	Description
CRITICAL	Architecture	`architecture-`	Three components, global vs targeted, execution flow
CRITICAL	Python Class	`python-`	InfrahubCheck base class, validate(), log_error/log_info
HIGH	API Reference	`api-`	Class attributes, instance properties, methods, lifecycle
HIGH	Registration	`registration-`	.infrahub.yml config, query name matching, parameters
MEDIUM	Patterns	`patterns-`	Error collection, shared utilities, scoped validation
LOW	Testing	`testing-`	infrahubctl check commands, branch testing

Check Basics

Every check has three components:

GraphQL query (.gql file) -- fetches the data to validate, and is registered under the top-level queries: section of .infrahub.yml
Python class -- inherits from InfrahubCheck, sets query = "<query_name>", implements validate()
Configuration -- declared in .infrahub.yml under check_definitions (which does not take a query: field — see below)

from infrahub_sdk.checks import InfrahubCheck


class MyCheck(InfrahubCheck):
    query = "my_query"  # Must match queries[].name in .infrahub.yml

    def validate(self, data: dict) -> None:
        # Validation logic here
        if something_is_wrong:
            self.log_error(
                message="Problem description"
            )

Where the query is bound: the Python class (query = "..."), not check_definitions. The repository config model uses extra="forbid", so putting query: under check_definitions: makes the whole repo config fail validation. This is the #1 confusion vs. generator_definitions:, which does take a top-level query:. See rules/registration-config.md.

Workflow

Follow these steps when creating a check:

Understand the validation goal — What data condition should block a proposed change? Determine whether this is a global check (all objects of a type) or targeted (specific group). Read rules/architecture-types.md.
Write the GraphQL query — Create a .gql file that fetches the data to validate. Read ../infrahub-common/graphql-queries.md for query patterns.
Implement the Python class — Inherit from InfrahubCheck, implement validate(). Read rules/python-validate.md for the class pattern and rules/api-reference.md for available methods.
Register in .infrahub.yml — Add the check under check_definitions. The query name must match the Python class query attribute. See rules/registration-config.md.
Test — Run infrahubctl check to validate. See rules/testing-commands.md.

Supporting References

examples.md -- Complete check patterns (global, targeted, minimal)
../infrahub-common/graphql-queries.md -- GraphQL query writing reference
../infrahub-common/infrahub-yml-reference.md -- .infrahub.yml project configuration
../infrahub-common/rules/ -- Shared rules (git integration, caching gotchas) that apply across all skills
../infrahub-managing-schemas/SKILL.md -- Schema definitions checks validate against
rules/ -- Individual rules organized by category prefix

infrahub-managing-checks

Infrahub Check Creator

Overview

Project Context

When to Use

Rule Categories

Check Basics

Workflow

Supporting References

More from this repository

Infrahub Check Creator

Overview

Project Context

When to Use

Rule Categories

Check Basics

Workflow

Supporting References

More from this repository