Run any Skill in Manus with one click

$pwd:

ci-deploy-verify

Name: Ci Deploy Verify
Author: wcygan

// Verify CI and deploy health for wcygan.net — programmatically check that the latest GitHub Actions CI run on main is green, that Cloudflare Workers Builds produced and activated a new deployment, and that the live site passes the regression suite at scripts/verify-prod.sh. Use after pushing to main, when debugging "did my deploy land", when a PR is green but prod looks wrong, when scheduling a release check, or when investigating whether a user-reported issue is a deploy failure or a content bug. Keywords CI status, actions passing, deploy landed, deploy check, cloudflare deploy, workers builds, wrangler deployments, regression test, prod smoke, post-deploy verify, is it broken, release check, github actions, build status, verify prod.

Run Skill in Manus

$ git log --oneline --stat

stars:0

forks:0

updated:May 10, 2026 at 19:44

SKILL.md

readonly

name

ci-deploy-verify

description

Verify CI and deploy health for wcygan.net — programmatically check that the latest GitHub Actions CI run on main is green, that Cloudflare Workers Builds produced and activated a new deployment, and that the live site passes the regression suite at scripts/verify-prod.sh. Use after pushing to main, when debugging "did my deploy land", when a PR is green but prod looks wrong, when scheduling a release check, or when investigating whether a user-reported issue is a deploy failure or a content bug. Keywords CI status, actions passing, deploy landed, deploy check, cloudflare deploy, workers builds, wrangler deployments, regression test, prod smoke, post-deploy verify, is it broken, release check, github actions, build status, verify prod.

CI & Deploy Verify

End-to-end health check for wcygan.net. Three phases, always run in order — each phase short-circuits diagnosis for the next.

Phase 1 — GitHub Actions CI on main

gh run list --branch main --limit 3

Look at the top row:

completed + success → CI green, move to phase 2.
in_progress / queued → wait for it. Options:
- Block: gh run watch <id> --exit-status
- Glance: rerun gh run list --branch main --limit 1
completed + failure → stop. Fix CI first.
- Get the failed step: gh run view <id> --log-failed | tail -80
- Rerun after fix: gh run rerun <id> (same commit) or push a new commit.

The workflow is .github/workflows/ci.yml — build → typecheck → test.

Phase 2 — Cloudflare deploy

deno task --eval "wrangler deployments list" | tail -12

Each deploy entry has Created: timestamp and a version ID. The most recent one should be newer than your push time. If not:

Cloudflare Workers Builds may still be running — check the Cloudflare dashboard (Workers & Pages → wcygan-net → Deployments).
If multiple pushes happened in quick succession, only the latest produces a live deploy (Cloudflare debounces).

For a specific version:

deno task --eval "wrangler deployments list --name wcygan-net"
deno task --eval "wrangler versions list --name wcygan-net" | tail -10

Phase 3 — Regression suite against production

./scripts/verify-prod.sh

Exit 0 = all checks pass. Exit 1 = at least one check failed, with per-check diagnosis printed.

Covers:

Core routes return 2xx/3xx: /, /about, /posts, /really-good-software.
Static-asset dot-rejection guard: /rss.xml, /will_cygan_resume.pdf, /favicon.ico → 200. Validates that src/lib/routing/static-asset-guard.ts still works in prod.
Removed routes stay 404: /feed, /mermaid-examples. Guarantees the audit cleanup didn't regress.
RSS content: /rss.xml is well-formed XML with <rss> root and <atom:link> self-reference.
Build fingerprint: homepage HTML contains __TSR_ (TanStack build) and no __sveltekit (stale Worker).

Run against a preview or local build:

./scripts/verify-prod.sh --base http://localhost:3000
./scripts/verify-prod.sh --base https://<branch>.wcygan-net.pages.dev

Verbose mode prints the URL + status code on failure:

./scripts/verify-prod.sh --verbose

One-shot end-to-end

gh run list --branch main --limit 1 \
  && deno task --eval "wrangler deployments list" | tail -6 \
  && ./scripts/verify-prod.sh

All three exit cleanly → deploy is healthy.

Common failure patterns

Symptom	Phase	Likely cause	Next step
CI failed on typecheck	1	`routeTree.gen.ts` stale — `deno task build` must run first	Check `.github/workflows/ci.yml` build step order
CI green, no new Cloudflare deploy	2	Cloudflare Workers Builds not configured to watch branch	Dashboard → Workers & Pages → project → Settings → Builds
Phase 3 fingerprint fails (`__sveltekit` present)	3	Old CDN cache or failed deploy	Load `verify-live-stack` skill; purge zone cache if needed
`/rss.xml` → 404 but CI is green	3	`public/rss.xml` not committed or Nitro copy failed	Verify `public/rss.xml` exists locally and in `.output/public/`
`/feed` → 200 (regression)	3	Someone re-added `src/routes/feed.tsx`	Grep repo for `feed.tsx`; remove route
Dot-rejection `/will_cygan_resume.pdf` → 404 in prod	3	`isStaticAssetSlug` changed or guard removed	Check `src/lib/routing/static-asset-guard.ts` and its test
Phase 1 + 2 pass, homepage 5xx	3	Runtime error in prerendered HTML or Worker config drift	Check Cloudflare dashboard → Workers → Logs

Related skills

verify-live-stack — deeper fingerprint/cache diagnostics when Phase 3 fails (e.g., distinguishing stale CDN vs failed deploy).
cloudflare-static-deploy — the deploy pipeline this skill verifies the output of.
github-actions-troubleshooter — when Phase 1 fails and you need to fix the workflow itself.

Adding new regression checks

Edit scripts/verify-prod.sh — it's plain bash using curl + grep, no deps beyond what ships on macOS / Ubuntu. Use the existing helpers:

status_is URL CODE — exact status match
status_in URL CODE [CODE ...] — status is one of
body_contains URL PATTERN — response body matches grep pattern

Each check wraps with check "name" <helper> <args>. Failures are counted and named in the summary. Keep checks independent — no shared state between them.

related-skills.json

same repository

cloudflare-static-deploy.md

from "wcygan/wcygan.net"

Deploy wcygan.net as a pure static site to Cloudflare via Workers Assets. Use when configuring static prerendering, updating vite.config.ts Nitro preset, writing wrangler.jsonc, tuning Cloudflare Workers Builds dashboard settings, switching CI or deploys to Deno, or debugging failed Cloudflare deploys. Keywords cloudflare, wrangler, workers assets, pages, deploy, prerender, static, nitro preset, deno ci, workers builds, wrangler.jsonc, deno.lock, .output/public

2026-05-110

agent-ready.md

from "wcygan/wcygan.net"

Understand and improve site readiness for AI agent discovery — the isitagentready.com checks covering robots.txt, sitemap.xml, Markdown for Agents, MCP server cards, OAuth discovery, Agent Skills, WebMCP, and related emerging standards. Auto-loads when auditing a site against isitagentready.com, deciding which standards apply to a personal blog vs an API-backed service, debugging a missing well-known endpoint, or extending wcygan.net's auto-generation plugin. Keywords isitagentready, agent-ready, agent ready, robots.txt, sitemap.xml, llms.txt, Content-Signal, Markdown for Agents, MCP server card, MCP, OAuth discovery, Agent Skills, WebMCP, Web Bot Auth, well-known, x402, UCP, ACP, site-metadata-plugin, RFC 9309, RFC 8288, RFC 9727, RFC 9728, RFC 8414.

2026-05-100

github-actions-troubleshooter.md

from "wcygan/wcygan.net"

Diagnose and fix GitHub Actions workflow failures, CI/CD pipeline issues, YAML syntax errors, and workflow configuration problems. Use when debugging failed CI runs, fixing workflow errors, or optimizing GitHub Actions. Keywords: github actions, CI, workflow, pipeline, yml, yaml, actions failure, CI failure, workflow error

2026-05-100

new-post.md

from "wcygan/wcygan.net"

Scaffold a new MDX blog post for wcygan.net. Creates `src/posts/<slug>.mdx` with correct frontmatter and prepends a matching `<item>` to `public/rss.xml` so the two stay in sync. Use when the user asks to "add a blog post", "new post", "write a post", or similar.

2026-05-100

verify-live-stack.md

from "wcygan/wcygan.net"

Verify that wcygan.net production is serving the TanStack Start + Vite build (not a cached SvelteKit deploy or stale worker). Use when debugging "did my deploy land", comparing local vs prod output, confirming a rollback worked, investigating stale content after a push, or diagnosing hydration/routing failures that could be caused by mixed versions. Keywords verify, fingerprint, deploy check, prod, production, tanstack vs sveltekit, __TSR, cache, stale, assets, hydration, rollback verification, which version

2026-05-100

wcygan-net-design.md

from "wcygan/wcygan.net"

Design system and UI/UX conventions for wcygan.net — a TanStack Start + Tailwind v3 personal blog with a minimal, readable, editorial aesthetic. Auto-loads when working in /Users/wcygan/Development/wcygan.net, editing src/styles/app.css, src/routes/__root.tsx, or any route/component/MDX post on that site. Use when styling pages, adding routes, writing MDX posts, touching the header/nav/footer chrome, or changing colors, type, spacing, or layout. Keywords: wcygan.net, wcygan blog, personal site design, minimal blog design, system fonts, primary blue, link blue, cornflower blue, bio-highlight banner, post-list, blog-post, 800px container, MDX frontmatter, Mermaid diagram, Shiki, Tailwind v3, TanStack Start blog, __root chrome, design.md, app.css

2026-05-100

package.json

"author": "wcygan"

"repository": "wcygan/wcygan.net"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Network and Computer Systems AdministratorsComputer and Mathematical Occupations15-1244L4

name

ci-deploy-verify

description

CI & Deploy Verify

End-to-end health check for wcygan.net. Three phases, always run in order — each phase short-circuits diagnosis for the next.

Phase 1 — GitHub Actions CI on main

gh run list --branch main --limit 3

Look at the top row:

completed + success → CI green, move to phase 2.
in_progress / queued → wait for it. Options:
- Block: gh run watch <id> --exit-status
- Glance: rerun gh run list --branch main --limit 1
completed + failure → stop. Fix CI first.
- Get the failed step: gh run view <id> --log-failed | tail -80
- Rerun after fix: gh run rerun <id> (same commit) or push a new commit.

The workflow is .github/workflows/ci.yml — build → typecheck → test.

Phase 2 — Cloudflare deploy

deno task --eval "wrangler deployments list" | tail -12

Each deploy entry has Created: timestamp and a version ID. The most recent one should be newer than your push time. If not:

Cloudflare Workers Builds may still be running — check the Cloudflare dashboard (Workers & Pages → wcygan-net → Deployments).
If multiple pushes happened in quick succession, only the latest produces a live deploy (Cloudflare debounces).

For a specific version:

deno task --eval "wrangler deployments list --name wcygan-net"
deno task --eval "wrangler versions list --name wcygan-net" | tail -10

Phase 3 — Regression suite against production

./scripts/verify-prod.sh

Exit 0 = all checks pass. Exit 1 = at least one check failed, with per-check diagnosis printed.

Covers:

Core routes return 2xx/3xx: /, /about, /posts, /really-good-software.
Static-asset dot-rejection guard: /rss.xml, /will_cygan_resume.pdf, /favicon.ico → 200. Validates that src/lib/routing/static-asset-guard.ts still works in prod.
Removed routes stay 404: /feed, /mermaid-examples. Guarantees the audit cleanup didn't regress.
RSS content: /rss.xml is well-formed XML with <rss> root and <atom:link> self-reference.
Build fingerprint: homepage HTML contains __TSR_ (TanStack build) and no __sveltekit (stale Worker).

Run against a preview or local build:

./scripts/verify-prod.sh --base http://localhost:3000
./scripts/verify-prod.sh --base https://<branch>.wcygan-net.pages.dev

Verbose mode prints the URL + status code on failure:

./scripts/verify-prod.sh --verbose

One-shot end-to-end

gh run list --branch main --limit 1 \
  && deno task --eval "wrangler deployments list" | tail -6 \
  && ./scripts/verify-prod.sh

All three exit cleanly → deploy is healthy.

Common failure patterns

Symptom	Phase	Likely cause	Next step
CI failed on typecheck	1	`routeTree.gen.ts` stale — `deno task build` must run first	Check `.github/workflows/ci.yml` build step order
CI green, no new Cloudflare deploy	2	Cloudflare Workers Builds not configured to watch branch	Dashboard → Workers & Pages → project → Settings → Builds
Phase 3 fingerprint fails (`__sveltekit` present)	3	Old CDN cache or failed deploy	Load `verify-live-stack` skill; purge zone cache if needed
`/rss.xml` → 404 but CI is green	3	`public/rss.xml` not committed or Nitro copy failed	Verify `public/rss.xml` exists locally and in `.output/public/`
`/feed` → 200 (regression)	3	Someone re-added `src/routes/feed.tsx`	Grep repo for `feed.tsx`; remove route
Dot-rejection `/will_cygan_resume.pdf` → 404 in prod	3	`isStaticAssetSlug` changed or guard removed	Check `src/lib/routing/static-asset-guard.ts` and its test
Phase 1 + 2 pass, homepage 5xx	3	Runtime error in prerendered HTML or Worker config drift	Check Cloudflare dashboard → Workers → Logs

Related skills

verify-live-stack — deeper fingerprint/cache diagnostics when Phase 3 fails (e.g., distinguishing stale CDN vs failed deploy).
cloudflare-static-deploy — the deploy pipeline this skill verifies the output of.
github-actions-troubleshooter — when Phase 1 fails and you need to fix the workflow itself.

Adding new regression checks

Edit scripts/verify-prod.sh — it's plain bash using curl + grep, no deps beyond what ships on macOS / Ubuntu. Use the existing helpers:

status_is URL CODE — exact status match
status_in URL CODE [CODE ...] — status is one of
body_contains URL PATTERN — response body matches grep pattern

Each check wraps with check "name" <helper> <args>. Failures are counted and named in the summary. Keep checks independent — no shared state between them.

ci-deploy-verify

CI & Deploy Verify

Phase 1 — GitHub Actions CI on main

Phase 2 — Cloudflare deploy

Phase 3 — Regression suite against production

One-shot end-to-end

Common failure patterns

Related skills

Adding new regression checks

More from this repository

More from this repository

CI & Deploy Verify

Phase 1 — GitHub Actions CI on main

Phase 2 — Cloudflare deploy

Phase 3 — Regression suite against production

One-shot end-to-end

Common failure patterns

Related skills

Adding new regression checks