一键导入
ci-debug
Debug GitHub Actions CI pipeline failures. Analyse les logs de workflow, identifie la cause racine et propose un fix.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Debug GitHub Actions CI pipeline failures. Analyse les logs de workflow, identifie la cause racine et propose un fix.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Force a full-file rewrite (Write) instead of patch (Edit) when Edit keeps failing or diff is large. Context rot mitigation — use when Edit has failed ≥2× on same file, or when estimated diff >30% of file size.
STOA PR Guardian — advisory three-axis review (ADR compliance, security, AI code smell) with binary GO/NO-GO verdict + confidence. Never approves, never blocks merge.
Analyze cycle capacity gap and propose backlog items to fill the sprint to ~80% of proven velocity.
Visual roadmap snapshot — theme progress, milestones, velocity. Zero new infra (Linear MCP + velocity.json).
Cycle-aware bidirectional sync between plan.md and Linear. Discovers all cycle tickets, detects drift, updates markers.
Run 8-persona Council validation on a feature/ADR, then auto-create a Linear ticket if score >= 8/10.
| name | ci-debug |
| description | Debug GitHub Actions CI pipeline failures. Analyse les logs de workflow, identifie la cause racine et propose un fix. |
| disable-model-invocation | true |
| context | fork |
| agent | general-purpose |
| allowed-tools | Bash, Read, Grep, Glob |
| argument-hint | [PR-number ou workflow-run-url] |
gh pr checks 2>/dev/null | head -20gh run list --limit 5 --json name,status,conclusion,headBranch --template '{{range .}}{{.name}} | {{.status}} | {{.conclusion}} | {{.headBranch}}{{"\n"}}{{end}}' 2>/dev/nullAnalyser l'echec CI pour: $ARGUMENTS
Si c'est un numero de PR:
gh pr checks $0
gh run list --branch $(gh pr view $0 --json headRefName -q .headRefName) --limit 3
Si c'est une URL de workflow run:
gh run view $0 --log-failed
gh run view <run-id> --log-failed 2>&1 | head -100
Chercher les patterns:
error, Error, ERRORFAIL, FAILEDexit code 1, exit code 2denied, forbidden, unauthorizedCauses frequentes dans STOA CI:
| Pipeline | Erreur frequente | Cause | Fix |
|---|---|---|---|
| Python CI | I001 import order | isort non respecte | ruff check --fix |
| Python CI | mypy type error | Type hints manquants | Ajouter les annotations |
| Node CI | vitest fail | Mock MSW manquant | Ajouter handler MSW |
| Node CI | eslint warnings | Max warnings depassé (0 pour UI, 20 pour portal) | Fixer les warnings |
| Docker | buildx fail | Cache layer miss ou multi-arch | Verifier --platform linux/amd64,linux/arm64 |
| Helm | helm lint fail | Values manquantes, indentation | Verifier values.yaml |
| Security | dependency-review | GitHub Advanced Security non active | Connu, non-bloquant |
| K8s deploy | kubectl apply fail | Selector immutable, Kyverno block | Voir .claude/docs/k8s-deploy.md |
| K8s deploy | rollout timeout | maxSurge/maxUnavailable deadlock | maxUnavailable: 1, maxSurge: 0 |
Pour chaque erreur identifiee:
## CI Debug: [workflow-name] — [branch]
### Echec
- **Job**: [nom du job]
- **Step**: [nom du step]
- **Erreur**: [message d'erreur exact]
### Cause racine
[Explication]
### Fix propose
[Diff exact]
### Verification locale
```bash
[commande pour reproduire/verifier]
[Autres workflows potentiellement impactes]
## Regles
- Toujours lire les logs complets avant de diagnostiquer
- Ne pas confondre: erreur intermittente vs erreur structurelle
- Si `dependency-review` echoue seul → ignorer (connu, GitHub Advanced Security)
- Si `container-scan` / `codeql` echoue seul → verifier si intermittent
- Toujours proposer une verification locale