npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@dzhechkov/skills-devops

v0.3.3

Published

Canonical DevOps skill pack — 27 agentic skills for code review, security, testing, CI/CD, debugging, and more. Canonicalized from gitlawb/openclaude-skills.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

dzhechkovdzhechkov

Keywords

agent-skillsagentskills.ioskill-packdevopscode-reviewsecurity-audittestingci-cddebuggingclaude-code

Readme

@dzhechkov/skills-devops

Canonical DevOps skill pack — 28 agentic skills for infrastructure, code review, security, testing, CI/CD, databases, APIs, and more.

10 skills canonicalized from gitlawb/openclaude-skills + 18 original skills.

Install

# Via dz CLI (recommended)
dz init --target claude-code --preset devops

# Or select specific skills
dz init --target claude-code --select pr-review,security-audit,test-writer

# Or install the package directly
npm install @dzhechkov/skills-devops

Skill Inventory (28)

| Skill | Category | Description | |-------|----------|-------------| | api-design | api | REST/GraphQL API design with OpenAPI specs | | c4-architecture | architecture | C4 model diagrams (context, container, component) | | ci-fix | ci/cd | Diagnoses and fixes CI pipeline failures | | codeql-fix | security | CodeQL/SAST finding remediation | | data-pipeline | data | ETL/ELT pipeline design (dbt, Airflow) | | database-migration | database | Zero-downtime migrations, expand-contract | | database-review | database | Schema changes, queries, migration review | | debugging | debugging | Runtime error diagnosis and root cause fix | | docker-compose | infra | Multi-service Docker configs, health checks | | frontend-implementation | frontend | UI components following project conventions | | git-conflict-resolve | git | Merge/rebase conflict resolution | | github-actions | ci/cd | GitHub Actions workflows, matrix, OIDC | | graphql-schema | api | GraphQL schema design, DataLoader, pagination | | incident-response | ops | Production incident handling, postmortem | | problem-management | ops | ITIL problem management — RCA, known-error DB, WSJF prioritization | | kubernetes | infra | K8s deployments, Helm, RBAC, GitOps | | monorepo-management | infra | pnpm/Turborepo workspaces, changesets | | nginx-config | infra | Reverse proxy, SSL, rate limiting | | observability | ops | Metrics, logs, traces, SLOs, alerting | | playwright-testing | testing | E2E tests, page objects, visual regression | | pr-review | code-review | Pull request review with severity grouping | | provider-debug | infra | AI provider configuration debugging | | redis-patterns | cache | Caching, pub/sub, Redlock, rate limiting | | retrospective | ops | Postmortem and retrospective facilitation | | risk-assessment | ops | Risk analysis, scoring, and mitigation planning | | security-audit | security | OWASP-aligned security review | | terraform | iac | Terraform/OpenTofu IaC, modules, drift | | test-writer | testing | Unit, integration, E2E test generation |

Skill Details

pr-review

6-step review protocol: get diff, understand scope, read in context (30-50 lines around changes), check correctness/errors/edge cases/naming/tests/security/performance/breaking changes, group by severity (Blocker/Important/Nit), write review with file:line citations. Pushes back on PRs >600 lines.

security-audit

7-step audit: identify trust boundaries, walk 8 vulnerability categories (injection, auth, secrets, file ops, network ops, deserialization, XXE/SSRF, dependencies), require exploitation path for every finding, distinguish Critical/High/Medium/Low severity. No vague "consider sanitizing" — concrete fixes only.

test-writer

11-step test generation: identify unit, pick test type (unit/integration/e2e), enumerate cases (happy/boundary/edge/error), test contracts not implementation, purpose-built fixtures, descriptive assertions, verify test actually fails when broken. Covers TDD workflow.

ci-fix

10-step CI diagnosis: find actual failure line, classify (Build/Test/Lint/Deploy/Infra), reproduce locally with same toolchain, check environment differences (OS, versions, locale, timezone, parallelism), fix root cause (no retries/skips/continue-on-error), verify in fresh CI run.

codeql-fix

5-step SAST fix: read finding precisely (Rule ID + data-flow path), triage real vs false positive, pick canonical fix per rule class (SQL injection → parameterized queries, XSS → context-aware encoding, etc.), write smallest fix, suppress with justification if false positive.

database-review

9-step migration review: check lock duration, CONCURRENTLY for indexes, rolling-deploy compatibility, index-query mapping, query plan analysis (EXPLAIN), data integrity (FKs, uniqueness), insist on reversible migrations, verify on production-sized data.

debugging

10-step diagnosis: reproduce, read actual error (bottom of stack trace), narrow scope by bisecting (time/code/data), form falsifiable hypothesis, test with smallest change, fix at right layer (no symptom patches), verify, document.

frontend-implementation

10-step UI development: read existing patterns first (styling, state, routing, data fetching), confirm brief (states, interactions, data), match conventions, handle non-happy states (loading/error/empty), wire in, add minimal tests, verify in browser.

git-conflict-resolve

7-step conflict resolution: check git state, name both sides' intent per block, classify (same-goal/independent/logical), resolve leaves-to-roots, verify with git diff + tests, continue with correct command. Never guess on logical conflicts — asks the user.

provider-debug

6-step provider diagnosis: run diagnostics, inspect config (settings, env vars, model names), check for conflicting provider flags, match common error patterns (401/403/404, connection refused, model not found), provide verification command after fix.

Canonical vs Legacy — Coexistence Model

This package is the canonical source for DevOps skills (ADR-001 / ADR-002). Skills are synced to platform-specific directories via dz sync:

dz sync --canonical packages/@dzhechkov/skills-devops --project .

Writing is additive — existing files are never overwritten without --force.

Origin

All 10 skills were originally created by gitlawb/openclaude-skills (author: gnanam, license: MIT, trust: official). They have been converted from openclaude's SKILL.md format to the agentskills.io standard with:

  • YAML frontmatter: trust_tier, trust_tier_label, validation paths
  • Output schemas: schemas/output.json per skill
  • Config validators: scripts/validate-config.json per skill
  • Eval templates: evals/<skill>.yaml per skill

Status

v0.3.0 — Part of DZ Harness Hub.