jeremy-github-actions-gcp Verified Gold

Verified Gold · 93/100 devops v2.0.0 by Jeremy Longshore

GitHub Actions CI/CD workflows for Google Cloud and Vertex AI deployments

1 Skills
1 Agents
MIT License
Free Pricing

Installation

Open Claude Code and run this command:

/plugin install jeremy-github-actions-gcp@claude-code-plugins-plus

Use --global to install for all projects, or --project for current project only.

What It Does

This plugin ensures secure, production-ready CI/CD pipelines for Vertex AI Agent Engine and Google Cloud services. It enforces Workload Identity Federation (WIF) instead of JSON service account keys, validates post-deployment health, and implements GitHub Actions best practices.

Features

Workload Identity Federation (WIF): Keyless authentication from GitHub to GCP

Vertex AI Agent Engine: Automated deployment and validation pipelines

Security Enforcement: No JSON keys, least privilege IAM, secrets scanning

Post-Deployment Validation: Comprehensive health checks for deployed agents

A2A Protocol Compliance: AgentCard validation and endpoint testing

Automated Hooks: Pre-commit validation of workflow files

Best Practices: OIDC permissions, security scanning, monitoring setup

Skills (1)

gh-actions-validator SKILL.md View full skill →

Validate use when validating GitHub Actions workflows for Google Cloud and Vertex AI deployments.

ReadWriteEditGrepGlobBash(git:*)Bash(gcloud:*)

How It Works

Natural Language Activation

Simply mention what you need:


"Create GitHub Actions workflow for Vertex AI deployment"
"Set up Workload Identity Federation for my project"
"Deploy ADK agent to Vertex AI Engine with CI/CD"
"Validate my GitHub Actions security"
"Automate Vertex AI agent deployment"

The skill auto-activates and enforces best practices.

Use Cases

Use Case 1: Migrate from JSON Keys to WIF

Problem: Using insecure JSON service account keys in workflows

Solution: Plugin enforces WIF and blocks JSON keys


User: "Create deployment workflow for Vertex AI"

Plugin provides:
1. WIF-based authentication workflow
2. One-time WIF setup script
3. Post-deployment validation
4. Hook prevents JSON key usage

Use Case 2: Secure Vertex AI Deployment

Problem: Need production-ready CI/CD for ADK agents

Solution: Comprehensive deployment pipeline with validation


User: "Deploy my ADK agent to Vertex AI Engine"

Plugin provides:
1. GitHub Actions workflow with WIF
2. Pre-deployment config validation
3. Automated deployment script
4. Post-deployment health checks
5. Monitoring dashboard setup
6. A2A protocol validation

Use Case 3: Enforce Security Best Practices

Problem: Workflows missing security scanning or using weak IAM

Solution: Hook validation + skill enforcement


User: "Update my deployment workflow"

Plugin validates:
1. No JSON keys (blocks if found)
2. OIDC permissions required
3. IAM least privilege
4. Security scanning recommended
5. Post-deployment validation required

Ready to use jeremy-github-actions-gcp?

Related Plugins

ansible-playbook-creator

Create Ansible playbooks for configuration management

auto-scaling-configurator

Configure auto-scaling policies for applications and infrastructure

backup-strategy-implementor

Implement backup strategies for databases and applications

ci-cd-pipeline-builder

Build CI/CD pipelines for GitHub Actions, GitLab CI, Jenkins, and more

cloud-cost-optimizer

Optimize cloud costs and generate cost reports

compliance-checker

Check infrastructure compliance (SOC2, HIPAA, PCI-DSS)
Tags
github-actionsgoogle-cloudworkload-identity-federationwifvertex-aiagent-enginedeploymentci-cdsecuritybest-practicesoidciam