groq-incident-runbook

'Execute Groq incident response: triage, mitigation, fallback, and postmortem.

Allowed Tools

ReadBash(kubectl:*)Bash(curl:*)

Provided by Plugin

groq-pack

Claude Code skill pack for Groq (24 skills)

saas packs v1.11.0
View Plugin

Installation

This skill is included in the groq-pack plugin:

/plugin install groq-pack@claude-code-plugins-plus

Click to copy

Instructions

Groq Incident Runbook

Overview

Rapid incident response procedures for Groq API failures. Groq is a third-party inference provider -- when it goes down, your mitigation options are: wait, fall back to a different model, or fall back to a different provider.

This SKILL.md is the high-level flow. Deep, copy-paste-ready material lives in references/:

Prerequisites

  • GROQAPIKEY exported in the environment you run the triage commands from.
  • curl for API probes; kubectl only if you collect logs from a Kubernetes deployment.
  • Access to console.groq.com to rotate keys or upgrade the plan.
  • A configured fallback provider (e.g. OpenAI) if you need to fail away from Groq entirely.

Authentication: every Groq API call in this runbook authenticates with a bearer token — Authorization: Bearer $GROQAPIKEY. Keep the key in a secret manager, never inline; the evidence-collection step in communication-and-postmortem.md redacts gsk_ tokens from logs before archiving.

Instructions

Work the incident in five phases. Each phase points to the reference file with the exact commands.

  1. Classify severity. Match user impact to the P1–P4 table in

triage-and-diagnostics.md — this sets your response-time budget (P1 < 15 min, P4 next business day).

  1. Triage. Run the Quick Triage script (status reachability, auth, per-model availability, rate-limit headers). The one-line probe that starts most incidents:

   curl -s -o /dev/null -w "%{http_code}\n" \
     https://api.groq.com/openai/v1/models \
     -H "Authorization: Bearer $GROQ_API_KEY"
  1. Decide. Walk the decision tree in

triage-and-diagnostics.md to turn the HTTP code (timeout / 401 / 429 / 5xx / slow) into an action path.

  1. Mitigate. Apply the matching fix from mitigations.md: fallback-model routing for 5xx on one model, wait-or-reroute for 429, key rotation for 401, enable the fallback provider for a Groq-wide outage.
  2. Communicate & close. Post the internal alert and status-page update, then after resolution collect evidence and write the postmortem — all in communication-and-postmortem.md.

Output

Running this runbook produces:

  • A triage verdict — the HTTP status per model and whether the fault is Groq-side or ours.
  • An applied mitigation — traffic routed to a healthy model or provider, or a rotated key.
  • A communication trail — internal alert + external status-page message.
  • An evidence bundlegroq-incident-TIMESTAMP.tar.gz containing models.json and redacted app-logs.txt.
  • A postmortem document — timeline, root cause, and dated action items.

Error Handling

Issue Cause Solution
Can't reach status.groq.com Network issue Use mobile or different network
All models failing Groq-wide outage Enable fallback provider (OpenAI, etc.)
Key rotation fails No admin access Escalate to team lead with console access
Fallback provider also down Multi-provider outage Degrade gracefully, show cached content

Examples

Example — 429 on the primary model. Triage shows llama-3.3-70b-versatile: HTTP 429

while llama-3.1-8b-instant: HTTP 200. The decision tree routes "one model 429 → route to a

different model," so you switch traffic to the 8B model per

mitigations.md, post a P3 internal alert, and file an action item

to add fallback routing. The fallback-routing function lives in

mitigations.md; the alert and postmortem templates are in

communication-and-postmortem.md.

Resources

Next Steps

For data-handling and compliance procedures after an incident, see the groq-data-handling skill in this pack.

Ready to use groq-pack?