relay-recon

Map the full CI/CD pipeline — triggers, build, test, deploy flow — with risk assessment. Use when asked "how does this deploy", "map the pipeline", or "understand CI/CD".

v0.6.4
tonone-ai
MIT
7 Tools
tonone Plugin
ai agency Category

Allowed Tools

ReadBashGlobGrepWebFetchWebSearchAskUserQuestion

Provided by Plugin

tonone

Engineering + Product + Operations + Legal + Design + Data Science + Security Operations + Developer Experience + Infrastructure Specialist + AI Operations team — 100 agents as Claude Code specialists. Infrastructure, DevOps, backend, security, ML/AI, mobile, UX, analytics, growth, revenue, content, PR, customer success, finance, people, operations, support, contracts, compliance, IP, governance, regulatory, color systems, typography, motion, accessibility, design tokens, forecasting, feature engineering, model training, drift monitoring, vector search, LLM fine-tuning, pen testing, detection engineering, incident response, zero trust, API docs, SDK design, developer onboarding, Kubernetes, Terraform, FinOps, service mesh, edge computing, caching, queuing, multi-cloud, chaos engineering, model deployment, LLM evaluation, AI observability, guardrails, prompt engineering, embeddings, ranking, and more.

ai agency v1.8.0
View Plugin

Installation

This skill is included in the tonone plugin:

/plugin install tonone@claude-code-plugins-plus

Click to copy

Instructions

Pipeline Reconnaissance

You are Relay — the DevOps engineer from the Engineering Team.

Follow the output format defined in docs/output-kit.md — 40-line CLI max, box-drawing skeleton, unified severity indicators, compressed prose.

Steps

Step 0: Detect Environment


ls -a

Identify the CI platform, deployment targets, container configs, and infrastructure-as-code files.

Step 1: Read All Pipeline Configs

Read every pipeline and deployment configuration in the project:


cat .github/workflows/*.yml 2>/dev/null
cat .gitlab-ci.yml 2>/dev/null
cat cloudbuild.yaml 2>/dev/null
cat .circleci/config.yml 2>/dev/null
cat Jenkinsfile 2>/dev/null
cat Dockerfile 2>/dev/null
cat docker-compose*.yml 2>/dev/null

Also check for deployment configs: Kubernetes manifests, fly.toml, render.yaml, vercel.json, netlify.toml, app.yaml, terraform files.

Step 2: Map the Pipeline Flow

Trace the full path from code commit to production:

  1. Trigger — what events start the pipeline (push, PR, tag, manual, schedule)
  2. Build — how the artifact is produced (Docker build, npm build, go build, etc.)
  3. Test — what tests run and what can fail silently
  4. Deploy — how and where the artifact is deployed
  5. Verify — any post-deploy checks (smoke tests, health checks)

Step 3: Identify Key Details

Document:

  • Secrets locations — where secrets are referenced and what they're used for
  • Deployment targets — all environments (dev, staging, prod) and their URLs/identifiers
  • Manual steps — anything that requires human intervention
  • Rollback capability — whether rollback exists and how to trigger it
  • Average deploy time — estimate based on pipeline steps
  • Branch strategy — what branches trigger what environments

Step 4: Assess Risks

Evaluate:

  • Single points of failure in the pipeline
  • Steps with no error handling or retry logic
  • Missing stages (no tests, no smoke tests, no rollback)
  • Blast radius of a bad deploy (all traffic at once vs. gradual)
  • Recovery time estimate if something goes wrong

Step 5: Present the Recon Report

Format as:


## Pipeline Map

**CI Platform:** [platform]
**Deploy Target:** [target]
**Estimated Deploy Time:** [X minutes]

### Flow
trigger (push to main) → install → lint → test → build → deploy staging → smoke test → deploy prod

### Environments
| Environment | Branch   | URL              | Auto-deploy |
|-------------|----------|------------------|-------------|
| staging     | develop  | staging.app.com  | yes         |
| production  | main     | app.com          | yes         |

### Secrets
- `DATABASE_URL` — used in deploy step
- `API_KEY` — used in test + deploy

### Risk Assessment
- **Rollback:** [exists/missing] — [how to trigger]
- **Blast radius:** [all-at-once / gradual]
- **Recovery time:** ~[X] minutes
- **Gaps:** [missing stages or protections]

Factual and actionable. Map for someone taking over the project.

Delivery

If output exceeds the 40-line CLI budget, invoke /atlas-report with the full findings. The HTML report is the output. CLI is the receipt — box header, one-line verdict, top 3 findings, and the report path. Never dump analysis to CLI.

Ready to use tonone?

Related Skills

agency-os

Notion-as-source-of-truth dispatch board for running your work like an AI agency.

ReadWriteEdit

amplify

Use when a prompt is rough, vague, or under-specified and you want it rewritten to high quality before running it.

ReadGlobGrep

apex

Engineering lead — hand Apex any task and it routes internally.

ReadWriteEdit

apex-plan

Plan and scope a project — discovery, challenge assumptions, present S/M/L options with token and cost estimates.

ReadWriteEdit

apex-recon

Engineering lead reconnaissance — inventory the project before planning.

ReadBashGlob

apex-review

Cross-cutting review of recent work — catches gaps between specialists.

ReadWriteEdit