agentskills.codes

>-

Install

mkdir -p .claude/skills/gitops && curl -L -o skill.zip "https://agentskills.codes/api/skills/download/14206" && unzip -o skill.zip -d .claude/skills/gitops && rm skill.zip

Installs to .claude/skills/gitops

Activation

This is the description your AI agent reads to decide when to run this skill — the better it matches your request, the more reliably it fires.

GitOps workflows with ArgoCD and Flux for declarative Kubernetes deployments. Use when setting up GitOps, ArgoCD sync, or Kubernetes declarative infrastructure. NOT for simple deploys (use vercel-deploy) or general CI/CD (use cicd-pipeline).
241 chars✓ has a “when” trigger

About this skill

GitOps Workflow — Declarative Kubernetes Delivery

Git is the single source of truth. Continuous reconciliation. No auto-sync to production.


Prerequisites

Required: Kubernetes cluster, kubectl, ArgoCD or Flux installed.


When to Use

SituationAction
K8s deployment neededChoose ArgoCD or Flux via decision tree
CD pipeline setupConfigure sync policies per environment
Secret managementUse Sealed Secrets or External Secrets (no plaintext)
Multi-environmentSet up staging → production promotion
Architecture reviewRead rules/engineering-spec.md

System Boundaries

Owned by This SkillNOT Owned
ArgoCD vs Flux decision (4 criteria)CI pipeline (→ cicd-pipeline)
Sync policy selection (4 policies)Server management (→ server-ops)
Repository structure templateGit operations (→ git-workflow)
OpenGitOps compliance (4 principles)Cluster provisioning
Secret management strategyHelm chart development

Expert decision skill: Produces architecture decisions. No cluster modifications.


OpenGitOps Principles (4 — All Required)

#PrincipleRequirement
1DeclarativeEntire system described declaratively
2VersionedDesired state stored in Git
3PulledAgents pull desired state (not pushed)
4ReconciledAgents continuously reconcile actual vs desired

ArgoCD vs Flux Decision Tree

CriterionArgoCDFlux
Web UI✅ Rich dashboard❌ CLI only
Multi-cluster✅ Native support⚠️ Requires setup
Helm support✅ Native✅ Native
Learning curveMediumLower

Rule: needs_ui=true OR cluster_count>1 → ArgoCD. Otherwise → Flux.


Sync Policies (4)

PolicyEnvironmentBehavior
ManualProductionRequires explicit approval
AutoDev, StagingDeploys on Git push
PruneAllRemoves resources not in Git
Self-HealAllReverts manual cluster changes

Safety: Production is ALWAYS manual sync. No exceptions.


Repository Structure

gitops-repo/
├── apps/
│   ├── production/
│   └── staging/
├── infrastructure/
│   ├── ingress-nginx/
│   └── cert-manager/
└── argocd/
    └── applications/

Safety Rules (Non-Negotiable)

RuleEnforcement
No auto-sync to productionSync policy = manual
No secrets in GitSealed Secrets / External Secrets
Rollback testedRollback procedure in promotion workflow

Error Taxonomy

CodeRecoverableTrigger
ERR_INVALID_REQUEST_TYPENoRequest type not supported
ERR_MISSING_CLUSTER_COUNTYesCluster count not provided
ERR_MISSING_ENVIRONMENTSYesEnvironment list not provided
ERR_INVALID_ENVIRONMENTYesEnvironment name not recognized
ERR_REFERENCE_NOT_FOUNDNoReference file missing

Zero internal retries. Deterministic; same context = same recommendation.


Anti-Patterns

❌ Don't✅ Do
Auto-sync to productionManual sync with approval
Store secrets in GitSealed Secrets / External Secrets
Push-based deploymentPull-based reconciliation
Skip rollback testingTest rollback on every release
Use imperative kubectl applyDeclarative manifests in Git

📑 Content Map

FileDescriptionWhen to Read
argocd-setup.mdArgoCD installation and configArgoCD selected
sync-policies.mdSync policy deep divePolicy configuration
engineering-spec.mdFull engineering specArchitecture review

🔗 Related

ItemTypePurpose
cicd-pipelineSkillCI/CD pipeline
server-opsSkillServer management
git-workflowSkillGit operations
/launchWorkflowDeployment

⚡ PikaKit v3.9.206

Search skills

Search the agent skills registry