ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

CI/CD Pipeline Toolkit

v1.0.0

Automate CI/CD pipelines for GitHub Actions, GitLab CI, and Jenkins with build, test, deploy workflow creation and pipeline status monitoring.

0· 60·0 current·0 all-time
byLv Lancer@kaiyuelv

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for kaiyuelv/ci-cd-pipeline-toolkit.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "CI/CD Pipeline Toolkit" (kaiyuelv/ci-cd-pipeline-toolkit) from ClawHub.
Skill page: https://clawhub.ai/kaiyuelv/ci-cd-pipeline-toolkit
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install ci-cd-pipeline-toolkit

ClawHub CLI

Package manager switcher

npx clawhub@latest install ci-cd-pipeline-toolkit
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The README and SKILL.md claim support for GitHub Actions, GitLab CI, and Jenkins. The package provides implemented generators for GitHub and GitLab plus a pipeline monitor, but there is no scripts/jenkins_pipeline_generator.py or other Jenkins implementation in the file manifest. SKILL.md also declares a jenkins_pipeline_create action and lists python-jenkins in requirements (optional), but no code uses python-jenkins. This is an inconsistency between stated capabilities and actual code.
Instruction Scope
The runtime instructions and included scripts are narrowly scoped: generators create YAML files (.github/workflows/, .gitlab-ci.yml) and pipeline_monitor.py queries official GitHub/GitLab REST APIs. The monitor takes an optional token and only calls api.github.com and gitlab.com by default. Scripts write files to repository paths (expected for generators) but do not attempt to read unrelated system files or exfiltrate data.
Install Mechanism
No install spec is present (instruction-only install). Dependencies are standard Python packages listed in requirements.txt (PyYAML, requests, python-jenkins). This is low-risk compared with arbitrary remote downloads.
Credentials
The skill does not require any environment variables or credentials to be set, but the generated workflows reference common CI secrets (e.g., ${ { secrets.DOCKER_PASSWORD } }) and the monitor accepts optional API tokens. Asking for API tokens to query CI status is proportionate, but users should be aware that supplying tokens grants the monitor read access to pipeline metadata for the projects specified.
Persistence & Privilege
always:false (no forced permanent presence). The skill writes generated workflow/config files to the working directory (normal for a generator) but does not modify other skills or system-wide agent settings.
What to consider before installing
This package is mostly coherent for generating GitHub Actions and GitLab CI files and for monitoring pipelines. However, SKILL.md and README claim Jenkins support while the repository lacks a Jenkins generator implementation — ask the publisher or inspect sources before trusting the 'Jenkins' capability. Review generated workflow content before committing (they will write to .github/workflows and .gitlab-ci.yml). If you provide API tokens to pipeline_monitor.py, treat them as sensitive and scope them to least privilege; run the tools in a sandbox or test repo first. If you need Jenkins support, request the missing script or prefer a different package with explicit Jenkins implementation.

Like a lobster shell, security has layers — review code before you run it.

latestvk973nydngdwnwd536n0bk9c8y5851v8s
60downloads
0stars
1versions
Updated 1w ago
v1.0.0
MIT-0
Lv Lancer@kaiyuelv
latest
Download

CI/CD Pipeline Toolkit

Metadata

  • Name: ci-cd-pipeline-toolkit
  • Display Name: CI/CD Pipeline Toolkit | CI/CD流水线工具包
  • Description:
    • EN: Automated CI/CD pipeline management supporting GitHub Actions, GitLab CI, and Jenkins. Automate build, test, and deployment workflows.
    • ZH: 自动化CI/CD流水线管理,支持GitHub Actions、GitLab CI和Jenkins。自动化构建、测试和部署工作流。
  • Version: 1.0.0
  • Author: Kimi Claw
  • Tags: cicd, devops, github-actions, gitlab-ci, jenkins, pipeline, automation, deployment
  • Category: DevOps
  • Icon: 🔄

Capabilities

Actions

github_actions_workflow_create

Create GitHub Actions workflow file

  • workflow_name: Workflow name (string, required)
  • trigger_events: Trigger events (array, required) - push, pull_request, schedule, workflow_dispatch
  • jobs: Job configurations (object, required)
    • build: Build job steps
    • test: Test job steps
    • deploy: Deploy job steps
  • runs_on: Runner type (string) - ubuntu-latest, windows-latest, macos-latest

gitlab_ci_config_generate

Generate GitLab CI/CD configuration

  • stages: Pipeline stages (array, required) - build, test, deploy
  • jobs: Job definitions (object, required)
  • variables: Environment variables (object)
  • cache_paths: Cache paths (array)

jenkins_pipeline_create

Create Jenkins pipeline script

  • pipeline_type: Type (string) - declarative, scripted
  • stages: Stage definitions (array, required)
  • agent: Agent label (string)
  • tools: Required tools (object)

pipeline_status_check

Check CI/CD pipeline execution status

  • platform: Platform (string, required) - github, gitlab, jenkins
  • pipeline_id: Pipeline/Run ID (string, required)
  • repository: Repository name (string, required)

deployment_trigger

Trigger deployment to environment

  • environment: Target environment (string, required) - dev, staging, production
  • version: Deployment version (string, required)
  • platform: Deployment platform (string) - k8s, docker, aws, azure

Requirements

  • Python 3.8+
  • PyYAML >= 6.0
  • Requests >= 2.28.0
  • python-jenkins >= 1.8.0 (optional, for Jenkins API)

Examples

GitHub Actions Workflow

from cicd_toolkit import GitHubActionsWorkflow

# Create Python CI workflow
workflow = GitHubActionsWorkflow("python-ci")
workflow.add_trigger("push", branches=["main", "dev"])
workflow.add_trigger("pull_request")

# Add jobs
workflow.add_job("test", {
    "runs-on": "ubuntu-latest",
    "steps": [
        {"uses": "actions/checkout@v4"},
        {"uses": "actions/setup-python@v4", "with": {"python-version": "3.11"}},
        {"name": "Install dependencies", "run": "pip install -r requirements.txt"},
        {"name": "Run tests", "run": "pytest"}
    ]
})

workflow.save(".github/workflows/python-ci.yml")

GitLab CI Configuration

from cicd_toolkit import GitLabCIConfig

# Generate CI config
config = GitLabCIConfig()
config.add_stage("build")
config.add_stage("test")
config.add_stage("deploy")

config.add_job("build_app", {
    "stage": "build",
    "script": ["npm install", "npm run build"],
    "artifacts": {"paths": ["dist/"]}
})

config.add_job("test_app", {
    "stage": "test",
    "script": ["npm run test"],
    "needs": ["build_app"]
})

config.save(".gitlab-ci.yml")

Scripts

  • scripts/github_workflow_generator.py: GitHub Actions工作流生成器
  • scripts/gitlab_ci_generator.py: GitLab CI配置生成器
  • scripts/jenkins_pipeline_generator.py: Jenkins流水线生成器
  • scripts/pipeline_monitor.py: 流水线监控工具

Installation

pip install -r requirements.txt

Usage

# Generate GitHub Actions workflow
python scripts/github_workflow_generator.py --name python-ci --type pytest

# Generate GitLab CI config
python scripts/gitlab_ci_generator.py --stages build,test,deploy

# Monitor pipeline status
python scripts/pipeline_monitor.py --platform github --repo owner/repo

License

MIT License

Comments

Loading comments...