test
v1.0.0适用于在前进平台为**已部署工作负载**创建持续更新流水线(代码克隆 → 构建 → 镜像构建 → 镜像更新部署)。生成 Jenkinsfile 前必须完整阅读本 SKILL 内「流水线骨架」节模板,禁止凭记忆默写。
⭐ 0· 85·0 current·0 all-time
by@wyzauh
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name/description describe creating a pipeline on the platform and the SKILL.md details steps (auth, tenant/project selection, build/image/deploy parameters) that match that purpose. There are no unrelated requested binaries, env vars, or install steps.
Instruction Scope
The SKILL.md prescribes exactly which platform tools to call (auth_list_tenants, cicd_*, caas_registry_*, olympus_core_* etc.) and enforces step-by-step user confirmations; it does not instruct the agent to read local files, write tokens into repos, or contact unknown external endpoints. It does require collecting user-supplied Git credentials and platform login when needed, which is coherent with the described workflow.
Install Mechanism
No install spec or code files are present (instruction-only), so nothing will be downloaded or written to disk during installation — lowest install risk.
Credentials
The skill declares no required environment variables, which is consistent with being instruction-only. However, at runtime it will ask for platform login credentials (token via auth_login) and may ask the user for Git username/password to perform pipeline setup — this is expected for the task but is sensitive data the user must supply interactively, not via declared env vars.
Persistence & Privilege
always is false and there is no install that would persist code or configuration. The skill does not request system-wide changes or modify other skills' configs. Autonomous model invocation is allowed by default but the SKILL.md explicitly requires user confirmation at each step.
Assessment
This is an instruction-only skill designed to construct a Jenkinsfile and call your platform's CICD tools; it does not install code. Before using it, be aware it will ask you to provide platform login credentials and/or Git username/password interactively — provide least-privilege or short-lived credentials where possible. Verify the generated Jenkinsfile and all selected tenant/project/registry/namespace choices before allowing the pipeline creation to proceed. The skill's source is unknown: if you don't trust the publisher, perform these steps manually or review outputs carefully. Finally, confirm the agent respects the SKILL.md's required stepwise confirmations (do not allow the agent to auto-approve multiple steps without your explicit consent).Like a lobster shell, security has layers — review code before you run it.
latestvk972a62rpf2bj60rtwxe7gdh4n83kwfx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.