dan/skills
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
skills/DEPLOYMENT.md
dan 5fea49b7c0 feat(tufte-press): evolve skill to complete workflow with JSON generation and build automation 
- Transform tufte-press from reference guide to conversation-aware generator
- Add JSON generation from conversation context following strict schema
- Create build automation scripts with Nix environment handling
- Integrate CUPS printing with duplex support
- Add comprehensive workflow documentation

Scripts added:
- skills/tufte-press/scripts/generate-and-build.sh (242 lines)
- skills/tufte-press/scripts/build-card.sh (23 lines)

Documentation:
- Updated SKILL.md with complete workflow instructions (370 lines)
- Updated README.md with usage examples (340 lines)
- Created SKILL-DEVELOPMENT-STRATEGY-tufte-press.md (450 lines)
- Added worklog: 2025-11-10-tufte-press-skill-evolution.org

Features:
- Agent generates valid JSON from conversation
- Schema validation before build (catches errors early)
- Automatic Nix shell entry for dependencies
- PDF build via tufte-press toolchain
- Optional print with duplex support
- Self-contained margin notes enforced
- Complete end-to-end testing

Workflow: Conversation → JSON → Validate → Build → Print

Related: niri-window-capture, screenshot-latest, worklog skills
2025-11-10 15:03:44 -08:00

289 lines
8.1 KiB
Markdown
Raw Blame History

# Skills Deployment Strategy
## Current State
This repository (`~/proj/skills`) is a **development and testing repository** for AI agent skills. It is NOT the deployment location.
**Actual deployment** happens from `~/proj/dotfiles`:
- Source: `~/proj/dotfiles/claude/skills/`
- Runtime: `~/.claude/skills/` and `~/.config/opencode/skills/`
- Managed by: Home Manager (Nix)
## Deployment Model
### Global Skills (System-Wide)
**Path**: `~/proj/dotfiles/claude/skills/<skill-name>/`
**Deployed to**:
- `~/.claude/skills/<skill-name>/` (Claude Code)
- `~/.config/opencode/skills/<skill-name>/` (OpenCode)
**Who uses**: All AI agents, all projects
**Examples**:
- `worklog` - Document work sessions
- `update-spec-kit` - Update spec-kit ecosystem
### Project-Local Skills
**Path**: `<project>/.opencode/command/<skill-name>.md`
**Deployed to**: Loaded directly from project directory
**Who uses**: Only when working in that specific project
**Examples**:
- `/test` in dotfiles (runs `nix flake check`)
- `/rebuild` in dotfiles (runs `nixos-rebuild`)
- `/speckit.*` in skills repo (spec-kit commands)
## Deployment Categories for Our New Skills
### 1. screenshot-latest (Global)
**Category**: Global skill
**Why**: Useful in any project where user takes screenshots
**Security**: Low risk (just finds existing files)
**Deployment path**: `~/proj/dotfiles/claude/skills/screenshot-latest/`
**Usage scenarios**:
- Writing documentation with screenshots
- Analyzing UI/UX in any project
- Debugging visual issues
- General screenshot reference
### 2. niri-window-capture (Global, Security-Sensitive)
**Category**: Global skill
**Why**: Window capture capability useful system-wide
**Security**: HIGH RISK (invisible cross-workspace capture)
**Deployment path**: `~/proj/dotfiles/claude/skills/niri-window-capture/`
**Requirements before deployment**:
1. User must review SECURITY.md
2. User must configure niri block-out rules
3. User must understand audit logging
4. User must trust the AI agent
**Usage scenarios**:
- Capture window from inactive workspace for analysis
- "Find the window with error message" across all workspaces
- Compare windows side-by-side without switching
- Analyze UI state invisibly
### 3. Project Commands (This Repo Only)
**Category**: Project-local
**Why**: Specific to skills development workflow
**Path**: `~/proj/skills/.opencode/command/`
**Potential commands**:
- `/test-skill <name>` - Test a skill before deployment
- `/deploy-skill <name>` - Copy skill to dotfiles for deployment
- `/security-check <skill>` - Run security analysis on skill
## Deployment Workflow
### For Global Skills
1. **Develop in skills repo**:
```bash
cd ~/proj/skills
# Build skill: skills/<skill-name>/
```
2. **Test locally** (manual symlink):
```bash
ln -s ~/proj/skills/skills/<skill-name> ~/.claude/skills/<skill-name>-test
# Test with AI agent
rm ~/.claude/skills/<skill-name>-test
```
3. **Copy to dotfiles**:
```bash
cp -r ~/proj/skills/skills/<skill-name> ~/proj/dotfiles/claude/skills/
cd ~/proj/dotfiles
```
4. **Add to Home Manager** (edit `home/claude.nix`):
```nix
home.file.".claude/skills/<skill-name>" = {
source = ../claude/skills/<skill-name>;
recursive = true;
};
```
5. **Add to OpenCode** (edit `home/opencode.nix`):
```nix
home.file.".config/opencode/skills/<skill-name>" = {
source = ../claude/skills/<skill-name>;
recursive = true;
};
```
6. **Rebuild system**:
```bash
cd ~/proj/dotfiles
sudo nixos-rebuild switch --flake .#delpad
```
7. **Restart agents**:
- OpenCode: Exit and restart
- Claude Code: Restart application
### For Project-Local Commands
1. **Create in project**:
```bash
cd ~/proj/skills
mkdir -p .opencode/command
vim .opencode/command/test-skill.md
```
2. **OpenCode loads automatically** on next startup in this directory
## Version Control Strategy
### skills repo (development)
- Purpose: Development, experimentation, version history
- Branch: Feature branches for each skill
- Commits: Detailed development history
- Status: Working code, specs, analysis
### dotfiles repo (deployment)
- Purpose: System configuration, stable deployments
- Branch: main (stable only)
- Commits: "Add <skill-name> skill" (deployment markers)
- Status: Production-ready only
### Workflow:
```
skills repo (dev) --[copy]--> dotfiles repo (deploy) --[nix]--> runtime
↓ ↓ ↓
git commit git commit ~/.claude/skills/
version history deployment marker (symlink to nix store)
```
## Security Considerations
### Global Skills Deployment
**Before deploying globally, ensure**:
1. ✅ Security analysis documented
2. ✅ Risks clearly communicated
3. ✅ Audit logging implemented
4. ✅ Protection mechanisms documented
5. ✅ User can review before using
**Do NOT deploy if**:
- ❌ Security implications unclear
- ❌ No audit trail
- ❌ High risk without mitigations
- ❌ Requires per-project configuration
### niri-window-capture Specific
**Additional requirements**:
1. SECURITY.md must be in deployed skill
2. README must have security warning
3. SKILL.md must reference security docs
4. User must configure niri block-out rules BEFORE deployment
**Deployment checklist**:
- [ ] Review SECURITY.md
- [ ] Configure niri window rules:
```kdl
window-rule {
match app-id=r#"^org\.keepassxc\.KeePassXC$"#
block-out-from "screen-capture"
}
```
- [ ] Test audit logging works: `journalctl --user -t niri-capture`
- [ ] Verify blocked windows can't be captured
- [ ] Deploy to dotfiles
- [ ] Document deployment in dotfiles commit message
## OpenCode Agent Functionality
**From opencode.ai docs** (need to research more):
- OpenCode has "agents" concept separate from skills
- Agents appear to be different AI personalities/modes
- Skills work with all agents
- Commands can specify which agent via frontmatter
**TODO**: Research OpenCode agents to understand:
- What are the available agents?
- How do skills interact with agents?
- Should skills be agent-specific?
- Do we need agent-specific deployment?
**For now**: Deploy skills globally, they work with all agents.
## Current Skills Status
| Skill | Status | Security | Deploy Location | Deployed? |
|-------|--------|----------|-----------------|-----------|
| screenshot-latest | ✅ Complete | Low risk | Global | ⏸️ No |
| niri-window-capture | ✅ Complete | HIGH RISK | Global | ⏸️ No (awaiting security review) |
| worklog | ✅ Deployed | Low risk | Global | ✅ Yes (in dotfiles) |
| update-spec-kit | ✅ Deployed | Low risk | Global | ✅ Yes (in dotfiles) |
## Deployment Commands (Reference)
**Test locally**:
```bash
# Temporary symlink
ln -s ~/proj/skills/skills/<skill-name> ~/.claude/skills/<skill-name>-test
# Test with AI
# ...
# Remove test
rm ~/.claude/skills/<skill-name>-test
```
**Deploy to dotfiles**:
```bash
# Copy skill
cp -r ~/proj/skills/skills/<skill-name> ~/proj/dotfiles/claude/skills/
# Edit Nix configs
vim ~/proj/dotfiles/home/claude.nix
vim ~/proj/dotfiles/home/opencode.nix
# Rebuild
cd ~/proj/dotfiles
sudo nixos-rebuild switch --flake .#delpad
```
**Verify deployment**:
```bash
# Check symlinks exist
ls -la ~/.claude/skills/<skill-name>
ls -la ~/.config/opencode/skills/<skill-name>
# Check they point to Nix store
readlink ~/.claude/skills/<skill-name>/SKILL.md
# Should show: /nix/store/.../SKILL.md
```
## Next Steps
1. **Decide on deployment** for screenshot-latest and niri-window-capture
2. **Review security** for niri-window-capture before deploying
3. **Research OpenCode agents** to understand deployment implications
4. **Create deployment helper** (optional): script to copy + update Nix configs
5. **Document in dotfiles** after deployment (update skills README)
## References
- Dotfiles deployment: `~/proj/dotfiles/docs/skills-and-commands-workflow.md`
- Existing skills: `~/proj/dotfiles/claude/skills/`
- Home Manager config: `~/proj/dotfiles/home/claude.nix`, `~/proj/dotfiles/home/opencode.nix`
- Skills development: `~/proj/skills/README.md`
Reference in a new issue View git blame Copy permalink