How do I install gitlab-ci-patterns?

Run `npx skills add https://github.com/wshobson/agents --skill gitlab-ci-patterns` in your terminal. You need to have run `npx skills init` once in your project first.

Which agent frameworks does gitlab-ci-patterns support?

gitlab-ci-patterns works with any agent framework supported by the Skills registry, including Claude Code, Cursor, GitHub Copilot, Cline, Codex, and Gemini CLI.

Is gitlab-ci-patterns free to use?

Yes. gitlab-ci-patterns is free to install and use. It is available from the open explainx.ai skill registry published by wshobson.

Where can I read ratings and reviews for gitlab-ci-patterns?

Community ratings and review text appear on this explainx.ai skill page below the description. Reviews use a 1–5 scale and may include short written feedback from signed-in members.

Productivity

gitlab-ci-patterns▌

wshobson/agents · updated Apr 8, 2026

$npx skills add https://github.com/wshobson/agents --skill gitlab-ci-patterns

0 commentsdiscussion

summary

Multi-stage GitLab CI/CD pipelines with Docker builds, Kubernetes deployments, and security scanning.

›Covers core pipeline patterns including build, test, and deploy stages with artifact caching and environment management
›Includes Docker image building and pushing to registries, multi-environment deployments (staging/production), and Terraform infrastructure automation
›Provides security scanning templates (SAST, dependency scanning, container scanning) and Trivy vulnerability checks

skill.md

GitLab CI Patterns

Comprehensive GitLab CI/CD pipeline patterns for automated testing, building, and deployment.

Purpose

Create efficient GitLab CI pipelines with proper stage organization, caching, and deployment strategies.

When to Use

Automate GitLab-based CI/CD
Implement multi-stage pipelines
Configure GitLab Runners
Deploy to Kubernetes from GitLab
Implement GitOps workflows

Basic Pipeline Structure

stages:
  - build
  - test
  - deploy

variables:
  DOCKER_DRIVER: overlay2
  DOCKER_TLS_CERTDIR: "/certs"

build:
  stage: build
  image: node:20
  script:
    - npm ci
    - npm run build
  artifacts:
    paths:
      - dist/
    expire_in: 1 hour
  cache:
    key: ${CI_COMMIT_REF_SLUG}
    paths:
      - node_modules/

test:
  stage: test
  image: node:20
  script:
    - npm ci
    - npm run lint
    - npm test
  coverage: '/Lines\s*:\s*(\d+\.\d+)%/'
  artifacts:
    reports:
      coverage_report:
        coverage_format: cobertura
        path: coverage/cobertura-coverage.xml

deploy:
  stage: deploy
  image: bitnami/kubectl:latest
  script:
    - kubectl apply -f k8s/
    - kubectl rollout status deployment/my-app
  only:
    - main
  environment:
    name: production
    url: https://app.example.com

Docker Build and Push

build-docker:
  stage: build
  image: docker:24
  services:
    - docker:24-dind
  before_script:
    - docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
  script:
    - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA .
    - docker build -t $CI_REGISTRY_IMAGE:latest .
    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
    - docker push $CI_REGISTRY_IMAGE:latest
  only:
    - main
    - tags

Multi-Environment Deployment

.deploy_template: &deploy_template
  image: bitnami/kubectl:latest
  before_script:
    - kubectl config set-cluster k8s --server="$KUBE_URL" --insecure-skip-tls-verify=true
    - kubectl config set-credentials admin --token="$KUBE_TOKEN"
    - kubectl config set-context default --cluster=k8s --user=admin
    - kubectl config use-context default

deploy:staging:
  <<: *deploy_template
  stage: deploy
  script:
    - kubectl apply -f k8s/ -n staging
    - kubectl rollout status deployment/my-app -n staging
  environment:
    name: staging
    url: https://staging.example.com
  only:
    - develop

deploy:production:
  <<: *deploy_template
  stage: deploy
  script:
    - kubectl apply -f k8s/ -n production
    - kubectl rollout status deployment/my-app -n production
  environment:
    name: production
    url: https://app.example.com
  when: manual
  only:
    - main

Terraform Pipeline

stages:
  - validate
  - plan
  - apply

variables:
  TF_ROOT: ${CI_PROJECT_DIR}/terraform
  TF_VERSION: "1.6.0"

before_script:
  - cd ${TF_ROOT}
  - terraform --version

validate:
  stage: validate
  image: hashicorp/terraform:${TF_VERSION}
  script:
    - terraform init -backend=false
    - terraform validate
    - terraform fmt -check

plan:
  stage: plan
  image: hashicorp/terraform:${TF_VERSION}
  script:
    - terraform init
    - terraform plan -out=tfplan
  artifacts:
    paths:
      - ${TF_ROOT}/tfplan
    expire_in: 1 day

apply:
  stage: apply
  image: hashicorp/terraform:${TF_VERSION}
  script:
    - terraform init
    - terraform apply -auto-approve tfplan
  dependencies:
    - plan
  when: manual
  only:
    - main

Security Scanning

include:
  - template: Security/SAST.gitlab-ci.yml
  - template: Security/Dependency-Scanning.gitlab-ci.yml
  - template: Security/Container-Scanning.gitlab-ci.yml

trivy-scan:
  stage: test
  image: aquasec/trivy:latest
  script:
    - trivy image --exit-code 1 --severity HIGH,CRITICAL $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
  allow_failure: true

Caching Strategies

# Cache node_modules
build:
  cache:
    key: ${CI_COMMIT_REF_SLUG}
    paths:
      - node_modules/
    policy: pull-push

# Global cache
cache:
  key: ${CI_COMMIT_REF_SLUG}
  paths:
    - .cache/
    - vendor/

# Separate cache per job
job1:
  cache:
    key: job1-cache
    paths:
      - build/

job2:
  cache:
    key: job2-cache
    paths:
      - dist/

Dynamic Child Pipelines

generate-pipeline:
  stage: build
  script:
    - python generate_pipeline.py > child-pipeline.yml
  artifacts:
    paths:
      - child-pipeline.yml

trigger-child:
  stage: deploy
  trigger:
    include:
      - artifact: child-pipeline.yml
        job: generate-pipeline
    strategy: depend

Best Practices

Use specific image tags (node:20, not node:latest)
Cache dependencies appropriately
Use artifacts for build outputs
Implement manual gates for production
Use environments for deployment tracking
Enable merge request pipelines
Use pipeline schedules for recurring jobs
Implement security scanning
Use CI/CD variables for secrets
Monitor pipeline performance

Related Skills

github-actions-templates - For GitHub Actions
deployment-pipeline-design - For architecture
secrets-management - For secrets handling

Discussion

Product Hunt–style comments (not star reviews)

No comments yet — start the thread.

general reviews

Ratings

4.5★★★★★52 reviews

★★★★★Dhruvi Jain· Dec 24, 2024
gitlab-ci-patterns reduced setup friction for our internal harness; good balance of opinion and flexibility.
★★★★★Anaya Liu· Dec 24, 2024
Keeps context tight: gitlab-ci-patterns is the kind of skill you can hand to a new teammate without a long onboarding doc.
★★★★★Sophia Farah· Dec 8, 2024
We added gitlab-ci-patterns from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
★★★★★Pratham Ware· Dec 4, 2024
Solid pick for teams standardizing on skills: gitlab-ci-patterns is focused, and the summary matches what you get after install.
★★★★★Li Mensah· Nov 27, 2024
Keeps context tight: gitlab-ci-patterns is the kind of skill you can hand to a new teammate without a long onboarding doc.
★★★★★Advait Choi· Nov 27, 2024
Solid pick for teams standardizing on skills: gitlab-ci-patterns is focused, and the summary matches what you get after install.
★★★★★Oshnikdeep· Nov 15, 2024
I recommend gitlab-ci-patterns for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
★★★★★Anaya Taylor· Nov 15, 2024
We added gitlab-ci-patterns from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
★★★★★Noah Kim· Oct 18, 2024
gitlab-ci-patterns is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
★★★★★Kwame Agarwal· Oct 18, 2024
gitlab-ci-patterns has been reliable in day-to-day use. Documentation quality is above average for community skills.

showing 1-10 of 52

1 / 6