Stats
Actions
Tags
From jeremy-github-actions-gcp
Validate use when validating GitHub Actions workflows for Google Cloud and Vertex AI deployments. Trigger with phrases like "validate github actions", "setup workload identity federation", "github actions security", "deploy agent with ci/cd", or "automate vertex ai deployment". Enforces Workload Identity Federation (WIF), validates OIDC permissions, ensures least privilege IAM, and implements security best practices.
How this skill is triggered — by the user, by Claude, or both
Slash command
/jeremy-github-actions-gcp:gh-actions-validatorThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Validate and harden GitHub Actions workflows that deploy to Google Cloud (especially Vertex AI) using Workload Identity Federation (OIDC) instead of long-lived service account keys. Use this to audit existing workflows, propose a secure replacement, and add CI checks that prevent common credential and permission mistakes.
Validate and harden GitHub Actions workflows that deploy to Google Cloud (especially Vertex AI) using Workload Identity Federation (OIDC) instead of long-lived service account keys. Use this to audit existing workflows, propose a secure replacement, and add CI checks that prevent common credential and permission mistakes.
Before using this skill, ensure:
- uses: actions/checkout@v4
- name: Authenticate to GCP (WIF)
- name: Deploy to Vertex AI
--project=${{ secrets.GCP_PROJECT_ID }} \
--region=us-central1
- name: Validate Deployment
See ${CLAUDE_SKILL_DIR}/references/errors.md for comprehensive error handling.
See ${CLAUDE_SKILL_DIR}/references/examples.md for detailed examples.
npx claudepluginhub nickloveinvesting/nick-love-plugins --plugin jeremy-github-actions-gcpValidates GitHub Actions workflows for secure Google Cloud and Vertex AI deployments using Workload Identity Federation, OIDC, least-privilege IAM, and security scans.
Guides GitHub Actions authentication and security for Claude Code: API keys, OIDC for AWS Bedrock, service accounts for Google Vertex AI, secrets management, permission scoping. Use for workflow auth/security setups.
Validates, lints, audits, and fixes GitHub Actions workflows using actionlint and act. Includes local testing, error fixes, and public action version checks.