gitops-repo-audit

Audit and validate Flux CD GitOps repositories by scanning local repo files (not live clusters) — runs Kubernetes schema validation, detects deprecated Flux APIs, reviews RBAC/multi-tenancy/secrets management, and produces a prioritized GitOps report. Use when users ask to audit, analyze, validate, review, or security-check a GitOps repo.

Quality

92%

Does it follow best practices?

Impact

Pending

No eval scenarios have been run

Securityby

Passed

No known issues

Quality

Discovery

100%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

This is an excellent skill description that clearly articulates specific capabilities (schema validation, deprecated API detection, RBAC review), explicitly defines when to use it with natural trigger terms, and occupies a distinct niche around Flux CD GitOps repository auditing. The scope clarification ('local repo files, not live clusters') further sharpens its distinctiveness and helps Claude make correct selection decisions.

Dimension	Reasoning	Score
Specificity	Lists multiple specific concrete actions: Kubernetes schema validation, detecting deprecated Flux APIs, reviewing RBAC/multi-tenancy/secrets management, and producing a prioritized GitOps report. Also clarifies scope (local repo files, not live clusters).	3 / 3
Completeness	Clearly answers both 'what' (audit/validate Flux CD repos with schema validation, deprecated API detection, RBAC review, report generation) and 'when' (explicit 'Use when users ask to audit, analyze, validate, review, or security-check a GitOps repo').	3 / 3
Trigger Term Quality	Includes strong natural trigger terms: 'audit', 'analyze', 'validate', 'review', 'security-check', 'GitOps repo', 'Flux CD', 'Kubernetes', 'RBAC', 'secrets management'. These cover a good range of terms users would naturally use.	3 / 3
Distinctiveness Conflict Risk	Highly distinctive — targets a specific niche (Flux CD GitOps repositories, local repo scanning) with domain-specific triggers like 'Flux CD', 'GitOps', 'deprecated Flux APIs', and 'Kubernetes schema validation'. Very unlikely to conflict with other skills.	3 / 3
	Total	12 / 12 Passed

Implementation

85%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

This is a high-quality skill that provides a comprehensive, well-structured GitOps auditing workflow with concrete commands, clear phase sequencing, and excellent progressive disclosure to reference materials. The actionability is outstanding with specific scripts, file paths, and field names. The main area for improvement is conciseness — the inline CRD reference table and extensive edge cases section could potentially be moved to reference files to reduce the token footprint of the main skill.

Suggestions

Consider moving the Flux CRD Reference table to a separate reference file (e.g., references/crd-reference.md) to reduce the main skill's token footprint while keeping it accessible when needed.

Dimension	Reasoning	Score
Conciseness	The skill is mostly efficient and avoids explaining basic concepts, but the CRD reference table is quite long and could be in a separate reference file. The edge cases section, while useful, adds significant length. Some instructions like 'Read [best-practices.md] in full, do not summarize' are appropriately terse.	2 / 3
Actionability	Provides concrete, executable bash commands for each phase (discover.sh, validate.sh, check-deprecated.sh), specific file paths to check, exact field names to look for (e.g., 'reconcile.fluxcd.io/watch: "Enabled"'), and clear schema naming conventions. The guidance is specific and directly usable.	3 / 3
Workflow Clarity	The 6-phase workflow is clearly sequenced with explicit validation steps (Phase 2 validates manifests, Phase 3 checks API compliance with exit codes). Each phase has clear entry/exit criteria, and the skill includes feedback loops (e.g., 'verify the exact field names' before recommending changes, checking schemas before writing YAML). The adaptive depth instruction ('targeted question doesn't need the full workflow') is a smart workflow design choice.	3 / 3
Progressive Disclosure	Excellent progressive disclosure with a clear overview in the main file and well-signaled one-level-deep references to repo-patterns.md, best-practices.md, security-audit.md, api-migration.md, flux-api-summary.md, and flux-operator-api-summary.md. The 'Loading References' section explicitly tells when to load each file. Schema files are referenced via a lookup table.	3 / 3
	Total	11 / 12 Passed

Validation

100%

Warnings & errors only

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation — 11 / 11 Passed

Validation for skill structure

No warnings or errors.

Repository: fluxcd/agent-skills
Commit: 4ba2c61

Reviewed: 2 days ago

Table of Contents

Discovery Implementation Validation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.