Can it fix the issues it finds?

This skill focuses on detection and reporting; it is designed to work alongside companion skills like stack-creator and secrets-manager for remediation.

Does it support custom validation rules?

Yes, it looks for a .stack-validator.yml file in your project directory to apply custom validation logic and rules specific to your environment.

What does the GitLab Stack Validator check?

It validates directory structures, Docker Compose configurations, environment variable synchronization (.env vs .env.example), file ownership, and secrets security within GitLab-centric stacks.

Why does it check for root-owned files?

Following Docker best practices, files should be owned by the Docker user rather than root to prevent permission issues and enhance container security.

How does it handle sensitive information during validation?

It scans for potential secrets in .env and config files to flag security risks, ensuring sensitive data is properly moved to secure Docker secrets storage.

GitLab Stack Validator

Name: GitLab Stack Validator
Author: rknall

byrknall

•

Deployment & DevOps

Validates GitLab stack architecture, directory structure, and security configurations to ensure deployment readiness.

The GitLab Stack Validator is a comprehensive auditing tool designed to ensure GitLab-based projects adhere to standard architecture and security best practices. It meticulously checks for proper directory organization, identifies environment variable synchronization issues, audits secrets management, and performs Docker configuration reviews. By running these automated checks before deployment, developers can catch critical misconfigurations—such as root-owned files or exposed secrets—ensuring a secure and stable production environment.

Key Features

01Docker configuration and best practices verification

02Comprehensive directory structure and permission auditing

03Environment variable synchronization and security validation

04Detailed file ownership and 'no-root' policy enforcement

05Automated secrets management and exposure checks

065 GitHub stars

Use Cases

01Security auditing of local environment configurations and secrets

02Pre-deployment health checks for containerized GitLab stacks

03Validating architectural consistency across development teams

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add rknall/claude-skills stack-validator

For use in Claude.ai and ChatGPT

Download Skill