Skill

devops-best-practices

This skill should be used when the user asks to "audit a pipeline", "review a pipeline", "review pipeline security", "set up best practices", "improve pipeline performance", "create infrastructure pipelines", "set up Terraform pipelines", "set up Bicep pipelines", or any request involving pipeline quality, security hardening, organizational standards, Infrastructure as Code deployment patterns, or Azure DevOps CLI usage. Load this skill alongside pipeline-authoring for comprehensive guidance.

Install

npx claudepluginhub caleb-terry/caleb-plugins --plugin azure-devops

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Always load the detailed references when advising on pipeline quality and operations:

Supporting Assets

references/az-cli-reference.mdreferences/iac-patterns.mdreferences/pipeline-patterns.mdreferences/security-practices.md

SKILL.md

Similar Skills

design-system

Generates design tokens/docs from CSS/Tailwind/styled-components codebases, audits visual consistency across 10 dimensions, detects AI slop in UI.

team-skills-platform

163.7k

ui-demo

Records polished WebM UI demo videos of web apps using Playwright with cursor overlay, natural pacing, and three-phase scripting. Activates for demo, walkthrough, screen recording, or tutorial requests.

team-skills-platform

163.7k

kotlin-patterns

Delivers idiomatic Kotlin patterns for null safety, immutability, sealed classes, coroutines, Flows, extensions, DSL builders, and Gradle DSL. Use when writing, reviewing, refactoring, or designing Kotlin code.

team-skills-platform

163.7k

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitMar 22, 2026

Actions

View Source View Plugin View on GitHub View README

Azure DevOps Best Practices — Security, Patterns & Operations

Always load the detailed references when advising on pipeline quality and operations:

references/security-practices.md — security hardening, secret management, supply chain safety
references/pipeline-patterns.md — common pipeline patterns and anti-patterns
references/iac-patterns.md — Infrastructure as Code patterns for Terraform, Bicep, and ARM
references/az-cli-reference.md — Azure DevOps CLI command reference

Quick Reference

Security Essentials

Never hardcode secrets in YAML — use variable groups or Key Vault
Use $(secret) macro syntax, never ${{ variables.secret }} template expressions for secrets
Scope service connections to resource groups, not subscriptions
Use workload identity federation over service principal secrets
Require extends templates for organizational security enforcement
Add branch conditions on deployment stages
Audit third-party marketplace tasks — they're supply chain risk

Performance Essentials

Use Cache@2 for dependency caching (node_modules, NuGet, pip)
Use fetchDepth: 1 for shallow checkout on large repos
Run independent jobs in parallel (dependsOn: [])
Use template expressions for compile-time conditional stages (avoids queuing unused agents)
Set timeoutInMinutes to prevent hung builds

Reliability Essentials

Pin task versions: TaskName@MajorVersion
Use retryCountOnTaskFailure for flaky steps
Use condition: succeededOrFailed() for test result publishing
Use deployment environments with approvals for production
Always have a rollback plan for deployments

Azure CLI Quick Start

# Login and configure defaults
az login
az extension add --name azure-devops
az devops configure --defaults organization=https://dev.azure.com/{org} project={project}

# Common operations
az pipelines list --output table
az pipelines run --name "My Pipeline" --branch main
az pipelines variable list --pipeline-name "My Pipeline"
az repos list --output table
az boards query --wiql "SELECT [System.Id], [System.Title] FROM workitems WHERE [System.AssignedTo] = @me"