Skill

navan-incident-runbook

Provides runbook for Navan platform incidents—booking failures, expense syncs, OAuth errors—with severity triage, Ava AI checks, and curl/jq API health probes.

Bash

REST API

Oauth

devops

monitoring

npx claudepluginhub jeremylongshore/claude-code-plugins-plus-skills --plugin navan-pack

Tool Access

This skill is limited to using the following tools:

ReadWriteEditBash(curl:*)Bash(jq:*)Grep

Preview

Structured incident response for Navan travel platform disruptions. Navan uses raw REST APIs with OAuth 2.0 — there is no SDK and no sandbox. All diagnostic commands run against production.

Supporting Assets

references/one-pager.md

SKILL.md

Similar Skills

navan-common-errors

1.9k

Diagnoses and fixes Navan API errors like 401 Unauthorized, 403 Forbidden, 429 Rate Limit using curl diagnostics, token refresh, and permission checks.

1 file3 tools

navan-pack

cache-components

139.3k

Guides Next.js Cache Components and Partial Prerendering (PPR): 'use cache' directives, cacheLife(), cacheTag(), revalidateTag() for caching, invalidation, static/dynamic optimization. Auto-activates on cacheComponents: true.

cache-components

mcp-builder

124.2k

Guides building MCP servers enabling LLMs to interact with external services via tools. Covers best practices, TypeScript/Node (MCP SDK), Python (FastMCP).

9 files

anthropics-skills-13

Stats

Parent Repo Stars1854

Parent Repo Forks248

Last CommitMar 23, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Navan Incident Runbook

Overview

Structured incident response for Navan travel platform disruptions. Navan uses raw REST APIs with OAuth 2.0 — there is no SDK and no sandbox. All diagnostic commands run against production.

Prerequisites

Access to Navan admin console (Admin > Travel admin)
OAuth credentials (client_id, client_secret) stored in your secret manager
Familiarity with Navan's Ava AI assistant (in-app chat, first-line support)
curl and jq for API health probing

Instructions

Step 1 — Classify Severity

Severity	Condition	Response Time	Escalation
P1 — Critical	API fully down, all bookings failing	Immediate	Navan support + Ava AI + internal exec
P2 — High	Degraded performance, partial failures	15 minutes	Navan support + internal travel admin
P3 — Medium	Intermittent errors, expense sync delays	1 hour	Internal triage, monitor
P4 — Low	Cosmetic issues, non-blocking warnings	Next business day	Internal backlog

Step 2 — Triage with Ava AI

Before manual debugging, use Navan's built-in AI assistant:

Open the Navan app or visit app.navan.com
Click the Ava chat icon (bottom-right)
Describe the issue — Ava can check booking status, rebook flights, and surface known outages
If Ava cannot resolve, proceed to API health checks

Step 3 — API Health Check

# Test OAuth authentication
AUTH_RESPONSE=$(curl -s -w "\n%{http_code}" \
  -X POST "https://api.navan.com/ta-auth/oauth/token" \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -d "grant_type=client_credentials&client_id=$NAVAN_CLIENT_ID&client_secret=$NAVAN_CLIENT_SECRET")

HTTP_CODE=$(echo "$AUTH_RESPONSE" | tail -1)
BODY=$(echo "$AUTH_RESPONSE" | sed '$d')

echo "Auth endpoint: HTTP $HTTP_CODE"
echo "$BODY" | jq '{token_present: (.access_token != null), error: .error}' 2>/dev/null

# Test booking retrieval (requires valid token)
TOKEN=$(echo "$BODY" | jq -r '.access_token')
curl -s -w "\nHTTP %{http_code}" \
  -H "Authorization: Bearer $TOKEN" \
  "https://api.navan.com/v1/bookings?page=0&size=50" | tail -1

Step 4 — Incident-Specific Playbooks

Booking API Failure (P1/P2):

Confirm via API health check above — look for HTTP 500/503
Check if the issue is flight-specific or hotel-specific by testing both trip types
Direct travelers to Navan mobile app or phone support as fallback
Queue failed booking requests for retry with exponential backoff

OAuth Token Failure (P1):

Test with curl against /ta-auth/oauth/token — expect HTTP 200 with access_token field
If HTTP 401: credentials may be rotated; check Admin > Integrations
If HTTP 403: API access may be revoked; contact Navan admin
Re-request a token via POST /ta-auth/oauth/token with grant_type=client_credentials

Expense Sync Failure (P2/P3):

Check the Expense Transaction API status — this endpoint requires separate enablement
Verify your Fivetran/Airbyte connector status if using a data pipeline
Check TRANSACTION table freshness — incremental sync may be lagging
Validate that expense categories map correctly to your ERP

Flight Cancellation / Disruption (P2):

Use Ava AI to check rebooking options — Ava handles most rebookings automatically
Verify traveler's profile has correct loyalty program numbers
Check /v1/bookings for the affected booking UUID
Coordinate with travel admin for policy exception approvals if rebooking exceeds budget

Step 5 — Escalation Path

Level	Contact	When
L1	Ava AI assistant	Always start here
L2	Navan Help Center	Ava cannot resolve; app.navan.com/app/helpcenter
L3	Navan account manager	P1/P2 unresolved after 30 minutes
L4	Internal executive sponsor	Business-critical travel disruption

Step 6 — Post-Incident Review

After resolution, create a post-incident record:

cat > "incident-$(date +%Y%m%d-%H%M%S).md" <<'INCEOF'
## Incident Report
- **Severity**: P?
- **Duration**: Start — End
- **Impact**: Number of affected travelers/bookings
- **Root Cause**: (API outage / credential issue / sync failure / ...)
- **Resolution**: Steps taken
- **Prevention**: Changes to avoid recurrence
INCEOF

Output

Severity classification for the incident
API health check results confirming platform vs local issue
Executed playbook steps with outcomes
Escalation actions taken with timestamps
Post-incident report document

Error Handling

HTTP Code	Meaning	Runbook Action
401	Authentication failed	Check credential rotation; re-authenticate
403	Access denied	Verify API integration is enabled in admin
429	Rate limited	Back off; check `Retry-After` header value
500	Server error	Navan-side issue; escalate to L2/L3
502/503	Service unavailable	Platform outage; escalate immediately

Examples

Quick API status check during an incident:

# One-liner health probe
curl -s -o /dev/null -w "Auth: %{http_code} (%{time_total}s)\n" \
  -X POST "https://api.navan.com/ta-auth/oauth/token" \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -d "grant_type=client_credentials&client_id=$NAVAN_CLIENT_ID&client_secret=$NAVAN_CLIENT_SECRET"

Resources

Navan Help Center — Support portal and known issues
Navan Security — Infrastructure and compliance details
Navan Integrations — Connector status and documentation

Next Steps

Use navan-debug-bundle to collect full diagnostic data for support tickets
Use navan-prod-checklist to harden your integration against future incidents
Use navan-common-errors for detailed error code interpretation