Stats
Actions
Tags
From webflow-pack
Executes Webflow Data API v2 production checklist: token security, rate limit handling, health checks, monitoring, tests, and rollback procedures. Use before deploying integrations to production.
How this skill is triggered — by the user, by Claude, or both
Slash command
/webflow-pack:webflow-prod-checklistThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Complete pre-deployment checklist for Webflow Data API v2 integrations, covering
Complete pre-deployment checklist for Webflow Data API v2 integrations, covering authentication, error handling, rate limits, monitoring, and rollback.
grep -r "Bearer " src/ returns nothingmaxRetries configured, bulk endpoints usedoffset/limit correctlyverifyWebhookSignature() on every webhook// api/health.ts
import { WebflowClient } from "webflow-api";
export async function GET() {
const webflow = new WebflowClient({
accessToken: process.env.WEBFLOW_API_TOKEN!,
});
const checks: Record<string, any> = {};
const start = Date.now();
try {
const { sites } = await webflow.sites.list();
checks.webflow = {
status: "connected",
sites: sites?.length || 0,
latencyMs: Date.now() - start,
};
} catch (error: any) {
checks.webflow = {
status: "disconnected",
error: error.statusCode || error.message,
latencyMs: Date.now() - start,
};
}
const healthy = checks.webflow.status === "connected";
return Response.json(
{
status: healthy ? "healthy" : "degraded",
services: checks,
timestamp: new Date().toISOString(),
},
{ status: healthy ? 200 : 503 }
);
}
class WebflowCircuitBreaker {
private failures = 0;
private lastFailure = 0;
private state: "closed" | "open" | "half-open" = "closed";
constructor(
private threshold = 5, // failures before opening
private resetTimeMs = 60000 // time before trying again
) {}
async execute<T>(operation: () => Promise<T>): Promise<T> {
if (this.state === "open") {
if (Date.now() - this.lastFailure > this.resetTimeMs) {
this.state = "half-open";
} else {
throw new Error("Circuit breaker is open — Webflow API unavailable");
}
}
try {
const result = await operation();
this.onSuccess();
return result;
} catch (error: any) {
this.onFailure();
throw error;
}
}
private onSuccess() {
this.failures = 0;
this.state = "closed";
}
private onFailure() {
this.failures++;
this.lastFailure = Date.now();
if (this.failures >= this.threshold) {
this.state = "open";
console.error(`Circuit breaker OPEN after ${this.failures} failures`);
}
}
}
const breaker = new WebflowCircuitBreaker();
// Usage
const sites = await breaker.execute(() => webflow.sites.list());
| Alert | Condition | Severity |
|---|---|---|
| API unreachable | Health check fails 3x consecutive | P1 |
| Auth failure | Any 401 or 403 response | P1 |
| High error rate | Error rate > 5% over 5 min | P2 |
| Rate limited | 429 responses > 5/min | P2 |
| High latency | P95 > 3000ms | P3 |
| Token expiring | Token age > 90 days (rotation schedule) | P3 |
async function getContentWithFallback(
collectionId: string,
cachedData: any[]
): Promise<any[]> {
try {
const { items } = await breaker.execute(() =>
webflow.collections.items.listItemsLive(collectionId)
);
// Update cache on success
await updateCache(collectionId, items);
return items || [];
} catch (error) {
console.warn("Webflow unavailable, serving cached content");
return cachedData;
}
}
#!/bin/bash
echo "=== Webflow Production Pre-Flight ==="
# 1. Token works
HTTP=$(curl -s -o /dev/null -w "%{http_code}" \
-H "Authorization: Bearer $WEBFLOW_API_TOKEN" \
https://api.webflow.com/v2/sites)
echo "Token valid: $([ "$HTTP" = "200" ] && echo "YES" || echo "NO (HTTP $HTTP)")"
# 2. Webflow platform status
STATUS=$(curl -s https://status.webflow.com/api/v2/status.json | \
python3 -c "import sys,json; print(json.load(sys.stdin)['status']['description'])" 2>/dev/null)
echo "Webflow status: ${STATUS:-unknown}"
# 3. Rate limit headroom
curl -s -I -H "Authorization: Bearer $WEBFLOW_API_TOKEN" \
https://api.webflow.com/v2/sites 2>/dev/null | \
grep -i "x-ratelimit-remaining" || echo "Rate limit headers not available"
# 4. Health endpoint
HEALTH=$(curl -s -o /dev/null -w "%{http_code}" https://your-app.com/api/health)
echo "Health endpoint: HTTP $HEALTH"
# Immediate rollback steps:
# 1. Revert to previous deployment
vercel rollback # Vercel
fly releases # Fly.io — find previous release
fly deploy --image registry/app:previous-tag # Fly.io
# 2. If using feature flags, disable Webflow integration
# 3. Monitor error rates for resolution
| Issue | Response | Severity |
|---|---|---|
| Token revoked in production | Rotate immediately, restart pods | P1 |
| Webflow outage | Circuit breaker opens, serve cache | P2 |
| Rate limit exhaustion | Queue backs up, requests delayed | P2 |
| Webhook delivery failures | Check ngrok/tunnel, verify URL | P3 |
For version upgrades, see webflow-upgrade-migration.
npx claudepluginhub jeremylongshore/claude-code-plugins-plus-skills --plugin webflow-packConfigures Webflow Data API v2 for dev, staging, prod environments with per-env tokens, site IDs, and Vault/AWS/GCP secret management. Includes TypeScript config loader.
Provides production readiness checklist for Figma REST API integrations covering authentication, error handling, rate limits, monitoring, and health checks.
Executes Documenso production deployment checklist for integrations: auth/secrets, errors, performance, monitoring, webhooks, compliance, self-hosted PostgreSQL/K8s.