Skill

service-mesh-patterns

Implement service mesh patterns for observability, resilience, and traffic management. Use when managing complex microservices communication at scale.

From system-design

Install

Run in your terminal

npx claudepluginhub sethdford/claude-skills --plugin architect-system-design

Tool Access

This skill uses the workspace's default tool permissions.

Skill Content

Similar Skills

cache-components

Guides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.

cache-components

138.6k

claude-opus-4-5-migration

2 files

Migrates code, prompts, and API calls from Claude Sonnet 4.0/4.5 or Opus 4.1 to Opus 4.5, updating model strings on Anthropic, AWS, GCP, Azure platforms.

claude-opus-4-5-migration

83.2k

evaluation-methodology

1 file

Details PluginEval's skill quality evaluation: 3 layers (static, LLM judge), 10 dimensions, rubrics, formulas, anti-patterns, badges. Use to interpret scores, improve triggering, calibrate thresholds.

plugin-eval

32.9k

Stats

Parent Repo Stars3

Parent Repo Forks0

Last CommitMar 11, 2026

Actions

View Source View Plugin View on GitHub View README

Domain Context

Based on Istio/Linkerd reference implementations and distributed systems research:

Sidecar Proxy: Per-service proxy handling network concerns (retries, circuit breaking, auth)

Control Plane: Centralized configuration of routing, security, observability

Mutual TLS: Encrypted, authenticated service-to-service communication by default

Traffic Management: Canary deployments, retries, timeouts, load balancing

Observability: Distributed tracing, metrics collection, access logs

Instructions

Assess Mesh Necessity: Service mesh adds complexity. Evaluate: are you managing >10 services? Do you need fine-grained traffic control? Do you have mTLS requirements? If yes to 2+, mesh may help.

Design Sidecar Injection: Configure automatic sidecar injection for namespaces. Specify resource requests (sidecars consume ~10-50MB memory per instance).

Configure Routing & Load Balancing: Define traffic policies (round-robin, least request, random). For canary deployments, specify traffic split (90% stable, 10% canary).

Implement Resilience Policies: For each service-to-service communication, specify:

Retry policy (max 3 attempts, backoff)
Timeout (2s)
Circuit breaker (fail if error rate > 50%)

Enable Observability: Configure telemetry collection. Send metrics to Prometheus, traces to Jaeger. Define dashboards for request latency, error rate, saturation.

Anti-Patterns

Mesh Without Observability: Adds sidecar proxies but no metrics/tracing. Result: can't debug why requests fail. Guard: Require metrics and tracing before deploying mesh.

Mesh for Small Scale: Added 10 sidecars and control plane for 5 services. Result: complexity exceeds benefit. Guard: Mesh ROI positive at >10 services.

Ignoring Sidecar Overhead: Assumes no performance impact. Result: latency increase and memory bloat. Guard: Measure p95 latency before/after mesh; set acceptable overhead budget.

mTLS Everywhere Immediately: Breaks debugging and testing. Result: developers can't test locally without mesh. Guard: Enable mTLS gradually; provide options to bypass for dev.

Domain Context

Based on Istio/Linkerd reference implementations and distributed systems research:

Sidecar Proxy: Per-service proxy handling network concerns (retries, circuit breaking, auth)

Control Plane: Centralized configuration of routing, security, observability

Mutual TLS: Encrypted, authenticated service-to-service communication by default

Traffic Management: Canary deployments, retries, timeouts, load balancing

Observability: Distributed tracing, metrics collection, access logs

Instructions

Assess Mesh Necessity: Service mesh adds complexity. Evaluate: are you managing >10 services? Do you need fine-grained traffic control? Do you have mTLS requirements? If yes to 2+, mesh may help.

Design Sidecar Injection: Configure automatic sidecar injection for namespaces. Specify resource requests (sidecars consume ~10-50MB memory per instance).

Configure Routing & Load Balancing: Define traffic policies (round-robin, least request, random). For canary deployments, specify traffic split (90% stable, 10% canary).

Implement Resilience Policies: For each service-to-service communication, specify:

Retry policy (max 3 attempts, backoff)
Timeout (2s)
Circuit breaker (fail if error rate > 50%)

Enable Observability: Configure telemetry collection. Send metrics to Prometheus, traces to Jaeger. Define dashboards for request latency, error rate, saturation.

Anti-Patterns

Mesh Without Observability: Adds sidecar proxies but no metrics/tracing. Result: can't debug why requests fail. Guard: Require metrics and tracing before deploying mesh.

Mesh for Small Scale: Added 10 sidecars and control plane for 5 services. Result: complexity exceeds benefit. Guard: Mesh ROI positive at >10 services.

Ignoring Sidecar Overhead: Assumes no performance impact. Result: latency increase and memory bloat. Guard: Measure p95 latency before/after mesh; set acceptable overhead budget.

mTLS Everywhere Immediately: Breaks debugging and testing. Result: developers can't test locally without mesh. Guard: Enable mTLS gradually; provide options to bypass for dev.

service-mesh-patterns

service-mesh-patterns

Service Mesh Patterns

Context

Domain Context

Instructions

Anti-Patterns

Further Reading

Service Mesh Patterns

Context

Domain Context

Instructions

Anti-Patterns

Further Reading