40 plugins for Docker Compose development
Dockerize Node/Python/PHP/Go apps by generating optimized multi-stage Dockerfiles, docker-compose.yaml, .dockerignore, and .env files; provision secure, persistent PostgreSQL/MySQL/MongoDB/Redis containers with health checks; configure SSL/TLS proxies via Traefik or Nginx; diagnose and fix container failures, networking, permissions, and port issues using logs and docs.
Master Docker across Windows/Linux/macOS: build/run/debug/optimize containers, create/review Dockerfiles, manage Compose apps, secure with ECI/SBOM, fix Git Bash path mounts, leverage Engine 28 features and 2025 best practices for production deployments.
Orchestrate self-hosted homelab services: run interactive credential setup wizards for Plex, Radarr, Sonarr, Tailscale; view unified health dashboards; manage Docker containers, ZFS pools, torrents, media libraries, backups, and VPNs via natural language skills, commands, and agents.
Audit PHP codebases for DDD/CQRS/SOLID compliance, security risks, performance issues, and Docker/CI-CD setups; generate patterns like aggregates, event stores, middleware, tests; optimize pipelines and deployments with coordinated agents for production-ready apps.
Bundle deploys production AWS serverless apps with Lambda, API Gateway, DynamoDB; optimizes Docker containers and Compose files; architects Kubernetes clusters with GitOps; provisions IaC via Terraform/Pulumi on AWS/GCP; automates Linux/Bash scripting; sets up cross-platform dev environments; executes 5-phase deployment workflows with checklists for Vercel/Netlify/Cloudflare.
Automatically capture decisions, conventions, patterns, and issues from git commits, pushes, PRs, conversations, and code changes into a searchable markdown knowledge graph in docs/. Query the living ontology for project insights via search and wikilinks, and verify/update docs against current codebase.
Automatically reproduces vulnerabilities from Markdown reports on target URLs, Docker Compose setups, or code paths using AI-orchestrated agents. Sets up real/mock environments, performs two-round pentesting with Playwright browser automation and API requests, strictly validates evidence like screenshots/HTTP logs/RCE outputs, and generates PoC scripts plus standardized reports.
Audit codebases for 12-Factor App and Agent compliance, providing ratings, evidence from files, gaps, and recommendations. Extract decisions from conversations to generate MADR ADRs. Brainstorm raw ideas into detailed project specs. Compare git repos via LLM-as-judge scoring on functionality, security, tests, and overengineering.
Enforce configurable-rigor development workflows across 26 skills: spec-before-code planning, adversarial reviews, TDD enforcement, formal modeling, security audits, PR maintenance, safe refactors, releases, postmortems, and health metrics dashboards, gated by project intensity (standard/high/critical). Invoke via slash commands like /cspec, /ctdd, /creview anytime in any codebase.
Investigate observability stacks by querying traces, logs, and metrics in OpenSearch with PPL and Prometheus with PromQL, correlating via OTel conventions from metric spikes to error logs, checking component health, and defining SLOs/SLIs.
Optimize Docker images for Go, Node.js, Python with multi-stage builds and minimal bases; develop secure containers following 12-factor principles; configure Skaffold for Kubernetes local dev with file sync, OrbStack integration, image testing via Grype/Trivy; build/debug images; generate deployment handoffs and GitHub releases.
Run syncable CLI skills to analyze project tech stacks and monorepos, audit dependencies for CVEs/licenses/copyleft, scan code for secrets/vulnerabilities/insecure patterns, validate IaC (Dockerfiles/Compose/Terraform/K8s manifests), optimize K8s clusters for cost/resources, and execute secure deployments to GCP/Azure with audits.