Skillget

si-coder-agent

agent
Security Audit
Fail
Health Warn
  • License — License: MIT
  • Description — Repository has a description
  • Active repo — Last push 0 days ago
  • Low visibility — Only 6 GitHub stars
Code Fail
  • fs module — File system access in bin/onboard.js
  • child_process — Shell command execution capability in lib/convex-cloud.js
  • process.env — Environment variable access in lib/convex-cloud.js
  • fs module — File system access in lib/convex-cloud.js
  • network request — Outbound network request in lib/convex-cloud.js
  • process.env — Environment variable access in lib/convex.js
  • network request — Outbound network request in lib/convex.js
  • crypto private key — Private key handling in lib/convex.js
  • network request — Outbound network request in lib/dokploy.js
  • exec() — Shell command execution in lib/env.js
  • os.homedir — User home directory access in lib/env.js
  • process.env — Environment variable access in lib/env.js
  • fs module — File system access in lib/env.js
  • child_process — Shell command execution capability in lib/github.js
  • fs.rmSync — Destructive file system operation in lib/github.js
  • fs module — File system access in lib/github.js
  • network request — Outbound network request in lib/github.js
  • network request — Outbound network request in lib/hostinger.js
  • child_process — Shell command execution capability in lib/proc.js
  • spawnSync — Synchronous process spawning in lib/proc.js
  • process.env — Environment variable access in lib/proc.js
  • network request — Outbound network request in lib/tls.js
  • network request — Outbound network request in lib/vercel.js
Permissions Pass
  • Permissions — No dangerous permissions requested

No AI report is available for this listing yet.

SUMMARY

Zero-human full-stack deployment skill bundle for AI agents — GitHub + Dokploy + Convex (self-hosted & Cloud) + Vercel + Hostinger DNS, via modular /sc-* slash commands.

README.md

SI Coder Agent

Zero-human full-stack deployment as a bundle of /sc-* Claude Code slash commands — GitHub, Convex, Dokploy, Vercel, and DNS, all driven by an AI agent.

License: MIT
Node
Skills
Claude Code

SI Coder Agent is a modular set of /sc-* slash commands for Claude Code (and any agent that loads Skills) that take a local Next.js + Convex app from source to a live, verified URL with zero human steps. It creates the GitHub repo, pushes code, provisions the backend and frontend, wires up DNS, triggers the build, and polls until the site responds. Built for solo developers and agents who want to ship full stacks without clicking through dashboards. No runtime dependencies — just Node 18+ and your API tokens.

Two deploy paths

Both paths share the same flow shapeGitHub → backend → frontend → DNS → verify — and are driven by the same orchestrator. Pick by where you want things to run:

(A) Self-hosted (B) Online
Command /sc-all --target dokploy (default) /sc-all --target vercel
Frontend Dokploy app (your VPS) Vercel
Backend Convex self-hosted (Docker Compose on Dokploy) Convex Cloud (managed)
DNS Hostinger A-record → VPS Hostinger CNAME (sub) / A (apex) → Vercel
Pick when You own the box, want full control, $0 marginal cost You want a managed edge, no VPS to babysit

Skill catalog

After bash install.sh, these slash commands are available. Implemented commands do the work; stubs are boilerplate and exit with code 2 until someone fills them in (contributions welcome).

Command Status What it does Key env
/sc-all Orchestrator — end-to-end deploy; --target dokploy|vercel GITHUB_TOKEN + path env (below)
/sc-dokploy Dokploy CRUD/audit/debug: projects, apps, compose, domains, stale-domain audit DOKPLOY_API_URL, DOKPLOY_API_KEY
/sc-convex Convex self-hosted on Dokploy: deploy, rotate admin key, JWT auth env, probe api-/site-/dash- DOKPLOY_* (+ admin key)
/sc-convex-cloud Convex Cloud (managed) deploy; coupled build injects NEXT_PUBLIC_CONVEX_URL, probe *.convex.cloud CONVEX_DEPLOY_KEY
/sc-vercel Vercel online frontend: GitHub-bound project, Convex-coupled build, custom domain/subdomain, Hostinger DNS VERCEL_TOKEN (+VERCEL_TEAM_ID opt), CONVEX_DEPLOY_KEY, HOSTINGER_API_TOKEN (opt)
/sc-git GitHub repo CRUD + Actions cost reduction: audit burn, disable YAML, local CI, pre-push hook, self-hosted runner, commit status, VPS cron GITHUB_TOKEN
/sc-onboarding Credential wizard — scans env, asks only for missing, writes ~/.bashrc (merge-in-place). Non-AI: node bin/onboard.js
/sc-cf 🚧 stub Cloudflare — DNS A/AAAA/CNAME (Hostinger alt), Workers/Pages, R2, Zero Trust tunnel
/sc-stripe 🚧 stub Payments — products/prices, webhooks, customer portal, restricted keys
/sc-resend 🚧 stub Email — domain verify (DKIM/SPF/DMARC), API keys, template send
/sc-clerk 🚧 stub Auth (alt) — origins, JWT template for Convex, paired with Clerk MCP
/sc-supabase 🚧 stub Backend (alt) — project provision, migrations, edge functions, types gen

Quick start

git clone https://github.com/rahmanef63/si-coder-agent.git
cd si-coder-agent
bash install.sh        # symlinks skills/sc-* into ~/.claude/skills/
node bin/onboard.js    # interactive credential setup (non-AI)
source ~/.bashrc

Driving via an AI agent instead? Just run /sc-onboarding — it scans your env, asks only for what's missing, and writes ~/.bashrc.

Deploy — self-hosted (Dokploy + Convex self-hosted):

# Orchestrated (default target is dokploy):
/sc-all --target dokploy

# Or just the Convex self-hosted backend, standalone:
node skills/sc-convex/scripts/deploy-convex.js \
  --project myproj --app myapp --domain myapp.example.com --with-auth-keys

Deploy — online (Vercel + Convex Cloud):

# 1. Backend (Convex Cloud) — coupled build injects NEXT_PUBLIC_CONVEX_URL
node skills/sc-convex-cloud/scripts/deploy-cloud.js

# 2. Frontend (Vercel) + custom domain + Hostinger DNS + deploy
node skills/sc-vercel/scripts/deploy.js \
  --project myapp --app myapp --domain app.example.com \
  --git-owner rahmanef63 --git-repo myapp --prod

# Or orchestrated — runs both, skips Dokploy + self-hosted Convex:
/sc-all --target vercel

The Vercel build command is set to npx convex deploy --cmd 'npm run build' --cmd-url-env-var-name NEXT_PUBLIC_CONVEX_URL. DNS is CNAME → cname.vercel-dns.com for a subdomain, A → 76.76.21.21 for an apex (always read live from Vercel's domain config).

Legacy one-shot (monolith, still functional):

node scripts/deploy.js \
  "$DOKPLOY_API_URL" "$DOKPLOY_API_KEY" "<PROJECT>" "<APP>" "$GITHUB_TOKEN" "<DOMAIN>"

Architecture

Each /sc-* skill is a SKILL.md + scripts/ folder. All scripts share thin REST clients in lib/. CommonJS, Node 18+ native fetch, no runtime deps.

si-coder-agent/
├── SKILL.md           umbrella; points to sc-*
├── README.md
├── .env.example
├── install.sh         symlinks skills/sc-* into ~/.claude/skills/
├── lib/
│   ├── dokploy.js       Dokploy REST client + CRUD helpers
│   ├── github.js        GitHub REST + git push helpers
│   ├── hostinger.js     Hostinger DNS A/CNAME-record sync
│   ├── convex.js        admin key / schema deploy / JWT keys / probe
│   ├── convex-cloud.js  Convex Cloud deploy / URL derive / probe
│   ├── vercel.js        Vercel REST client + deploy/domain/DNS helpers
│   ├── proc.js          no-shell execFileSync wrappers
│   ├── tls.js           TLS verification helpers (always on)
│   └── env.js           env-string parse, merge, .bashrc append
├── skills/
│   ├── sc-all/SKILL.md
│   ├── sc-dokploy/
│   │   ├── SKILL.md
│   │   └── scripts/{_shared,projects,apps,compose,domains,audit,debug}.js
│   ├── sc-convex/
│   │   ├── SKILL.md
│   │   └── scripts/{deploy-convex,check-backend,rotate-admin-key,set-auth-env}.js
│   ├── sc-convex-cloud/
│   │   ├── SKILL.md
│   │   └── scripts/{deploy-cloud,check-cloud}.js
│   ├── sc-vercel/
│   │   ├── SKILL.md
│   │   └── scripts/{_shared,deploy}.js
│   ├── sc-git/SKILL.md + scripts/
│   ├── sc-onboarding/
│   │   ├── SKILL.md
│   │   ├── scripts/scan-env.js
│   │   └── steps/{github,dokploy,convex,convex-cloud,hostinger,cf,stripe,resend,clerk,vercel,supabase}.md
│   └── sc-{cf,stripe,resend,clerk,supabase}/   STUBS — boilerplate only
├── scripts/
│   └── deploy.js      legacy monolith (still functional)
└── bin/
    └── onboard.js     one-shot CLI wizard

Security

All sc-* skills were hardened 2026-06-14:

  • No shell — every external call uses execFileSync (no sh -c), so no command injection.
  • TLS always verified — never disabled, even for self-signed probes.
  • No secret leaks — tokens never appear in logs, build args, or git URLs.
  • 0600 secret files — credential files are written owner-read/write only.
  • Shell-safe ~/.bashrc — values are single-quote escaped and merged in place.

Core mandates (shared across all sc-*)

  1. Self-hosted Convex by default — never silently swap to Clerk. Use @convex-dev/auth.
  2. convex/_generated committed — never run codegen inside the Dockerfile.
  3. npm install --yes --legacy-peer-deps — no interactive prompts.
  4. Idempotency — duplicate domain create = no-op.
  5. Admin key sync — Dokploy compose env + repo env file always match.
  6. Preserve your Dokploy control host (the one in DOKPLOY_API_URL) — never rename it inside any script.
  7. Clerk MCP for Clerk appsclerk at https://mcp.clerk.com/mcp.
  8. Exact cloning — replicate site layout, not a generic admin dashboard.

Adding a new /sc-* domain

  1. mkdir skills/sc-<name>/{scripts}
  2. Write skills/sc-<name>/SKILL.md with frontmatter name: sc-<name> + description:.
  3. Put scripts under skills/sc-<name>/scripts/*.js. Import shared utils from ../../../lib/.
  4. Add domain-required vars to skills/sc-onboarding/scripts/scan-env.jsDOMAIN_VARS.
  5. Add a validator to bin/onboard.jsVALIDATORS.
  6. Add a step doc at skills/sc-onboarding/steps/<name>.md.
  7. Edit install.sh → add link_skill "sc-<name>".
  8. Re-run bash install.sh.

FAQ

Q: Site stuck loading? Check your Dockerfile uses ARG NEXT_PUBLIC_CONVEX_URL=<real-url>, not a dummy.

Q: Vercel build succeeds but app can't reach Convex Cloud? The build command must be the coupled npx convex deploy --cmd 'npm run build' --cmd-url-env-var-name NEXT_PUBLIC_CONVEX_URL so the live deployment URL is injected at build time. /sc-vercel sets this for you.

Q: Convex dashboard 401/404? Run /sc-convexrotate-admin-key.js. The admin key now lives in Dokploy compose env.

Q: Dokploy shows old *.traefik.me domains? Run node skills/sc-dokploy/scripts/audit.js --fix.

Q: "Connection lost while action was in flight"? See skills/sc-convex/SKILL.md — five common causes for self-hosted Dokploy.

Q: npx convex env set JWT_PRIVATE_KEY errors on --? Use skills/sc-convex/scripts/set-auth-env.js (REST API) instead.

License

MIT — Created by Rahman EF.

Reviews (0)

No results found