oci-functions-troubleshoot
БесплатноБез исполняемых скриптовНе проверенDiagnose OCI Functions setup, control-plane, deployment, invocation, and observability issues using a deterministic triage workflow. Use when asked to classify
Об этом скилле
OCI Function Troubleshoot
Use this skill to isolate the most likely cause of an OCI Functions problem from error text, command output, or observability signals.
This skill is diagnosis-first and non-mutating by default:
- prefer read-only checks
- do not edit Fn context, log into Docker, create or update apps, redeploy, or change infrastructure unless the user explicitly asks to execute a fix
- if the user wants the fix executed, finish the diagnosis first and hand off mutating remediation to
$oci-functions-deploy
Output Contract
Always answer in this exact shape:
stage: one ofsetup_or_control_plane,create,deploy,invoke,observability_firstevidence: 1-3 concrete facts from the user's error text, command, config, logs, metrics, or limitsmost_likely_cause: one primary cause, or a ranked top-2 shortlist when confidence is lowconfidence:low,medium, orhighnext_confirming_check: the single best read-only check to narrow or confirm the causesmallest_safe_remediation: the least invasive next action; if evidence is weak, this can be "collect more evidence with ..."validation: the follow-up step that proves the remediation worked
Triage
- If the user provides an exact error string, start with
references/error-patterns.md. - Classify the issue from the failed action:
setup_or_control_plane: local Fn/OCI/OCIR/tooling/auth/context/policy problems before normal app or function operations succeedcreate: application creation failuresdeploy:fn deploy, image build or push,func.yaml, app config, subnet annotation, or registry-target failuresinvoke: runtime invocation, HTTP, image pull, timeout, memory, networking, detached delivery, or response-limit failures after a function has been deployedobservability_first: the user starts from logs, traces, metrics, limits, or "why is this function unhealthy?"
- If the stage is ambiguous:
- ask exactly one disambiguating question when a single missing fact would change the stage
- otherwise present the top 2 plausible stages in ranked order and continue with the best read-only confirming check
Minimum Facts
Capture the minimum facts before diagnosing:
- exact error text and HTTP status if present
- command or action that failed
- region, compartment/profile, app name, and function name if known
- whether the problem is local, deploy-time, invoke-time, or telemetry-first
- whether Fn CLI, OCI CLI, Docker, Logging, Monitoring, and Tracing access are available
Preferred Read-Only Checks
Prefer non-mutating checks when tooling is available:
fn inspect contextfn list appsfn inspect app <app-name>fn inspect function <app-name> <function-name>- read local
func.yaml - inspect environment values that can override expected behavior, especially
FN_REGISTRY - read logs, traces, metrics, and limits before recommending edits
- use
DEBUG=1orOCI_GO_SDK_DEBUG=vonly for additional diagnostic signal, not as a first fix
If tools or access are missing, stay docs-first:
- classify the failure from the error text
- use the phase reference file for likely causes
- use
references/error-patterns.mdwhen the text is the strongest clue
Workflow
Setup Or Control Plane
Use references/setup-and-runtime.md for:
- Fn CLI
401and404 - OCI key, passphrase, and private key format problems
- wrong region, compartment, endpoint, or app/function target
- IAM, policy, dynamic-group, or network-resource authorization failures
- Docker registry unauthorized failures
- stale or outdated CLI behavior
Start with read-only checks:
- inspect active Fn context values
- verify the intended OCI profile, compartment, and region match the failing target
- confirm the registry host derived from the context
- for
404, separate endpoint or name mismatches from IAM/policy or compartment-targeting issues before suggesting reconfiguration
Application Creation
Use references/create.md for create-time failures.
Focus on:
- documented service-limit style failures such as maximum application count
- whether the request is going to the intended compartment and region
- whether IAM or compartment targeting is wrong when the error is not clearly limit-shaped
- whether the smallest safe path is reuse, cleanup, or a limit increase request
Deployment
Use references/deploy.md for:
fn deployfailures- image build, push, or registry auth problems
func.yamlschema issues- wrong application context or missing subnet annotations
- architecture mismatch symptoms
- identity-domain or federated OCIR username issues
Check in this order:
- active Fn context and target app
- local
func.yaml - effective registry target, including
FN_REGISTRY - app annotations and subnet/network assumptions
- whether the failure is local build, image push, or service-side deploy
fn versionwhen architecture or stale-client symptoms are plausible
Invocation
Use references/invoke.md for:
- request or response size limits
- throttling, detached delivery, or event-triggered retries
- client disconnect, image pull, DNS, timeout, memory, syslog, security-attribute, or dynamic-group failures
- subnet, DHCP, resolver, or service-availability failures
Check in this order:
- exact HTTP code and service error text
- whether the error happens before code starts, during init, during execution, or after execution but before delivery completes
- logs first for code/runtime clues when available
- traces next when enabled and downstream timing or dependency timing is unclear
- metrics next for error rate, latency, concurrency, and invoke-type trends
- limits last when the symptom suggests capacity pressure or service ceilings
Observability First
Use references/observability.md when the user starts from symptoms instead of a single failing command.
Default observability sequence:
- Logs: determine whether the function ran and whether application logging is enabled
- Tracing: use traces when enabled and the missing clue is dependency timing, latency, or call path
- Metrics: distinguish execution failure, throttling, detached delivery, latency, and capacity pressure
- Limits: confirm whether create or invoke failures align with service limits
- Debug flags: use
DEBUG=1orOCI_GO_SDK_DEBUG=vonly when reproducing locally or when request/SDK details are still missing
Reference Map
- setup/control-plane issues:
references/setup-and-runtime.md - app creation issues:
references/create.md - deployment issues:
references/deploy.md - invocation issues:
references/invoke.md - logs, traces, metrics, limits, debug flags:
references/observability.md - exact strings to likely causes:
references/error-patterns.md - reusable prompt patterns:
references/example-prompts.md
Guardrails
- Diagnose and isolate first. Do not mutate local context, Docker auth, app config, deployed state, or infrastructure unless the user explicitly asks to execute a fix.
- If the user asks to execute the fix, complete the diagnosis summary first and hand off mutating repair work to
$oci-functions-deploy. - Do not start with mutating fixes when a read-only check can narrow the cause.
- Do not assume a
404is only an endpoint or name problem; treat IAM, policy, compartment targeting, dynamic groups, and network-resource authorization as first-class alternatives. - Do not assume a deploy issue is code-related until registry, app, client version, and network context are checked.
- Do not assume an invoke issue is platform-related until logs, traces, and metrics are checked.
- Treat
FN_REGISTRY, active Fn context, app annotations, tracing availability, and service limits as common hidden causes. - If the user gives only a partial symptom, ask for the exact error text or failing command before escalating to broad remediation.
- When evidence is partial, prefer a ranked shortlist of plausible causes over a single overconfident ro
Установить oci-functions-troubleshoot в Claude Code и Claude Desktop
Зарегайся, чтобы установить скилл
Создай бесплатный аккаунт, чтобы открыть команду установки и сохранить скилл в библиотеку.
- Открой команду установки в одну строку
- Сохраняй скиллы в синхронизируемую библиотеку
- Уведомления, когда скиллы обновляются
Разрешённые инструменты
Инструменты, которые скиллу разрешено вызывать.
Без ограничений — скилл может использовать любой инструмент.
Вложенные файлы
FAQ
Что делает скилл oci-functions-troubleshoot?
Diagnose OCI Functions setup, control-plane, deployment, invocation, and observability issues using a deterministic triage workflow. Use when asked to classify Fn CLI errors, deploy or invoke failures, OCIR auth and registry issues, app-limit symptoms, logs, tracing, metrics, or limits. Diagnose first, prefer read-only checks, and do not execute fixes unless the user explicitly asks.
Как установить скилл oci-functions-troubleshoot?
Скопируй папку скилла в ~/.claude/skills (вкладка Claude Code выше делает это одной командой), либо поставь как плагин.
Скилл oci-functions-troubleshoot запускает скрипты?
Нет, скилл состоит только из инструкций (SKILL.md), без исполняемых скриптов.
Похожие скиллы
Webapp Testing
Drive and test web apps with a real browser
от Anthropicdeploy-to-vercel
Deploy applications and websites to Vercel. Use when the user requests deployment actions like "deploy my app", "deploy and give me the link", "push this live",
от Vercelvercel-cli-with-tokens
Deploy and manage projects on Vercel using token-based authentication. Use when working with Vercel CLI using access tokens rather than interactive login — e.g.
от Vercelgha-security-review
GitHub Actions security review for workflow exploitation vulnerabilities. Use when asked to "review GitHub Actions", "audit workflows", "check CI security", "GH
от Sentry