Setup
On first use, read setup.md for integration guidelines.
If local memory is needed, ask for consent before creating ~/render-deploy/.
When to Use
Use this skill when the user wants to deploy, publish, or host an application on Render and needs reliable deployment execution instead of generic advice. Activate for render.yaml Blueprint generation, MCP direct service creation, runtime configuration checks, and post-deploy triage.
Architecture
Memory lives in ~/render-deploy/. See memory-template.md for setup.
CODEBLOCK0
Quick Reference
Load only the minimum file needed for the current request.
| Topic | File |
|---|
| Setup process | INLINECODE4 |
| Memory template |
memory-template.md |
| Codebase detection and commands |
codebase-analysis.md |
| Blueprint workflow and render.yaml rules |
blueprint-workflow.md |
| Authentication and MCP execution mapping |
direct-creation.md |
| Startup and healthcheck troubleshooting |
troubleshooting.md |
Authentication Model
Before any provisioning command, confirm one of these is active:
- -
RENDER_API_KEY is exported in the shell, or - Render CLI is authenticated (
render whoami -o json)
For git-backed flows, require git and a valid remote URL. Do not attempt opaque credential discovery or unrelated environment inspection.
Core Rules
1. Classify the Deployment Path First
Before proposing commands, decide which path applies:
- - Git-backed deploy (Blueprint or Direct Creation)
- Prebuilt Docker image deploy via Dashboard/API
If the repository has no remote, stop and ask the user to push a remote or switch to dashboard image deploy.
2. Choose Method by Complexity, Not Preference
Default decision:
- - Direct Creation when it is one simple service and no extra infra
- Blueprint when there are multiple services, datastores, cron, workers, or reproducibility requirements
If uncertainty remains, ask one clarifying question and continue.
3. Verify Prerequisites Before Any Deploy Action
Run checks in this order:
- -
git remote -v for source availability - MCP availability (
list_services()) - CLI fallback readiness (
render --version, render whoami -o json) - Active workspace context (MCP or CLI)
- Authentication presence (
RENDER_API_KEY or authenticated CLI session)
Do not proceed to deployment steps when prerequisites are missing.
4. Treat render.yaml as Executable Infrastructure
When using Blueprint:
- - Declare all required env vars
- Mark user-provided secrets with �INLINECODE19
- Prefer
plan: free unless user requests another plan - Match service type and runtime to the actual app behavior
After creating the file, validate before push.
5. Require Push Before Deeplink Handoff
Before sharing a Render Blueprint deeplink, confirm
render.yaml is committed and pushed to the remote branch. If not pushed, the Dashboard flow will fail to discover the configuration.
6. Verify the Deployment and Close With Evidence
After deployment:
- - Confirm latest deploy status is live
- Check health endpoint response
- Review recent error logs
- Validate required env vars and port binding (
0.0.0.0:$PORT)
If failures exist, run one-fix-at-a-time triage from troubleshooting.md.
Common Traps
- - Starting deploy without a git remote -> Blueprint and MCP git-backed flows fail immediately.
- Picking Direct Creation for multi-service systems -> Missing workers/datastores and fragmented setup.
- Forgetting
sync: false on secrets -> Broken deploys or accidental secret exposure in config. - Using localhost binding instead of
0.0.0.0:$PORT -> Health checks fail even when process is running. - Redeploying repeatedly without root-cause fix -> Noisy failures and delayed resolution.
External Endpoints
| Endpoint | Data Sent | Purpose |
|---|
| https://dashboard.render.com | Repository URL, service config, env key names | Blueprint apply flow and dashboard provisioning |
| https://mcp.render.com |
Service creation/config requests and workspace-scoped metadata | MCP direct provisioning |
| https://api.render.com | Deployment metadata, logs, service status (via CLI/API) | Validation and operational checks |
No other endpoints should be used unless the user requests an explicit integration.
Security & Privacy
Data that leaves your machine:
- - Repository URL and deployment metadata sent to Render services.
- Environment variable names and provided values when the user explicitly sets them.
Data that stays local:
- - Preferences and deployment history in
~/render-deploy/ if the user accepts memory. - Local codebase inspection outputs and interim analysis notes.
This skill does NOT:
- - Read unrelated credentials outside the deployment context.
- Scrape credentials from shell history, dotfiles, or unrelated config paths.
- Send project files to undeclared third-party endpoints.
- Run destructive infrastructure changes without explicit confirmation.
Trust
By using this skill, deployment metadata and selected configuration are sent to Render services. Only use it if you trust Render with this operational data.
Related Skills
Install with
clawhub install <slug> if user confirms:
- -
deploy - General deployment planning and release execution. - INLINECODE29� - CI/CD, infrastructure workflows, and ops coordination.
- INLINECODE30� - Container packaging and runtime configuration.
- INLINECODE31� - Pipeline automation and release validation stages.
- INLINECODE32� - Runtime-specific app configuration and startup tuning.
Feedback
- - If useful: �INLINECODE33
- Stay updated: �INLINECODE34
设置
首次使用时,请阅读 setup.md 了解集成指南。
如果需要本地存储,请在创建 ~/render-deploy/ 前征得用户同意。
使用时机
当用户希望在 Render 上部署、发布或托管应用程序,并且需要可靠的部署执行而非通用建议时,使用此技能。适用于 render.yaml 蓝图生成、MCP 直接服务创建、运行时配置检查以及部署后故障排查。
架构
数据存储在 ~/render-deploy/ 中。请参阅 memory-template.md 了解设置方法。
text
~/render-deploy/
|- memory.md # 稳定的偏好设置和集成选择
|- deployment-notes.md # 项目级部署决策
|- env-inventory.md # 所需环境变量及其真实来源
- - incident-log.md # 部署失败记录及已解决的修复方案
快速参考
仅加载当前请求所需的最小文件。
memory-template.md |
| 代码库检测与命令 | codebase-analysis.md |
| 蓝图工作流与 render.yaml 规则 | blueprint-workflow.md |
| 身份验证与 MCP 执行映射 | direct-creation.md |
| 启动与健康检查故障排除 | troubleshooting.md |
身份验证模型
在执行任何配置命令之前,请确认以下条件之一已激活:
- - 在 shell 中导出了 RENDERAPIKEY,或
- Render CLI 已通过身份验证(render whoami -o json)
对于基于 Git 的工作流,需要 git 和一个有效的远程 URL。不要尝试不透明的凭据发现或无关的环境检查。
核心规则
1. 首先分类部署路径
在提出命令之前,决定适用哪种路径:
- - 基于 Git 的部署(蓝图或直接创建)
- 通过仪表盘/API 部署预构建的 Docker 镜像
如果仓库没有远程地址,请停止并提示用户推送远程地址或切换到仪表盘镜像部署。
2. 根据复杂度选择方法,而非偏好
默认决策:
- - 当只有一个简单服务且没有额外基础设施时,使用直接创建
- 当有多个服务、数据存储、定时任务、工作进程或需要可重复性时,使用蓝图
如果仍有不确定性,提出一个澄清性问题后继续。
3. 在任何部署操作前验证先决条件
按此顺序运行检查:
- - git remote -v 检查源码可用性
- MCP 可用性(listservices())
- CLI 回退准备情况(render --version,render whoami -o json)
- 活跃的工作区上下文(MCP 或 CLI)
- 身份验证存在(RENDERAPI_KEY 或已认证的 CLI 会话)
当先决条件缺失时,不要继续部署步骤。
4. 将 render.yaml 视为可执行基础设施
使用蓝图时:
- - 声明所有必需的环境变量
- 将用户提供的密钥标记为 sync: false
- 除非用户要求其他方案,否则优先使用 plan: free
- 将服务类型和运行时与实际应用行为匹配
创建文件后,在推送前进行验证。
5. 在深度链接交接前要求推送
在分享 Render 蓝图深度链接之前,确认 render.yaml 已提交并推送到远程分支。如果未推送,仪表盘流程将无法发现配置。
6. 验证部署并提供证据后关闭
部署后:
- - 确认最新部署状态为运行中
- 检查健康端点响应
- 查看最近的错误日志
- 验证所需的环境变量和端口绑定(0.0.0.0:$PORT)
如果存在失败,从 troubleshooting.md 中逐一运行修复排查。
常见陷阱
- - 在没有 git 远程的情况下开始部署 -> 蓝图和 MCP 基于 Git 的工作流立即失败。
- 为多服务系统选择直接创建 -> 缺少工作进程/数据存储,配置碎片化。
- 忘记在密钥上设置 sync: false -> 部署损坏或配置中意外暴露密钥。
- 使用 localhost 绑定而非 0.0.0.0:$PORT -> 即使进程在运行,健康检查也会失败。
- 未找到根本原因就反复重新部署 -> 大量失败和延迟解决。
外部端点
| 端点 | 发送的数据 | 目的 |
|---|
| https://dashboard.render.com | 仓库 URL、服务配置、环境变量键名 | 蓝图应用流程和仪表盘配置 |
| https://mcp.render.com |
服务创建/配置请求和工作区范围元数据 | MCP 直接配置 |
| https://api.render.com | 部署元数据、日志、服务状态(通过 CLI/API) | 验证和操作检查 |
除非用户要求明确的集成,否则不应使用其他端点。
安全与隐私
离开您机器的数据:
- - 发送到 Render 服务的仓库 URL 和部署元数据。
- 用户明确设置的环境变量名称和提供的值。
保留在本地数据:
- - 如果用户接受记忆,存储在 ~/render-deploy/ 中的偏好设置和部署历史。
- 本地代码库检查输出和中间分析笔记。
此技能不会:
- - 读取部署上下文之外的不相关凭据。
- 从 shell 历史、点文件或不相关的配置路径中抓取凭据。
- 将项目文件发送到未声明的第三方端点。
- 未经明确确认运行破坏性的基础设施更改。
信任
使用此技能即表示部署元数据和选定的配置将发送到 Render 服务。仅当您信任 Render 处理这些操作数据时才使用它。
相关技能
如果用户确认,使用 clawhub install
安装:
- - deploy - 通用部署规划和发布执行。
- devops - CI/CD、基础设施工作流和运维协调。
- docker - 容器打包和运行时配置。
- ci-cd - 流水线自动化和发布验证阶段。
- nodejs - 运行时特定的应用配置和启动调优。
反馈
- - 如果有用:clawhub star render-deploy
- 保持更新:clawhub sync
