GitHub Actions 工作流规范创建指南：AI优化模板与CI/CD流程设计

create-github-action-workflow-specification by github/awesome-copilot

7,500 周安装量

26,700 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/github/awesome-copilot --skill create-github-action-workflow-specification

开发开发运维生产力

🇨🇳中文介绍

创建 GitHub Actions 工作流规范

为 GitHub Actions 工作流创建一份全面的规范：${input:WorkflowFile}。

此规范作为工作流行为、需求和约束的规范说明。它必须与具体实现无关，重点关注工作流实现什么，而非如何实现。

AI 优化要求

令牌效率：使用简洁的语言，同时不牺牲清晰度
结构化数据：利用表格、列表和图表来承载密集信息
语义清晰：在整个文档中始终使用精确的术语
实现抽象：避免具体的语法、命令或工具版本
可维护性：设计应便于在工作流演进时轻松更新

规范模板

保存为：/spec/spec-process-cicd-[workflow-name].md

---
title: CI/CD 工作流规范 - [工作流名称]
version: 1.0
date_created: [YYYY-MM-DD]
last_updated: [YYYY-MM-DD]
owner: DevOps 团队
tags: [process, cicd, github-actions, automation, [domain-specific-tags]]
---

## 工作流概述

**目的**：[一句话描述工作流的主要目标]
**触发事件**：[列出触发条件]
**目标环境**：[环境范围]

## 执行流程图

```mermaid
graph TD
    A[触发事件] --> B[作业 1]
    B --> C[作业 2]
    C --> D[作业 3]
    D --> E[结束]
    
    B --> F[并行作业]
    F --> D
    
    style A fill:#e1f5fe
    style E fill:#e8f5e8

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

作业与依赖关系

作业名称	目的	依赖关系	执行上下文
job-1	[目的]	[先决条件]	[运行器/环境]
job-2	[目的]	job-1	[运行器/环境]

ID	需求	优先级	验收标准
REQ-001	[需求]	高	[可测试的标准]
REQ-002	[需求]	中	[可测试的标准]

ID	需求	实现约束
SEC-001	[安全需求]	[约束描述]

ID	指标	目标值	测量方法
PERF-001	[指标]	[目标值]	[测量方式]

# 环境变量
ENV_VAR_1: string  # 目的：[描述]
ENV_VAR_2: secret  # 目的：[描述]

# 仓库触发器
paths: [路径过滤器列表]
branches: [分支模式列表]

# 作业输出
job_1_output: string  # 描述：[用途]
build_artifact: file  # 描述：[内容类型]

类型	名称	目的	作用域
Secret	SECRET_1	[目的]	工作流
Variable	VAR_1	[目的]	仓库

超时：[最长执行时间]
并发性：[并行执行限制]
资源限制：[内存/CPU 约束]

运行器要求：[操作系统/硬件需求]
网络访问：[外部连接需求]
权限：[所需的访问级别]

错误类型	响应	恢复操作
构建失败	[响应]	[恢复步骤]
测试失败	[响应]	[恢复步骤]
部署失败	[响应]	[恢复步骤]

门禁	标准	绕过条件
代码质量	[标准]	[允许的情况]
安全扫描	[阈值]	[允许的情况]
测试覆盖率	[百分比]	[允许的情况]

监控与可观测性

成功率：[目标百分比]
执行时间：[目标时长]
资源使用率：[监控方法]

条件	严重性	通知目标
[条件]	[级别]	[通知对象/位置]

系统	集成类型	数据交换	SLA 要求
[系统]	[类型]	[数据格式]	[要求]

工作流	关系	触发机制
[工作流]	[类型]	[触发方式]

执行日志：[保留策略]
审批门禁：[所需的审批]
变更控制：[更新流程]

访问控制：[权限模型]
密钥管理：[轮换策略]
漏洞扫描：[扫描频率]

边界情况与异常

场景	预期行为	验证方法
[边界情况]	[行为]	[验证方式]

VLD-001：[验证规则]
VLD-002：[验证规则]

PERF-001：[基准标准]
PERF-002：[基准标准]

规范更新：首先修改本文档
评审与批准：[批准流程]
实现：将更改应用到工作流
测试：[验证方法]
部署：[发布流程]

版本	日期	变更	作者
1.0	[日期]	初始规范	[作者]

[链接到相关工作流规范]
[链接到基础设施规范]
[链接到部署规范]

分析说明

分析工作流文件时：
1. 提取核心目的：识别主要的业务目标
2. 映射作业流程：创建显示执行顺序的依赖关系图
3. 识别契约：记录输入、输出和接口
4. 捕获约束：提取超时、权限和限制
5. 定义质量门禁：识别验证和审批点
6. 记录错误路径：映射故障场景和恢复方案
7. 抽象实现：关注行为，而非语法
Mermaid 图表指南

流程类型
- 顺序：A --> B --> C
- 并行：A --> B & A --> C; B --> D & C --> D
- 条件：A --> B{决策}; B -->|是| C; B -->|否| D
样式
```
style TriggerNode fill:#e1f5fe
style SuccessNode fill:#e8f5e8
style FailureNode fill:#ffebee
style ProcessNode fill:#f3e5f5
```

对于包含 5 个以上作业的工作流，使用子图：

graph TD
    subgraph "构建阶段"
        A[代码检查] --> B[测试] --> C[构建]
    end
    subgraph "部署阶段"  
        D[预发布] --> E[生产环境]
    end
    C --> D

使用表格：以结构化格式承载密集信息
保持一致的缩写：定义一次，全程使用
使用要点列表：避免叙述性段落
使用代码块：用结构化数据替代叙述
交叉引用：链接信息而非重复

专注于创建一份既能作为文档，又能作为工作流更新模板的规范。

🇺🇸English

Create GitHub Actions Workflow Specification

Create a comprehensive specification for the GitHub Actions workflow: ${input:WorkflowFile}.

This specification serves as a specification for the workflow's behavior, requirements, and constraints. It must be implementation-agnostic, focusing on what the workflow accomplishes rather than how it's implemented.

AI-Optimized Requirements

Token Efficiency : Use concise language without sacrificing clarity
Structured Data : Leverage tables, lists, and diagrams for dense information
Semantic Clarity : Use precise terminology consistently throughout
Implementation Abstraction : Avoid specific syntax, commands, or tool versions
Maintainability : Design for easy updates as workflow evolves

Specification Template

Save as: /spec/spec-process-cicd-[workflow-name].md

---
title: CI/CD Workflow Specification - [Workflow Name]
version: 1.0
date_created: [YYYY-MM-DD]
last_updated: [YYYY-MM-DD]
owner: DevOps Team
tags: [process, cicd, github-actions, automation, [domain-specific-tags]]
---

## Workflow Overview

**Purpose**: [One sentence describing workflow's primary goal]
**Trigger Events**: [List trigger conditions]
**Target Environments**: [Environment scope]

## Execution Flow Diagram

```mermaid
graph TD
    A[Trigger Event] --> B[Job 1]
    B --> C[Job 2]
    C --> D[Job 3]
    D --> E[End]
    
    B --> F[Parallel Job]
    F --> D
    
    style A fill:#e1f5fe
    style E fill:#e8f5e8

Jobs & Dependencies

Job Name	Purpose	Dependencies	Execution Context
job-1	[Purpose]	[Prerequisites]	[Runner/Environment]
job-2	[Purpose]	job-1	[Runner/Environment]

Requirements Matrix

Functional Requirements

ID	Requirement	Priority	Acceptance Criteria
REQ-001	[Requirement]	High	[Testable criteria]
REQ-002	[Requirement]	Medium	[Testable criteria]

Security Requirements

ID	Requirement	Implementation Constraint
SEC-001	[Security requirement]	[Constraint description]

Performance Requirements

ID	Metric	Target	Measurement Method
PERF-001	[Metric]	[Target value]	[How measured]

Input/Output Contracts

Inputs

# Environment Variables
ENV_VAR_1: string  # Purpose: [description]
ENV_VAR_2: secret  # Purpose: [description]

# Repository Triggers
paths: [list of path filters]
branches: [list of branch patterns]

Outputs

# Job Outputs
job_1_output: string  # Description: [purpose]
build_artifact: file  # Description: [content type]

Secrets & Variables

Type	Name	Purpose	Scope
Secret	SECRET_1	[Purpose]	Workflow
Variable	VAR_1	[Purpose]	Repository

Execution Constraints

Runtime Constraints

Timeout : [Maximum execution time]
Concurrency : [Parallel execution limits]
Resource Limits : [Memory/CPU constraints]

Environmental Constraints

Runner Requirements : [OS/hardware needs]
Network Access : [External connectivity needs]
Permissions : [Required access levels]

Error Handling Strategy

Error Type	Response	Recovery Action
Build Failure	[Response]	[Recovery steps]
Test Failure	[Response]	[Recovery steps]
Deployment Failure	[Response]	[Recovery steps]

Quality Gates

Gate Definitions

Gate	Criteria	Bypass Conditions
Code Quality	[Standards]	[When allowed]
Security Scan	[Thresholds]	[When allowed]
Test Coverage	[Percentage]	[When allowed]

Monitoring & Observability

Key Metrics

Success Rate : [Target percentage]
Execution Time : [Target duration]
Resource Usage : [Monitoring approach]

Alerting

Condition	Severity	Notification Target
[Condition]	[Level]	[Who/Where]

Integration Points

External Systems

System	Integration Type	Data Exchange	SLA Requirements
[System]	[Type]	[Data format]	[Requirements]

Dependent Workflows

Workflow	Relationship	Trigger Mechanism
[Workflow]	[Type]	[How triggered]

Compliance & Governance

Audit Requirements

Execution Logs : [Retention policy]
Approval Gates : [Required approvals]
Change Control : [Update process]

Security Controls

Access Control : [Permission model]
Secret Management : [Rotation policy]
Vulnerability Scanning : [Scan frequency]

Edge Cases & Exceptions

Scenario Matrix

Scenario	Expected Behavior	Validation Method
[Edge case]	[Behavior]	[How to verify]

Validation Criteria

Workflow Validation

VLD-001 : [Validation rule]
VLD-002 : [Validation rule]

Performance Benchmarks

PERF-001 : [Benchmark criteria]
PERF-002 : [Benchmark criteria]

Change Management

Update Process

Specification Update : Modify this document first
Review & Approval: [Approval process]
Implementation : Apply changes to workflow
Testing : [Validation approach]
Deployment : [Release process]

Version History

Version	Date	Changes	Author
1.0	[Date]	Initial specification	[Author]

Related Specifications

[Link to related workflow specs]
[Link to infrastructure specs]
[Link to deployment specs]

Analysis Instructions

When analyzing the workflow file:
1. Extract Core Purpose: Identify the primary business objective
2. Map Job Flow: Create dependency graph showing execution order
3. Identify Contracts: Document inputs, outputs, and interfaces
4. Capture Constraints: Extract timeouts, permissions, and limits
5. Define Quality Gates: Identify validation and approval points
6. Document Error Paths: Map failure scenarios and recovery
7. Abstract Implementation: Focus on behavior, not syntax
Mermaid Diagram Guidelines

Flow Types
- Sequential: A --> B --> C
- Parallel: A --> B & A --> C; B --> D & C --> D
- Conditional: A --> B{Decision}; B -->|Yes| C; B -->|No| D

Complex Workflows

For workflows with 5+ jobs, use subgraphs:

graph TD
    subgraph "Build Phase"
        A[Lint] --> B[Test] --> C[Build]
    end
    subgraph "Deploy Phase"  
        D[Staging] --> E[Production]
    end
    C --> D

Token Optimization Strategies

Use Tables : Dense information in structured format
Abbreviate Consistently : Define once, use throughout
Bullet Points : Avoid prose paragraphs
Code Blocks : Structured data over narrative
Cross-Reference : Link instead of repeat information

Focus on creating a specification that serves as both documentation and a template for workflow updates.

Weekly Installs

7.5K

Repository

github/awesome-copilot

GitHub Stars

26.7K

First Seen

Feb 25, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

codex7.4K

gemini-cli7.4K

opencode7.4K

cursor7.4K

github-copilot7.4K

kimi-cli7.4K

style TriggerNode fill:#e1f5fe
style SuccessNode fill:#e8f5e8
style FailureNode fill:#ffebee
style ProcessNode fill:#f3e5f5

GitHub Actions 工作流规范创建指南：AI优化模板与CI/CD流程设计

🇨🇳中文介绍

创建 GitHub Actions 工作流规范

AI 优化要求

规范模板

相关 Skills

作业与依赖关系

需求矩阵

功能需求

安全需求

性能需求

输入/输出契约

输入

输出

密钥与变量

执行约束

运行时约束

环境约束

错误处理策略

质量门禁

门禁定义

监控与可观测性

关键指标

告警

集成点

外部系统

依赖的工作流

合规与治理

审计要求

安全控制