Claude Code

Project-Level Skills

Infrastructure-specific operational knowledge for deploying and operating services on linuxserver.lan

Location: ~/projects/.claude/skills/

ai-servicers.com

User Skills vs Project Skills

Aspect

User-Level Skills

Project-Level Skills

Location

~/.claude/skills/

~/projects/.claude/skills/

Scope

Every session, every project

Only when working in ~/projects/

Count

23 skills

8 skills

Purpose

General utilities, AI workflows, dev expertise

Deploy & operate services on this infrastructure

Examples

python-pro, createplan, naming-validator

keycloak-setup, traefik-setup, postgres-integration

Who uses them

Any Claude Code session for any user

Developer & Security agents for linuxserver.lan

Both load on-demand • Zero boot tokens • Same SKILL.md format

Skills 1-4

Project Skills — Deployment & Routing

Deployment

service-deployment

Master orchestration skill for deploying any new service. Coordinates Docker deployment with multi-network configuration, OAuth2/Keycloak integration, Traefik routing, environment file management, health checks, and documentation updates. This is the primary skill for new service rollouts.

Triggers: "deploy", "install", "set up" any service or container

Routing

traefik-setup

Traefik v3 reverse proxy configuration: HTTP/HTTPS routing rules, TCP routing (mail, databases, custom protocols), SSL/TLS certificate automation via Let's Encrypt DNS-01 challenge, middleware (redirects, headers, auth), Docker service labels, and entry point configuration.

Triggers: "expose service", "routing", "SSL certificate", "reverse proxy"

Networking

network-config

Docker network architecture for linuxserver.lan: traefik-net for external access, component-net for service isolation, multi-network patterns (1/2/3 networks), port allocation standards, DNS configuration, and inter-container communication. Used proactively when adding new endpoints.

Triggers: "network", "ports", "DNS", "connectivity"

Static Sites

nginx-static-site

Standard workflow for deploying static HTML sites under nginx.ai-servicers.com using path-based routing. Covers directory structure, nginx location blocks, landing page integration, permission requirements (755/644), and deployment verification. No separate domain or certificate needed.

Triggers: "deploy site", "static site", "host HTML", "nginx portal"

Skills 5-8

Project Skills — Data, Auth & Ops

Authentication

keycloak-setup

Keycloak OIDC client setup for new applications on the ai-servicers.com SSO infrastructure. Covers automated and manual client creation, OAuth2 proxy vs direct OIDC patterns, group/role setup, client secret management, and troubleshooting authentication issues.

Triggers: "Keycloak client", "OIDC", "SSO integration", "OAuth2 proxy"

Database

postgres-integration

PostgreSQL integration for applications on linuxserver.lan: database and user creation, connection configuration per language (Python, Node, Go), connection pooling setup, security hardening, health check patterns, backup procedures, and performance monitoring.

Triggers: "database", "PostgreSQL", "create db", "psql"

Observability

logging-observability

Complete observability stack for linuxserver.lan: Loki log aggregation (30-day retention), Promtail auto-collection from all containers, Grafana dashboards, Netdata real-time system metrics, Dozzle container log viewer. New services are auto-discovered by Promtail — no config needed.

Triggers: "logs", "monitoring", "observability", "Grafana"

Debugging

troubleshooting

Systematic debugging methodology for linuxserver.lan infrastructure: check logs first (never assume cause), container diagnostics, network connectivity testing, database connection debugging, performance analysis, and emergency recovery procedures. Includes service-specific diagnostic playbooks.

Triggers: "debug", "error", "not working", "diagnose", "troubleshoot"

How Project Skills Work Together

Deploying a new service? Skills orchestrate in a defined order:

user-level naming-validator

→

project 1 service-deployment

→

project 2 keycloak-setup

→

project 3 traefik-setup

→

project 4 postgres-integration

→

project 5 logging-observability

What each step provides

naming-validator (user) — validate resource names before anything is created
service-deployment — Docker container, networks, secrets, deploy.sh script
keycloak-setup — OAuth2 client, redirect URIs, client secret
traefik-setup — routing labels, SSL certificate, middleware
postgres-integration — database, user, connection string, pooling
logging-observability — verify Promtail picks up logs, check Grafana

network-config and troubleshooting are invoked as needed throughout the process

Project-Level Skills

8 skills in ~/projects/.claude/skills/ — loaded only when working in the ~/projects/ workspace.

These skills encode deep operational knowledge specific to this infrastructure: how Traefik is configured, how Keycloak clients are created, which Docker networks to use, how logs flow to Loki. Knowledge that no general model can have without being told.

Scope makes them safe. Project skills don't pollute personal sessions. They're only active when Claude is working on this infrastructure — exactly where they're needed.

8 Total Skills

0 Boot Tokens

78 Containers Covered

ai-servicers.com