Agent-Skills.md

Agent Skills: Miro Production Checklist

|

UncategorizedID: jeremylongshore/claude-code-plugins-plus-skills/miro-prod-checklist

Repository

jeremylongshore/claude-code-plugins-plus-skills
jeremylongshoreLicense: NOASSERTION
1,723221

Install this agent skill to your local

pnpm dlx add-skill https://github.com/jeremylongshore/claude-code-plugins-plus-skills/tree/HEAD/plugins/saas-packs/miro-pack/skills/miro-prod-checklist

Skill Files

Browse the full folder contents for miro-prod-checklist.

Download Skill

Loading file tree…

plugins/saas-packs/miro-pack/skills/miro-prod-checklist/SKILL.md

Skill Metadata

Name
miro-prod-checklist
Description
|

Miro Production Checklist

Overview

Complete checklist for deploying Miro REST API v2 integrations to production, covering OAuth configuration, rate limit readiness, monitoring, and rollback.

Pre-Deployment: OAuth & Scopes

  • [ ] Production Miro app created at https://developers.miro.com (separate from dev app)
  • [ ] OAuth scopes minimized — only scopes actively used (see miro-security-basics)
  • [ ] Redirect URI points to production HTTPS endpoint
  • [ ] Client secret stored in secret manager (not env vars on disk)
  • [ ] Token refresh logic tested — handles expired tokens gracefully
  • [ ] Token storage uses encrypted database or vault (not filesystem)

Pre-Deployment: Code Quality

  • [ ] No hardcoded tokens — scan with grep -r "eyJ\|Bearer " src/
  • [ ] Error handling covers all Miro HTTP status codes (400, 401, 403, 404, 429, 5xx)
  • [ ] Rate limiting — backoff with Retry-After header support (see miro-rate-limits)
  • [ ] Webhook signatures validated with timing-safe comparison
  • [ ] Pagination handled for all list endpoints (cursor parameter)
  • [ ] Content-Type header set to application/json on all POST/PATCH requests
  • [ ] All tests passing including integration tests against test board

Pre-Deployment: Infrastructure

  • [ ] Health check endpoint verifies Miro API connectivity
// GET /health
async function healthCheck() {
  const start = Date.now();
  try {
    const response = await fetch('https://api.miro.com/v2/boards?limit=1', {
      headers: { 'Authorization': `Bearer ${token}` },
      signal: AbortSignal.timeout(5000),
    });

    return {
      miro: {
        status: response.ok ? 'healthy' : 'degraded',
        latencyMs: Date.now() - start,
        rateLimitRemaining: response.headers.get('X-RateLimit-Remaining'),
      },
    };
  } catch (error) {
    return {
      miro: { status: 'unhealthy', latencyMs: Date.now() - start, error: error.message },
    };
  }
}
  • [ ] Circuit breaker configured for Miro API calls
class MiroCircuitBreaker {
  private failures = 0;
  private lastFailure = 0;
  private readonly threshold = 5;
  private readonly resetMs = 60000;

  async execute<T>(operation: () => Promise<T>): Promise<T> {
    if (this.isOpen()) {
      throw new Error('Miro circuit breaker is open — API calls suspended');
    }

    try {
      const result = await operation();
      this.failures = 0;
      return result;
    } catch (error) {
      this.failures++;
      this.lastFailure = Date.now();
      throw error;
    }
  }

  private isOpen(): boolean {
    if (this.failures < this.threshold) return false;
    if (Date.now() - this.lastFailure > this.resetMs) {
      this.failures = 0; // Half-open: allow one retry
      return false;
    }
    return true;
  }
}
  • [ ] Graceful degradation — app continues working if Miro API is unavailable
  • [ ] Monitoring — Prometheus/Datadog metrics for Miro API latency and error rates
  • [ ] Alerting configured for error rate >5%, P95 latency >3s, and 429 responses

Pre-Deployment: Miro App Settings

  • [ ] App name and description are professional (visible to users during OAuth consent)
  • [ ] App icon uploaded (displayed in Miro marketplace and OAuth screen)
  • [ ] Support email configured in app settings
  • [ ] App manifest reviewed if using Miro app manifest format

Deployment Verification

# 1. Verify production token works
curl -s -w "\nHTTP %{http_code} in %{time_total}s\n" \
  -H "Authorization: Bearer $MIRO_ACCESS_TOKEN_PROD" \
  "https://api.miro.com/v2/boards?limit=1"

# 2. Check rate limit headroom
curl -sI -H "Authorization: Bearer $MIRO_ACCESS_TOKEN_PROD" \
  "https://api.miro.com/v2/boards?limit=1" | grep -i ratelimit

# 3. Verify webhook endpoint is reachable (if using webhooks)
curl -s -o /dev/null -w "%{http_code}" https://your-app.com/webhooks/miro

# 4. Verify health check
curl -s https://your-app.com/health | jq '.miro'

Post-Deployment Monitoring

| Alert | Condition | Severity | Action | |-------|-----------|----------|--------| | Miro API Down | 5xx errors > 10/min | P1 | Enable fallback, check status.miro.com | | Auth Failures | 401/403 > 0/min | P1 | Check token, verify scopes | | Rate Limited | 429 errors > 5/min | P2 | Reduce request rate, check queue config | | High Latency | P95 > 3000ms | P2 | Check board size, enable caching | | Health Degraded | Health check fails 3x | P2 | Investigate connectivity |

Rollback Procedure

# Immediate rollback — disable Miro integration
# Option 1: Feature flag
curl -X PATCH https://config.your-app.com/flags \
  -d '{"miro_enabled": false}'

# Option 2: Environment variable
# Set MIRO_ENABLED=false and restart

# Option 3: Container rollback
kubectl rollout undo deployment/miro-integration
kubectl rollout status deployment/miro-integration

Documentation Requirements

  • [ ] Incident runbook created (see miro-incident-runbook)
  • [ ] Token rotation procedure documented
  • [ ] On-call escalation path includes Miro-specific steps
  • [ ] Board cleanup procedure for orphaned test data

Resources

Next Steps

For version upgrades, see miro-upgrade-migration.