Asc Workflow

1---2name: asc-workflow3description: Define, validate, and run repo-local multi-step automations with `asc workflow` and `.asc/workflow.json`. Use when migrating from lane tools, wiring CI pipelines, or orchestrating repeatable `asc` + shell release flows with hooks, conditionals, and sub-workflows.4---5 6# asc workflow7 8Use this skill when you need lane-style automation inside the CLI using:9- `asc workflow run`10- `asc workflow validate`11- `asc workflow list`12 13This feature is best for deterministic automation that lives in your repo, is reviewable in PRs, and can run the same way locally and in CI.14 15## Command discovery16 17- Always use `--help` to confirm flags and subcommands:18  - `asc workflow --help`19  - `asc workflow run --help`20  - `asc workflow validate --help`21  - `asc workflow list --help`22 23## End-to-end flow24 251. Author `.asc/workflow.json`262. Validate structure and references:27   - `asc workflow validate`283. Discover available workflows:29   - `asc workflow list`30   - `asc workflow list --all` (includes private helpers)314. Preview execution without side effects:32   - `asc workflow run --dry-run beta`335. Execute with runtime params:34   - `asc workflow run beta BUILD_ID:123456789 GROUP_ID:abcdef`35 36## File location and format37 38- Default path: `.asc/workflow.json`39- Override path: `asc workflow run --file ./path/to/workflow.json <name>`40- JSONC comments are supported (`//` and `/* ... */`)41 42## Output and CI contract43 44- `stdout`: structured JSON result (`status`, `steps`, durations)45- `stderr`: step command output, hook output, dry-run previews46- `asc workflow validate` always prints JSON and returns non-zero when invalid47 48This enables machine-safe checks:49 50```bash51asc workflow validate | jq -e '.valid == true'52asc workflow run beta BUILD_ID:123 GROUP_ID:xyz | jq -e '.status == "ok"'53```54 55## Schema (what the feature supports)56 57Top-level keys:58- `env`: global defaults59- `before_all`: command run once before steps60- `after_all`: command run once after successful steps61- `error`: command run when any failure occurs62- `workflows`: named workflow map63 64Workflow keys:65- `description`66- `private` (not directly runnable)67- `env`68- `steps`69 70Step forms:71- String shorthand: `"echo hello"` -> run step72- Object with:73  - `run`: shell command74  - `workflow`: call sub-workflow75  - `name`: label for reporting76  - `if`: conditional var name77  - `with`: env overrides for workflow-call steps only78 79## Runtime params (`KEY:VALUE` / `KEY=VALUE`)80 81- `asc workflow run <name> [KEY:VALUE ...]` supports both separators:82  - `VERSION:2.1.0`83  - `VERSION=2.1.0`84- If both separators exist, the first one wins.85- Repeated keys are last-write-wins.86- In step commands, reference params via shell expansion (`$VAR`).87- Avoid putting secrets in `.asc/workflow.json`; pass them via CI secrets/env.88 89## Run-tail flags90 91`asc workflow run` also accepts core flags after the workflow name:92- `--dry-run`93- `--pretty`94- `--file`95 96Examples:97- `asc workflow run beta --dry-run`98- `asc workflow run beta --file .asc/workflow.json BUILD_ID:123`99 100## Execution semantics101 102- `before_all` runs once before step execution103- `after_all` runs only when steps succeed104- `error` runs on failure (step failure, before/after hook failure)105- Sub-workflows are executed inline as part of the call step106- Maximum sub-workflow nesting depth is 16107 108## Env precedence109 110Main workflow run:111- `definition.env` < `workflow.env` < CLI params112 113Sub-workflow call step (`"workflow": "...", "with": {...}`):114- sub-workflow `env` defaults115- caller env (including CLI params) overrides116- step `with` overrides all117 118## Sub-workflows and private workflows119 120- Use `"workflow": "<name>"` to call helper workflows.121- Use `"private": true` for helper-only workflows.122- Private workflows:123  - cannot be run directly124  - can be called by other workflows125  - are hidden from `asc workflow list` unless `--all` is used126- Validation catches unknown workflow references and cyclic references.127 128## Conditionals (`if`)129 130- Add `"if": "VAR_NAME"` on a step.131- Step runs only if `VAR_NAME` is truthy.132- Truthy: `1`, `true`, `yes`, `y`, `on` (case-insensitive).133- Resolution order for `if` lookup:134  1. merged workflow env/params135  2. `os.Getenv(VAR_NAME)`136 137## Dry-run behavior138 139- `asc workflow run --dry-run <name>` does not execute commands.140- It prints previews to `stderr`.141- Dry-run shows raw commands (without env expansion), which helps avoid secret leakage in previews.142 143## Shell behavior144 145- Run steps use `bash -o pipefail -c` when bash is available.146- Fallback is `sh -c` when bash is unavailable.147- Pipelines therefore fail correctly in most CI shells when bash exists.148 149## Practical authoring rules150 151- Keep workflow files in version control.152- Use IDs in step commands where possible for deterministic automation.153- Use `--confirm` for destructive `asc` operations inside steps.154- Validate first, then dry-run, then real run.155- Keep hooks lightweight and side-effect aware.156 157```json158{159  "env": {160    "APP_ID": "123456789",161    "VERSION": "1.0.0"162  },163  "before_all": "asc auth status",164  "after_all": "echo workflow_done",165  "error": "echo workflow_failed",166  "workflows": {167    "beta": {168      "description": "Distribute a build to a TestFlight group and notify",169      "env": {170        "GROUP_ID": ""171      },172      "steps": [173        {174          "name": "list_builds",175          "run": "asc builds list --app $APP_ID --sort -uploadedDate --limit 5"176        },177        {178          "name": "list_groups",179          "run": "asc testflight groups list --app $APP_ID --limit 20"180        },181        {182          "name": "add_build_to_group",183          "if": "BUILD_ID",184          "run": "asc builds add-groups --build-id $BUILD_ID --group $GROUP_ID"185        },186        {187          "name": "notify",188          "if": "SLACK_WEBHOOK",189          "run": "echo sent_release_notice"190        }191      ]192    },193    "release": {194      "description": "Submit a version for App Store review",195      "steps": [196        {197          "workflow": "sync-metadata",198          "with": {199            "METADATA_DIR": "./metadata"200          }201        },202        {203          "name": "submit",204          "run": "asc submit create --app $APP_ID --version $VERSION --build $BUILD_ID --confirm"205        }206      ]207    },208    "sync-metadata": {209      "private": true,210      "description": "Private helper workflow (callable only via workflow steps)",211      "steps": [212        {213          "name": "migrate_validate",214          "run": "echo METADATA_DIR_is_$METADATA_DIR"215        }216      ]217    }218  }219}220```221 222## Useful invocations223 224```bash225# Validate and fail CI on invalid file226asc workflow validate | jq -e '.valid == true'227 228# Show discoverable workflows229asc workflow list --pretty230 231# Include private helpers232asc workflow list --all --pretty233 234# Preview a real run235asc workflow run --dry-run beta BUILD_ID:123 GROUP_ID:grp_abc236 237# Run with params and assert success238asc workflow run beta BUILD_ID:123 GROUP_ID:grp_abc | jq -e '.status == "ok"'239```