Agent prompt
The handoff packet.
This is the thing AppFleet gives the agent. It installs the CLI, uploads the project, and syncs encrypted env envelopes without putting secret values in chat.
Recommended path
Browser for the dashboard. Agent for the repo.
The prompt runs inside the target repository, where the CLI can discover safe project facts, run a doctor check, and import approved env files into the encrypted vault.
- CLI
- Install
- Project
- Upload
- Env Vault
- Encrypt
- Dashboard
- Verify
Universal prompt
Paste into any coding agent
Use this inside the target repository. It tells the agent to install the CLI, create the project, upload health evidence, import approved env files, and sync encrypted envelopes without printing values.
Reusable skill
appfleet-project
Source: https://github.com/archietechnophile/appfleet-skills. Install target: ~/.codex/skills/appfleet-project.
- 1Install with skillsUse this standardized install path for Codex-style and compatible agents.
npx skills add archietechnophile/appfleet-skills --skill appfleet-project - 2Fallback installUse this when the skills CLI is unavailable but the agent supports local skills.
mkdir -p ~/.codex/skills/appfleet-project && curl -fsSL https://appfleet.xyz/agents/appfleet-project -o ~/.codex/skills/appfleet-project/SKILL.md - 3Invoke the skillPaste this as the first message after installing the skill.
Use $appfleet-project to initialize this repository in AppFleet, upload a doctor check, and sync encrypted env files. - 4FallbackIf the agent does not support skills, paste the full bootstrap prompt instead.
What the agent may run
Project and Env Vault commands
npm install -g @appfleet-cli/cli@latestappfleet loginappfleet init --url <deployed-url>appfleet doctor <project-id> --uploadAPPFLEET_MASTER_PASSWORD='<workspace-master-password>' appfleet vault init --workspace <workspace-id>APPFLEET_MASTER_PASSWORD='<workspace-master-password>' appfleet secrets import-env <env-file> --project <project-id> --env <environment>appfleet secrets sync --production-cloud --workspace <workspace-id> --api-base-url https://appfleet.xyz
Trust boundary
No secrets in chat
- You may locate env files by path and pass approved files to appfleet secrets import-env.
- Do not ask the human to paste secrets into chat.
- Do not print env values, auth tokens, session cookies, master passwords, encrypted blob ids, key wrapper ids, ciphertext, key material, or command output that may contain secrets.
- Ask the human to provide APPFLEET_MASTER_PASSWORD in the terminal environment or another out-of-chat channel before vault commands.
- Ask for explicit human confirmation before production credential use, reveal, rotation, deletion, provider mutation, or deleting local files.
- Use appfleet secrets inject when a command needs environment values.
