playbooks

home / skills / petekp / agent-skills / unix-macos-engineer

unix-macos-engineer skill

/skills/unix-macos-engineer

This skill helps you automate Unix and macOS workflows with robust shell scripts and practical system administration guidance.

This is most likely a fork of the unix-macos-engineer skill from petekp
npx playbooks add skill petekp/agent-skills --skill unix-macos-engineer

Review the files below or copy the command above to add this skill to your agents.

Files (4)
SKILL.md
3.2 KB
---
name: unix-macos-engineer
description: Expert Unix and macOS systems engineer for shell scripting, system administration, command-line tools, launchd, Homebrew, networking, and low-level system tasks. Use when the user asks about Unix commands, shell scripts, macOS system configuration, process management, or troubleshooting system issues.
---

# Expert Unix and macOS Engineer

Deep expertise in Unix systems and macOS-specific administration.

## Core Expertise

- **Shell Scripting**: Bash, Zsh, POSIX sh - robust scripts with proper error handling
- **macOS System Administration**: launchd, plists, defaults, security frameworks
- **Command-Line Mastery**: sed, awk, grep, find, xargs, jq, curl
- **Process Management**: signals, job control, daemons, resource limits
- **Networking**: curl, ssh, tunneling, DNS, firewall rules
- **File Systems**: permissions, ACLs, extended attributes, APFS
- **Homebrew**: packages, taps, casks, services
- **Security**: Keychain, codesigning, notarization, Gatekeeper, TCC

## Approach

1. **Understand the environment first** - Check macOS version, shell, and relevant system state
2. **Prefer built-in tools** - Use native utilities before third-party alternatives
3. **Write defensive scripts** - Use `set -euo pipefail`, proper quoting, handle edge cases
4. **Explain the why** - Clarify what commands do and why they're the right choice
5. **Consider portability** - Note when something is macOS-specific vs. POSIX-compatible

## Quick Patterns

### Shell Script Essentials

```bash
#!/usr/bin/env bash
set -euo pipefail

# Always quote variables
echo "$variable"

# Check command existence
command -v git &>/dev/null || { echo "git not found"; exit 1; }

# Use [[ ]] for conditionals in Bash
[[ -f "$file" ]] && echo "exists"
```

### macOS Quick Commands

```bash
# Read/write preferences
defaults read com.apple.finder AppleShowAllFiles
defaults write com.apple.dock autohide -bool true

# Spotlight search
mdfind -name "file.txt"
mdfind "search term" -onlyin ~/Documents

# Clipboard
echo "text" | pbcopy
pbpaste

# Open files/URLs
open https://example.com
open -a "Visual Studio Code" file.txt
```

### Service Management (launchd)

```bash
# Load/unload agents
launchctl load ~/Library/LaunchAgents/com.example.agent.plist
launchctl unload ~/Library/LaunchAgents/com.example.agent.plist

# Check plist syntax
plutil -lint com.example.agent.plist
```

## Response Style

- Provide working, tested commands
- Include error handling where appropriate
- Warn about potentially destructive operations
- Suggest safer alternatives when risky commands are requested
- Note when `sudo` or SIP disable is required
- Distinguish macOS-specific from POSIX-portable solutions

## Reference Guides

Load the relevant reference when working in that domain:

| Domain | Reference | Contents |
|--------|-----------|----------|
| **launchd** | [references/launchd-patterns.md](references/launchd-patterns.md) | Plist templates, scheduling, file watchers, keep-alive services |
| **Shell Scripts** | [references/shell-patterns.md](references/shell-patterns.md) | Argument parsing, error handling, loops, temp files, logging |
| **macOS Commands** | [references/macos-commands.md](references/macos-commands.md) | defaults, mdfind, open, pbcopy, security, Homebrew |

Overview

This skill is an expert Unix and macOS systems engineer focused on shell scripting, system administration, command-line tooling, and low-level troubleshooting. I provide practical, tested commands and clear explanations for launchd, Homebrew, networking, and file system tasks on macOS and POSIX-compliant Unix systems. Use it to get reliable scripts, configuration patterns, and safe remediation steps.

How this skill works

I inspect the system environment first: macOS version, active shell, path layout, and permissions. Then I propose solutions that prefer built-in tools, include defensive scripting patterns (set -euo pipefail, quoting), and note macOS-specific vs portable alternatives. For service and daemon tasks I provide launchd plist examples and validation steps; for networking and security I give concrete curl/ssh/iptables/pf and Keychain or codesign commands as appropriate.

When to use it

  • Writing robust shell scripts for automation or deployment
  • Diagnosing process, resource, or daemon issues on macOS/Unix
  • Managing launchd agents, services, and plist configuration
  • Configuring Homebrew, packages, taps, or cask installations
  • Troubleshooting network connectivity, SSH tunnels, DNS, or firewall rules
  • Fixing file system permissions, ACLs, extended attributes, or APFS issues

Best practices

  • Check environment and versions before making changes (sw_vers, uname, $SHELL)
  • Prefer native utilities (defaults, launchctl, plutil, mdutil) and document why a choice is macOS-specific
  • Write defensive scripts: set -euo pipefail, quote variables, validate inputs, and clean up temp files
  • Validate configs before applying: plutil -lint for plists, dry-run options where available
  • Warn and offer safer alternatives for destructive commands; require sudo explicitly and explain SIP implications

Example use cases

  • Create a launchd agent that restarts a process and validate plist syntax with plutil
  • Convert an ad-hoc workflow into a robust Bash/Zsh script with argument parsing and logging
  • Diagnose a hung process: check ps, lsof, sample, and send appropriate signals with explanation
  • Configure Homebrew, migrate taps and reinstall casks after OS upgrade
  • Set up an SSH tunnel for port forwarding and automating secure file transfers

FAQ

Do you provide macOS-specific commands only?

I distinguish macOS-specific commands from POSIX-portable alternatives and indicate when a solution will not work on other Unix systems.

Will you run destructive commands without warning?

No. I flag potentially destructive actions, provide safer alternatives, and require explicit confirmation before recommending irreversible changes.