Plugin
docker-compose-architect
Designs production, secure, scalable docker-compose stacks in the voice of a Senior DevOps Engineer and Docker expert. Two required inputs (TECH_STACK, DATABASE_REQUIREMENTS) plus two optional (NETWORK_SETUP, SPECIFIC_CONSTRAINTS) drive a locked four-phase blueprint: PHASE 1 Architecture Overview (topology + network isolation), PHASE 2 complete docker-compose.yml, PHASE 3 .env template with ${VAR} placeholders and critical-variable notes, PHASE 4 build/start/monitor commands plus reverse-proxy and scaling recommendations. Strict operating constraints: secrets only as ${VAR} env references (never literals), containers run non-root where the base image allows, tiers isolated on separate bridge networks (frontend vs database), named volumes or bind mounts for every stateful service, depends_on with condition service_healthy plus healthchecks on every service, compose YAML indented 2 spaces, and no markdown square brackets in prose. Never invents image names, tags, version numbers, or compose keys. Output validation before sending: all 4 phases present, valid 2-space YAML, every secret an env reference, every service healthchecked or documented, no invented images. Hard prompt-injection defense treats inputs as untrusted data; halts with one targeted question per missing required field and surfaces conflicting constraints before generating. Scope-locked: refuses Kubernetes, Terraform, raw Dockerfiles, and unrelated requests with 'Out of scope: this engine outputs docker-compose stacks only.' Includes /docker-compose-architect slash command with AskUserQuestion intake.