syncing-upstream — syncing-upstream install syncing-upstream, socket-btm, community, syncing-upstream install, ide skills, Node.js synchronization, socket-btm updates, upstream Node.js integration, Claude Code, Cursor, Windsurf

v1.0.0
GitHub

About this Skill

Ideal for Autonomous Agents requiring seamless Node.js synchronization and Socket Security patch management. syncing-upstream is a skill that updates the baseline Node.js version by synchronizing socket-btm with upstream Node.js, ensuring the latest stable tag and patches are applied.

Features

Updates submodule to the latest stable tag
Regenerates patches for custom Node.js binaries
Validates build and tests pass with detailed metrics
Commits changes with updated .node-version
Ensures socket-btm is synchronized with upstream Node.js

# Core Topics

syncing-upstream install Node.js synchronization socket-btm updates upstream Node.js integration
SocketDev SocketDev
[0]
[0]
Updated: 3/6/2026

Agent Capability Analysis

The syncing-upstream skill by SocketDev is an open-source community AI agent skill for Claude Code and other IDE workflows, helping agents execute tasks with better context, repeatability, and domain-specific guidance. Optimized for syncing-upstream install, Node.js synchronization, socket-btm updates.

Ideal Agent Persona

Ideal for Autonomous Agents requiring seamless Node.js synchronization and Socket Security patch management.

Core Value

Empowers agents to update submodules to the latest stable Node.js tags, regenerate patches, and validate builds, ensuring custom Node.js binaries stay up-to-date with the latest security patches and features, leveraging submodule updates and .node-version synchronization.

Capabilities Granted for syncing-upstream

Updating custom Node.js binaries with Socket Security patches
Regenerating patches for enhanced security
Validating builds and tests for custom Node.js environments

! Prerequisites & Limits

  • Requires Node.js environment
  • Needs submodule update access
  • Dependent on stable Node.js tags
Labs Demo

Browser Sandbox Environment

⚡️ Ready to unleash?

Experience this Agent in a zero-setup browser environment powered by WebContainers. No installation required.

Boot Container Sandbox

syncing-upstream

Install syncing-upstream, an AI agent skill for AI agent workflows and automation. Works with Claude Code, Cursor, and Windsurf with one-command setup.

SKILL.md
Readonly

syncing-upstream

<task> Your task is to spawn an autonomous agent that synchronizes socket-btm with upstream Node.js by updating the submodule to the latest stable tag, updating `.node-version`, regenerating patches, validating build and tests pass, and committing changes with detailed metrics. </task> <context> **What is Node.js Synchronization?** socket-btm builds custom Node.js binaries with Socket Security patches. This skill keeps the baseline Node.js version up-to-date by: - Updating upstream Node.js submodule to latest stable tag - Synchronizing `.node-version` to match submodule - Regenerating Socket Security patches for new Node.js version - Validating patches apply cleanly to new version - Ensuring build and tests pass with updated Node.js

socket-btm Architecture: This is Socket Security's binary tooling manager (BTM) that:

  • Builds custom Node.js binaries with Socket Security patches
  • Tracks upstream Node.js via submodule: packages/node-smol-builder/upstream/node
  • Maintains .node-version for tooling and CI consistency
  • Applies 15 patches to Node.js source during build
  • Produces production-ready patched Node.js binaries

When to Sync:

  • New Node.js stable release (security patches, features)
  • Security advisories requiring Node.js upgrade
  • Feature development requiring newer Node.js APIs
  • Regular maintenance (monthly or quarterly cadence)

Critical Files:

  • .node-version - Node.js version for tooling (nvm, volta, etc.)
  • packages/node-smol-builder/upstream/node - Git submodule tracking nodejs/node
  • packages/node-smol-builder/patches/source-patched/*.patch - Socket Security patches

Success Metrics:

  • Build: Must complete without errors
  • Tests: 100% pass rate
  • Patches: All 15 must apply cleanly
  • Version consistency: .node-version matches submodule tag </context>
<constraints> **CRITICAL Requirements:** - Working directory MUST be clean before starting (no uncommitted changes) - Submodule MUST update to stable tag only (no release candidates) - All patches MUST apply cleanly to new Node.js version - Build MUST succeed without errors - Tests MUST pass (100% success rate) - Two commits MUST be created (version update + patch regeneration)

Do NOT:

  • Update to release candidate or nightly tags (unstable)
  • Skip patch regeneration after Node.js update (will break build)
  • Skip build validation (untested changes risky for production)
  • Skip test validation (functional regressions undetected)
  • Commit without validating patches apply cleanly

Do ONLY:

  • Update to latest stable tag (format: v*.., no -rc suffix)
  • Regenerate patches after submodule update
  • Validate build and tests before final commit
  • Create two atomic commits (version + patches)
  • Use conventional commit format with detailed changelog
  • Report version change and commit metrics </constraints>
<instructions>

Process

This skill spawns an autonomous agent to handle the complete Node.js synchronization workflow, including version update, patch regeneration, validation, and commits.

Phase 1: Validate Environment

<prerequisites> Before spawning the agent, verify the environment is ready: </prerequisites> <action> Check working directory and submodule state: </action> 
bash
1# Check working directory is clean
2git status
3
4# Verify upstream submodule exists
5ls -la packages/node-smol-builder/upstream/node
6
7# Check current Node.js version
8cat .node-version
<validation> **Expected State:** - ✓ Working directory clean (no uncommitted changes) - ✓ Submodule directory exists: `packages/node-smol-builder/upstream/node/` - ✓ `.node-version` file exists with valid version

If working directory NOT clean:

  • Commit or stash changes before proceeding
  • Node.js sync should start from clean state

If submodule missing:

  • Initialize: git submodule update --init --recursive
  • Report error and ask user to fix

Do NOT proceed if environment checks fail. </validation>

Phase 2: Spawn Autonomous Agent

<action> Load the agent prompt template from reference.md and spawn the autonomous agent: </action>

Agent Prompt Source: The complete agent prompt template is documented in reference.md under the "Agent Prompt Template" section. This prompt contains detailed instructions for the 8-step Node.js synchronization workflow.

Spawn Agent:

javascript
1Task({
2  subagent_type: "general-purpose",
3  description: "Sync Node.js to latest version",
4  prompt: `${NODE_SYNC_AGENT_PROMPT_FROM_REFERENCE_MD}`
5})

Instructions for Skill Executor:

  1. Read the agent prompt template from reference.md starting at the "Agent Prompt Template" heading
  2. Extract the full prompt (from "Synchronize socket-btm..." through the final rollback bash block)
  3. Pass the prompt to Task tool using the code block above (replace placeholder with actual prompt content)
  4. Monitor agent execution and capture the output
  5. Verify completion signal: Agent must output <promise>NODE_SYNC_COMPLETE</promise>

Why Extracted to reference.md:

  • Keeps SKILL.md concise and focused on skill logic
  • Agent prompt template is 484 lines - too large to embed inline
  • reference.md provides single source of truth for the prompt
  • Easier to maintain, update, and review prompt independently
  • Follows same pattern as quality-scan skill
<validation> **Structured Output Validation:**

After agent returns, validate output structure before parsing:

bash
1# 1. Verify completion signal
2if ! echo "$AGENT_OUTPUT" | grep -q '<promise>NODE_SYNC_COMPLETE</promise>'; then
3  echo "ERROR: Agent did not complete successfully"
4  echo "Agent may have failed or encountered an error"
5  echo "Review agent output for error messages"
6  exit 1
7fi
8
9# 2. Verify expected content sections exist
10VALIDATION_FAILED=0
11
12if ! echo "$AGENT_OUTPUT" | grep -q 'Node.js Synchronization Complete'; then
13  echo "WARNING: Missing summary report section"
14  VALIDATION_FAILED=1
15fi
16
17if ! echo "$AGENT_OUTPUT" | grep -q 'Updated from:.*→'; then
18  echo "WARNING: Missing version change information"
19  VALIDATION_FAILED=1
20fi
21
22if ! echo "$AGENT_OUTPUT" | grep -q 'Commits Created:'; then
23  echo "WARNING: Missing commit information"
24  VALIDATION_FAILED=1
25fi
26
27if [ $VALIDATION_FAILED -eq 1 ]; then
28  echo "WARNING: Agent output structure incomplete"
29  echo "Proceeding with manual verification..."
30fi

Manual Verification Checklist:

  • Agent output shows <promise>NODE_SYNC_COMPLETE</promise>
  • Two commits created (check: git log -2 --oneline)
  • .node-version matches submodule tag
  • Build and tests passed (check agent output for "✓ Build and tests passed")
  • No error messages in agent output

If validation fails:

  • Review full agent output for specific errors
  • Check git status and commits created
  • Rollback if needed: git reset --hard HEAD~2

Report to user:

  • Node.js updated: vOLD → vNEW
  • Commits: 2
  • Build: SUCCESS
  • Tests: PASS
  • Ready for push </validation>

Phase 3: Complete

<completion_signal>

xml
1<promise>SKILL_COMPLETE</promise>

</completion_signal>

<summary> Report final results to the user:

Node.js Synchronization Skill Complete

✓ Autonomous agent spawned ✓ Agent completed Node.js synchronization workflow ✓ Node.js updated to latest stable version ✓ .node-version synchronized with submodule ✓ All patches regenerated and validated ✓ Build and tests passed ✓ Two commits created

Version Change: OLD_VERSION → NEW_VERSION

Commits:

  1. chore(node): update Node.js version
  2. chore(node-smol-builder): rebuild with patches

Next Steps:

  1. Review changes: `git log -2 --stat`
  2. Test manually if desired
  3. Push to remote: `git push origin main`
  4. Monitor CI/CD for integration tests

Node.js is now synchronized to the latest stable release.

</summary> </instructions>

Success Criteria

  • ✅ `<promise>SKILL_COMPLETE</promise>` output
  • ✅ Autonomous agent spawned with detailed instructions
  • ✅ Agent completed Node.js synchronization workflow
  • ✅ .node-version updated to latest stable
  • ✅ Submodule updated to latest stable tag
  • ✅ All patches regenerated and applied cleanly
  • ✅ Build and tests passed (100%)
  • ✅ Two commits created with detailed messages
  • ✅ Ready for push to remote

Commands

This skill spawns an autonomous agent. No direct commands needed.

Context

This skill is useful for:

  • Updating to new Node.js stable releases
  • Applying security patches from upstream
  • Accessing new Node.js APIs and features
  • Maintaining compatibility with ecosystem tools
  • Regular maintenance (monthly or quarterly)

Safety: Working directory must be clean. Validation ensures patches apply and tests pass before committing. Rollback available with `git reset --hard HEAD~2`.

Trade-offs:

  • ✓ Automated workflow (minimal manual steps)
  • ✓ Validation ensures patches work with new version
  • ✓ Atomic commits (version + patches separate)
  • ✓ Retry logic for flaky operations
  • ✗ Requires clean working directory
  • ✗ May fail if patches incompatible with new Node.js
  • ✗ Manual intervention needed if validation fails

FAQ & Installation Steps

These questions and steps mirror the structured data on this page for better search understanding.

? Frequently Asked Questions

What is syncing-upstream?

Ideal for Autonomous Agents requiring seamless Node.js synchronization and Socket Security patch management. syncing-upstream is a skill that updates the baseline Node.js version by synchronizing socket-btm with upstream Node.js, ensuring the latest stable tag and patches are applied.

How do I install syncing-upstream?

Run the command: npx killer-skills add SocketDev/socket-btm. It works with Cursor, Windsurf, VS Code, Claude Code, and 19+ other IDEs.

What are the use cases for syncing-upstream?

Key use cases include: Updating custom Node.js binaries with Socket Security patches, Regenerating patches for enhanced security, Validating builds and tests for custom Node.js environments.

Which IDEs are compatible with syncing-upstream?

This skill is compatible with Cursor, Windsurf, VS Code, Trae, Claude Code, OpenClaw, Aider, Codex, OpenCode, Goose, Cline, Roo Code, Kiro, Augment Code, Continue, GitHub Copilot, Sourcegraph Cody, and Amazon Q Developer. Use the Killer-Skills CLI for universal one-command installation.

Are there any limitations for syncing-upstream?

Requires Node.js environment. Needs submodule update access. Dependent on stable Node.js tags.

How To Install

  1. 1. Open your terminal

    Open the terminal or command line in your project directory.

  2. 2. Run the install command

    Run: npx killer-skills add SocketDev/socket-btm. The CLI will automatically detect your IDE or AI agent and configure the skill.

  3. 3. Start using the skill

    The skill is now active. Your AI agent can use syncing-upstream immediately in the current project.

Related Skills

Looking for an alternative to syncing-upstream or another community skill for your workflow? Explore these related open-source skills.

View All

widget-generator

Logo of f
f

f.k.a. Awesome ChatGPT Prompts. Share, discover, and collect prompts from the community. Free and open source — self-host for your organization with complete privacy.

149.6k
0
AI

flags

Logo of vercel
vercel

flags is a Next.js feature management skill that enables developers to efficiently add or modify framework feature flags, streamlining React application development.

138.4k
0
Browser

zustand

Logo of lobehub
lobehub

The ultimate space for work and life — to find, build, and collaborate with agent teammates that grow with you. We are taking agent harness to the next level — enabling multi-agent collaboration, effortless agent team design, and introducing agents as the unit of work interaction.

72.8k
0
AI

data-fetching

Logo of lobehub
lobehub

The ultimate space for work and life — to find, build, and collaborate with agent teammates that grow with you. We are taking agent harness to the next level — enabling multi-agent collaboration, effortless agent team design, and introducing agents as the unit of work interaction.

72.8k
0
AI