An open-source pre-deployment risk intelligence platform for infrastructure changes.
DeployWhisper helps platform engineers, DevOps teams, and SREs review deployment artifacts before release. It analyzes Terraform, Kubernetes, Ansible, Jenkins, and CloudFormation inputs, then turns those inputs into a single advisory briefing with risk scoring, blast radius context, rollback guidance, and plain-English narrative output.
Quick links: Quick Start · API Endpoints · Development · Contributing · Open Source
- Introduction
- How It Works
- Key Features
- Screenshots And Demo
- Current Status
- Prerequisites
- Quick Start
- Docker Deployment
- API Endpoints
- CLI Usage
- Configuration
- Architecture
- Documentation
- Development
- CI
- Contributing
- Open Source
- Roadmap Signals
- Status
DeployWhisper exists because deployment risk is rarely visible in a single file. A Terraform change might look safe on its own, a Kubernetes manifest might look routine on its own, and a Jenkins pipeline change might look minor on its own, but the real risk often appears only when those artifacts are reviewed together.
DeployWhisper treats deployment review as a context problem. It combines multi-tool parsing, local-first analysis, tool-specific AI Skills, incident-memory matching, and advisory summaries so teams can make better go/no-go decisions before changes reach production.
The current implementation is built as a pure-Python application with:
- NiceGUI for the operator-facing web UI
- FastAPI for the versioned API surface
- SQLAlchemy and SQLite for persistence
- Litellm-backed narrative generation with local-only Ollama support
- Upload one or more supported deployment artifacts.
- DeployWhisper detects the tool type and filters unsupported or sensitive inputs.
- Parsers normalize changes into a shared internal model.
- The analysis pipeline scores risk, computes blast radius, generates rollback guidance, and checks incident similarity.
- A narrative layer produces a plain-English deploy briefing.
- The report is persisted with audit metadata before it is shown in the UI or returned through the API or CLI.
At a high level:
Artifacts -> Parse -> Normalize -> Score -> Blast Radius -> Rollback -> Narrative -> Advisory Report
- Multi-tool intake for Terraform, Kubernetes, Ansible, Jenkins, and CloudFormation
- Plain-English risk narrative and deploy recommendation
- Advisory-only output with explicit human-review posture
- Blast radius analysis using a service-topology file
- Rollback plan generation with complexity signaling
- Incident-history matching for operational memory
- API, CLI, and web entrypoints over one shared analysis pipeline
- Local-first security model that keeps raw IaC local and avoids persisting API keys
- Custom AI Skills for team-specific domain guidance
- Analysis history and audit metadata for later review
This repository already has brand assets under docs/assets/, but product screenshots and demo motion should be added as the UI evolves.
Upload flow, risk summary, and advisory result
Saved analyses, filters, and audit metadata
Provider config, topology upload, and custom skills
| Area | Placeholder Asset | Intended Content |
|---|---|---|
| End-to-end walkthrough | docs/assets/demo-flow.gif |
Upload artifacts -> analysis progress -> final advisory briefing |
Suggested next step: once the UI is stable enough, replace these placeholders with real captures and embed them directly in this section.
DeployWhisper is an open-source project in active development.
What is implemented today:
- Shared NiceGUI + FastAPI runtime
- Versioned health and analysis endpoints
- Headless CLI analysis flow
- Multi-tool parsing and unified analysis pipeline
- Provider settings, topology management, and custom skill management in the UI
- Analysis persistence with audit metadata
- GitHub Actions CI for Python quality checks and sharded tests
What is still evolving:
- Production-grade authn/authz for shared deployments
- Richer incident ingestion workflows
- Broader deployment integrations and release automation
- More complete NFR hardening for shared or internet-facing environments
Planning and design artifacts live under _bmad-output/planning-artifacts/.
This README describes the current implementation honestly. Some sections reflect the implemented foundation, while others point to the intended open-source direction captured in the planning artifacts.
- Python 3.11 or newer recommended
- A virtual environment for local development
- Optional LLM provider access:
- Ollama for fully local mode
- or OpenAI / Anthropic / Gemini / OpenRouter / Groq / xAI credentials via environment variables
For local-only narrative generation, Ollama is the intended path.
python3 -m venv .venv
source .venv/bin/activate
python -m pip install --upgrade pip
pip install -r requirements.txt
python app.pyThe app starts on:
- UI:
http://127.0.0.1:8080/ - API docs:
http://127.0.0.1:8080/api/v1/docs - Health:
http://127.0.0.1:8080/api/v1/health
./.venv/bin/python -m unittest discover -qDeployWhisper supports a single-container deployment model.
docker compose up -d --buildDefault container behavior:
- Port
8080exposed from the app container - SQLite database stored under
/app/data - Default provider set to Ollama
Example for local Ollama mode:
LLM_PROVIDER=ollama
LLM_MODEL=ollama/llama3
LLM_API_BASE=http://host.docker.internal:11434Example for OpenAI:
LLM_PROVIDER=openai
LLM_MODEL=gpt-4.1-mini
LLM_API_BASE=https://api.openai.com/v1
OPENAI_API_KEY=your-real-keyDo not bake secrets into the image. Pass them at runtime through Compose, your shell environment, or your orchestration platform.
GET /api/v1/healthResponse shape:
{
"data": {
"status": "ok",
"mode": "foundation",
"core_status": "ok",
"llm": {
"status": "ok",
"ready": true,
"provider": "ollama",
"model": "ollama/llama3",
"local_mode": true,
"requires_api_key": false,
"has_api_key": false,
"message": "LLM provider connection validated for analysis.",
"source": "environment"
}
},
"meta": {
"app": "DeployWhisper",
"version": "0.1.0"
}
}POST /api/v1/analysesUpload one or more artifact files as multipart form-data.
Response includes:
- intake summary
- parse batch
- evidence items
- assessment
- narrative availability/failure notice when the LLM path degrades
- advisory summary
- share summary
- persisted report metadata
GET /api/v1/analysesSupports filtering by:
severityrecommendationsearchpagepage_size
GET /api/v1/analyses/{report_id}DeployWhisper includes a headless CLI entrypoint for local or CI usage.
python cli.py analyze path/to/plan.json path/to/deployment.yamlThe CLI prints structured JSON containing:
- intake status
- risk assessment
- advisory summary
- share summary
- persisted report metadata
python cli.py skillsThis shows built-in and custom skill override status.
DeployWhisper is configured primarily through environment variables and stored non-secret settings.
APP_NAMEAPP_VERSIONAPP_HOSTAPP_PORTLOG_LEVELDATABASE_URLTOPOLOGY_PATH
LLM_PROVIDERLLM_MODELLLM_API_BASELLM_API_KEYOPENAI_API_KEYANTHROPIC_API_KEYGEMINI_API_KEYGOOGLE_API_KEYOPENROUTER_API_KEYGROQ_API_KEYXAI_API_KEY
DeployWhisper is designed so that:
- raw IaC stays local
- sensitive files such as
.env,.pem,.key,id_rsa,credentials, and*.tfstateare excluded from unsafe downstream handling - provider API keys are not stored in the application database
- advisory results remain non-blocking in v1
DeployWhisper uses one shared analysis core with three access surfaces:
- Web UI via NiceGUI
- REST API via FastAPI
- CLI via
cli.py
Primary runtime components:
parsers/: tool-specific artifact parsinganalysis/: risk scoring, blast radius, rollback, and incident matchingservices/: orchestration, persistence, settings, and topology workflowsllm/: provider routing, prompts, skill context, and narrative generationui/: dashboard, history, incidents, and settings pagesapi/: versioned routes and schema envelopes
Key architectural constraints:
- local-first processing for raw artifacts
- advisory-only decision support in v1
- single-container deployment model
- stable API contract under
/api/v1 - persisted reports before presentation
For more detail, see _bmad-output/planning-artifacts/architecture.md.
Project documentation currently lives in a few places:
- PRD
- Architecture
- UX Specification
- Epics and Stories
- Implementation Readiness Report
- Evidence Model Foundation
- CI Guide
- CI Secrets Checklist
api/ FastAPI routes and schemas
analysis/ Risk scoring, blast radius, rollback, incident matching
cli/ Headless analysis commands
llm/ Narrative generation and skill context
models/ ORM tables and repositories
parsers/ Tool-specific parsers
services/ Shared orchestration and persistence logic
ui/ NiceGUI routes and components
tests/ API, CLI, parser, service, UI, and infra tests
Install dependencies:
pip install -r requirements.txtRun the app:
python app.pyRun the full test suite:
./.venv/bin/python -m unittest discover -qRun the local CI-equivalent checks:
bash scripts/ci-local.shRun the browser keyboard smoke for the review flow:
npm install
npm run test:ui-reviewRun the real macOS VoiceOver smoke on a GUI-enabled Mac:
npm run setup:ui-review
npm run test:ui-review:voiceoverGitHub Actions is configured in .github/workflows/ci.yml.
The published GitHub Marketplace action now lives in its own dedicated public
repository:
deploywhisper/analyze-action@v1.
Typical PR usage:
jobs:
deploywhisper:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: deploywhisper/analyze-action@v1
with:
api-url: ${{ secrets.DEPLOYWHISPER_API_URL }}What the action does:
- detects changed files from the pull request diff
- filters to supported DeployWhisper artifacts locally before upload
- submits those artifacts to the existing
POST /api/v1/analysesendpoint - exits
0when analysis succeeds, regardless of risk verdict - exposes outputs for follow-on GitHub steps:
report-idreport-linkseverityrecommendationshare-summary-jsonshare-summary-markdown
Optional inputs:
api-token: bearer token for protected DeployWhisper APIschanged-files: override auto-detected PR files with a comma or newline separated listworking-directory: repository root when the checkout is not in.
The app repository no longer carries Marketplace action packaging files. Action
source, release metadata, and consumer smoke verification live in the dedicated
deploywhisper/analyze-action repository.
Current CI stages:
qualitychanged-teststestreportnotify-failure
The CI pipeline is backend-focused and intentionally skips frontend-style burn-in loops because the current stack is Python unittest, not a flaky browser E2E suite.
For accessibility-sensitive UI changes, the repo also ships an opt-in macOS verification lane:
npm run test:ui-reviewexercises the seeded review flow with Playwright keyboard automation.npm run test:ui-review:voiceoverexercises the same flow with real VoiceOver on macOS afternpm run setup:ui-review.RUN_UI_A11Y=1 bash scripts/ci-local.shappends both lanes locally when Node dependencies are installed. The VoiceOver step auto-skips on non-macOS hosts.
Contributions are welcome.
If you want to contribute:
- Fork the repository
- Create a feature branch
- Run the local test suite
- Open a pull request with clear rationale and verification notes
High-value contribution areas:
- parser coverage and fixture quality
- risk scoring improvements
- incident-ingestion workflows
- topology-management UX
- authn/authz hardening
- documentation and examples
- Improve README examples for CLI and API usage
- Add realistic parser fixtures for one supported tool
- Strengthen docs around topology JSON and custom skill uploads
- Add screenshots or a short demo GIF once the UI flow is stable
- Expand CI or test coverage around one isolated service or route
- Keep changes scoped and reviewable
- Include verification notes
- Avoid checking in secrets, real infrastructure state, or sensitive sample files
- Prefer tests for behavior changes
- Prefer docs updates when behavior or setup changes
Use GitHub Issues for:
- bug reports
- parser edge cases
- feature requests
- documentation gaps
- architecture or API discussions before larger implementation work
For larger proposals, open an issue first so the implementation direction is discussed before code starts to drift.
DeployWhisper is being developed as an open-source project for DevOps and platform engineering teams.
The intended open-source value proposition is:
- transparent local-first deployment review
- self-hostable architecture
- extensible AI Skills model
- advisory-first automation for CI/CD workflows
If you adopt or extend the project, keep the current maturity in mind: the core analysis path exists, but some production-hardening work is still in progress.
The repository is best understood as:
- a working implementation foundation
- an evolving open-source DevOps tool
- a planning-backed project with explicit product and architecture artifacts
That means contributors can help in both code and product-facing areas:
- implementation
- tests
- docs
- examples
- UX captures
- integration ideas
- real screenshots and demo media
- more sample artifacts for supported tools
- contributor-facing repo metadata such as
LICENSE,CONTRIBUTING.md,CODE_OF_CONDUCT.md, andSECURITY.md - broader onboarding docs for first-time contributors
Near-term directions already visible in the repo and planning artifacts:
- stronger production hardening around auth, observability, and recovery
- richer CI/CD integration patterns
- more complete incident-ingestion and trend workflows
- better contribution and onboarding surfaces for open-source users
DeployWhisper is in active development.
Current implementation state:
- foundation scaffold done.
- shared analysis pipeline is implemented
- API, UI, and CLI surfaces exist
- CI is in place
- broader production hardening is still underway
- release 1.0.0 is out now
This repository should be treated as an evolving open-source platform project rather than a fully hardened production product.