Debug CI pipelines locally — with breakpoints.
You shouldn't have to push 47 commits to figure out why your CI is failing.
ci-debugger run --step
Every developer knows the loop:
- Write some YAML
- Push to GitHub
- Wait 5 minutes
- See a cryptic error
- Repeat
Existing tools like act help run workflows locally, but they're missing the one thing that makes debugging actually useful: the ability to pause, inspect, and interact.
act gives you 70,000 lines of unformatted logs and no way to drop into a shell when something goes wrong.
ci-debugger fixes that.
Pause execution before or after any step — by name:
ci-debugger run --break-before "Run tests"
ci-debugger run --break-after "Build"
ci-debugger run --break-on-errorAt each breakpoint you get an interactive prompt:
◆ BREAKPOINT before step Run tests
Command:
pytest -x --tb=short
[C] Continue [S] Skip [D] Shell [I] Inspect [Q] Quit
→
Execute one step at a time:
ci-debugger run --stepGreat for walking through a new workflow for the first time.
Drop into the container at any breakpoint with [D]:
# At any breakpoint, press D
[ci-debugger] Dropped into container shell. Type 'exit' to return.
root@abc123:/github/workspace# ls
src/ tests/ go.mod go.sum
root@abc123:/github/workspace# echo $GITHUB_SHA
a1b2c3d4...
root@abc123:/github/workspace# exitThe container state is preserved — continue from where you left off.
Workflows with strategy.matrix are automatically expanded and run as separate jobs, each with its own container:
strategy:
matrix:
node-version: [18, 20]
os: [ubuntu-latest]Matrix: 2 combination(s) for job "test"
▶ test (node-version=18, os=ubuntu-latest)
✓ [1/3] Checkout
✓ [2/3] Use Node.js 18
✓ [3/3] Run tests
▶ test (node-version=20, os=ubuntu-latest)
✓ [1/3] Checkout
✓ [2/3] Use Node.js 20
✓ [3/3] Run tests
Use ${{ matrix.node-version }} in your steps — expressions are expanded per combination. fail-fast is respected (default: true).
Sidecar services (postgres, redis, mysql, etc.) are started automatically when your job defines them:
services:
postgres:
image: postgres:15
env:
POSTGRES_PASSWORD: secretServices are reachable by hostname (postgres, redis, etc.) inside your job container via a shared Docker bridge network.
actions/checkout is handled automatically (your workspace is already mounted). For other uses: steps, ci-debugger fetches the action.yml from GitHub and runs composite actions inline in your container:
↓ fetching actions/setup-node@v4...
▶ running composite action (3 step(s))
✓ [1/3] Set up Node
✓ [2/3] Install dependencies
✓ [3/3] Cache
Node and Docker action types are skipped with a warning.
Point ci-debugger at an azure-pipelines.yml — it auto-detects the format and maps it to the same runner:
ci-debugger run -W azure-pipelines.ymlDetected Azure DevOps pipeline: azure-pipelines.yml
▶ Build (ghcr.io/catthehacker/ubuntu:act-latest)
✓ [1/3] Checkout
✓ [2/3] Build
✓ [3/3] Run unit tests
Supports: script: / bash:, task: (skipped with warning), checkout: self, pool.vmImage, variables, dependsOn, condition, stages, and top-level steps. If there's no azure-pipelines.yml in .github/workflows/, ci-debugger also looks for it in the project root automatically.
Scan your workflows before running them:
ci-debugger scanScan Results (3 workflow(s))
────────────────────────────────────────────────────────────────
✖ error
location: ci.yml > deploy > "Deploy to prod"
needs: references unknown job "release"
⚠ warning
location: ci.yml > test > step 2
uses: "actions/setup-python@v4" is not supported locally — will be skipped
────────────────────────────────────────────────────────────────
1 error(s), 1 warning(s)
Catches: circular job dependencies, invalid needs: references, unsupported uses: actions, steps missing run: or uses:, and unclosed ${{ }} expressions.
See exactly which GitHub environment variables are real, stubbed, or unavailable locally before running:
ci-debugger run --env-report -W .github/workflows/ci.ymlEnvironment Variables Report
────────────────────────────────────────────────────────────────────────
Variable Status Value
────────────────────────────────────────────────────────────────────────
GITHUB_ACTIONS real true
GITHUB_SHA real a3f4b2c1d...
GITHUB_REPOSITORY real owner/repo
GITHUB_REF real refs/heads/main
GITHUB_WORKSPACE stubbed /github/workspace
RUNNER_OS stubbed Linux
GITHUB_TOKEN unavailable (injected by GitHub)
ACTIONS_ID_TOKEN_REQUEST_URL unavailable (OIDC not available locally)
────────────────────────────────────────────────────────────────────────
Legend: real = from local git stubbed = fixed local value unavailable = GitHub-only
Clean, color-coded output that shows what matters:
ci-debugger My CI Workflow
▶ test (ghcr.io/catthehacker/ubuntu:act-latest)
✓ [1/3] Checkout
✓ [2/3] Install dependencies (12.3s)
✗ [3/3] Run tests (exit 1, 45.2s)
── stderr ──
FAILED tests/test_api.py::test_create_user
AssertionError: 404 != 200
╭──────────────────────────────────────────────────────╮
│ Summary │
│ │
│ Job: test │
│ 1 Checkout passed 0.1s │
│ 2 Install dependencies passed 12.3s │
│ 3 Run tests FAILED 45.2s │
╰──────────────────────────────────────────────────────╯
Total: 57.6s 2 passed 1 failed
| Feature | ci-debugger | act |
|---|---|---|
| Run workflows locally | ✓ | ✓ |
| Breakpoints | ✓ | ✗ |
| Step-by-step mode | ✓ | ✗ |
| Interactive shell at breakpoint | ✓ | ✗ |
| Matrix builds | ✓ | ✓ |
| Service containers | ✓ | ✓ |
Composite uses: actions |
✓ | ✓ |
| Azure DevOps Pipelines | ✓ | ✗ |
Static analysis (scan) |
✓ | ✗ |
Env var transparency (--env-report) |
✓ | ✗ |
| Clean, readable output | ✓ | ✗ (70K log lines) |
GITHUB_OUTPUT support |
✓ | ✓ |
| Windows runners | ✗ | ✗ |
brew install murataslan1/tap/ci-debuggergo install github.com/murataslan1/ci-debugger@latestDownload from Releases.
- Docker must be running
- Go 1.21+ (for
go install)
# In your project directory
cd your-project/
# List available workflows and jobs
ci-debugger list
# Scan for issues before running
ci-debugger scan
# Check which env vars are real vs stubbed
ci-debugger run --env-report
# Run with step-by-step mode
ci-debugger run --step
# Run specific workflow
ci-debugger run -W .github/workflows/ci.yml
# Run an Azure DevOps pipeline
ci-debugger run -W azure-pipelines.yml
# Run specific job
ci-debugger run -j test
# Break when anything fails
ci-debugger run --break-on-error
# Break before a specific step
ci-debugger run --break-before "Run tests"
# Full output
ci-debugger run -vCreate a .env file in your project root:
DATABASE_URL=postgres://localhost/myapp
API_KEY=dev-key-hereCreate a .secrets file:
GITHUB_TOKEN=ghp_xxx
NPM_TOKEN=npm_xxxBoth files follow .env format: KEY=VALUE lines, # comments, optional export prefix.
Map runs-on labels to custom Docker images:
ci-debugger run --platform ubuntu-latest=my-registry/ubuntu:customruns-on |
Docker Image |
|---|---|
ubuntu-latest |
ghcr.io/catthehacker/ubuntu:act-latest |
ubuntu-24.04 |
ghcr.io/catthehacker/ubuntu:act-24.04 |
ubuntu-22.04 |
ghcr.io/catthehacker/ubuntu:act-22.04 |
ubuntu-20.04 |
ghcr.io/catthehacker/ubuntu:act-20.04 |
- Linux runners only —
windows-latestandmacos-latestmap to the ubuntu image as best-effort - Node/Docker
uses:actions — composite actions run inline; node and docker action types are skipped with a warning - Expression evaluation —
${{ env.X }},${{ secrets.X }},${{ matrix.X }}, and${{ inputs.X }}are supported. Complex expressions may not evaluate correctly
-
uses:composite action support - Env var transparency (
--env-report) - Static analysis (
ci-debugger scan)
- Node/Docker
uses:action execution - Full
${{ }}expression engine - Workflow
outputs:propagation across jobs -
--watchmode — re-run on file change
Have an idea? Open an issue.
Pull requests are welcome. For major changes, open an issue first.
git clone https://github.com/murataslan1/ci-debugger
cd ci-debugger
go test ./...
go build -o bin/ci-debugger ./cmd/ci-debuggerMIT © Murat Aslan