Basic Agentic Collection
-Essential Red Hat skills for IT professionals: CVE explanation, diagnostics, product lifecycle, RHEL patch planning, and...
-Module: rh-basic · v0.1.0 · IT Professional, Red Hat Customer
- - -Overview
Lightweight, self-contained skills for everyday Red Hat operations and support tasks. Skills fall back to public Red Hat documentation when MCP tools are unavailable.
Documentation
Skills source authoritative content from official Red Hat documentation at runtime using WebFetch. No offline doc corpus is bundled; the pack stays lean and always reflects current Red Hat guidance.
Key reference sources used by skills:
--
-
- Red Hat Product Life Cycles — lifecycle phases and dates -
- Red Hat CVE Database — CVE metadata and severity ratings -
- Red Hat Security Advisories — RHSA/RHBA/RHEA advisory detail -
- sos tool documentation — diagnostic collection -
- OCP must-gather — OpenShift diagnostic data -
- AAP troubleshooting — AAP log gathering -
MCP
lightspeed-mcp — Red Hat Lightspeed
-Provides live data for CVE lookups, RHEL lifecycle, system inventory, and patch advisory information.
--
-
- CVE metadata and severity — used by
red-hat-cve-explainerandred-hat-support-severity
- - RHEL and App Stream lifecycle dates — used by
red-hat-product-lifecycle
- - Requires:
LIGHTSPEED_CLIENT_ID,LIGHTSPEED_CLIENT_SECRET
- - Transport: Podman container (
ghcr.io/redhatinsights/red-hat-lightspeed-mcp:latest)
-
All skills fall back to WebFetch on public Red Hat documentation when this MCP server is unavailable. A valid service account improves data currency and enables inventory queries.
Quick Start
Prerequisites
--
-
- Claude Code CLI or IDE extension (if using Claude Code) -
- Podman installed (for the container-based Lightspeed MCP server) -
- Red Hat service account (console.redhat.com) -
Skills fall back to WebFetch on public Red Hat documentation if the MCP server is not configured — Podman and a service account are optional.
-Environment setup
-Configure Red Hat Lightspeed credentials (names must match mcps.json):
export LIGHTSPEED_CLIENT_ID="your-service-account-client-id"
-export LIGHTSPEED_CLIENT_SECRET="your-service-account-client-secret"
-
-Secrets must never be committed to the repository and must not be echoed in assistant output.
Installation (Claude Code)
lola install -f rh-basic -a claude-code
-Installation (Cursor)
lola install -f rh-basic -a cursor
-MCP configuration
-Server definitions live in mcps.json at the pack root. The Lightspeed MCP server runs as a Podman container using ${LIGHTSPEED_CLIENT_ID} and ${LIGHTSPEED_CLIENT_SECRET} placeholders only; never commit secret values.
Configure the environment variables above, then run lola install -f rh-basic to install the pack.
Security Model
-
-
- Credentials: Environment variables only — never hardcoded in any project file or echoed in assistant output. Skills verify that variables are set without printing their values. -
- Container isolation: The Lightspeed MCP server runs in a Podman container; host credentials are injected at runtime via
--envflags.
- - No write operations: All skills are read-only with respect to Red Hat platform data. No remediation playbooks are generated or executed by this pack. -
- Self-removing setup skill:
red-hat-get-starteddeletes itself from the project after completing its one-time task.
-
Skills
The pack provides 7 skills covering the most common Red Hat support and operations workflows.
-All skills are self-contained and fall back to WebFetch when the Lightspeed MCP server is unavailable.
Skills
-
--
/red-hat-cve-explainer- CVE Explanation and Severity Rating-View SKILL.md on GitHub -> -Explain a CVE using Red Hat's severity rating system and recommend a course of action.
-Use when:
-- What is CVE-2024-1234?
-- How severe is this CVE?
-- Should I patch CVE-X immediately?
-What it does:
-- Looks up CVE metadata via Lightspeed MCP or Red Hat CVE pages
-- Maps to Red Hat severity (Critical/Important/Moderate/Low)
-- Links to applicable security advisories (RHSA/RHBA/RHEA)
-- Gives a concrete action recommendation per severity -
--
/red-hat-diagnostics- Diagnostic Data Gathering for Red Hat Support-View SKILL.md on GitHub -> -Provide the correct commands and upload instructions for gathering diagnostics across Red Hat products.
-Use when:
-- How do I collect a sos report?
-- What must-gather do I run for OpenShift?
-- How do I gather AAP logs for a support case?
-What it does:
-- Identifies product and deployment type (RHEL, OCP, AAP RPM/containerized/operator, Satellite)
-- Provides exact commands for each product and deployment variant
-- Explains how to upload archives to Red Hat Support -
--
/red-hat-get-started- Bootstrap Installer (self-removes after use)-View SKILL.md on GitHub -> -Fetch and install all Red Hat Basic skills into the current project. Removes itself after running.
-Use when:
-- Setting up Red Hat skills for the first time in a project
-What it does:
-- Downloads each skill from the canonical source URL
-- Creates skill directories under .claude/skills/
-- Reports any download failures for manual recovery
-- Deletes itself on completion -
--
/red-hat-product-lifecycle- Product Lifecycle Status and Support Phase Lookup-View SKILL.md on GitHub -> -Report the current lifecycle phase and support dates for any Red Hat product or version.
-Use when:
-- Is RHEL 8.6 still supported?
-- When does OpenShift 4.14 reach end of maintenance?
-- What App Streams are available for RHEL 9?
-What it does:
-- Retrieves lifecycle dates via Lightspeed MCP or Red Hat lifecycle pages
-- Explains what updates each phase receives (security, bug, features)
-- Gives a concrete action recommendation (upgrade, EUS, patch normally)
-- Explains Red Hat's backporting model when relevant -
--
/red-hat-support-severity- Support Ticket Severity and SLA Guidance-View SKILL.md on GitHub -> -Determine the correct severity for a Red Hat support ticket and explain the SLA.
-Use when:
-- What severity should I file this case as?
-- Is this a Sev 1 or Sev 2?
-- What's the SLA for my support tier?
-What it does:
-- Maps situation (outage, impairment, workaround) to Sev 1-4
-- Shows SLA response times for Premium and Standard support
-- Lists what to include in the ticket for fastest resolution
-- Adjusts recommendation when a CVE is involved
Skills Decision Guide
| User request | Skill to use | Reason |
|---|---|---|
"Explain this CVE" or "How severe is CVE-X?" | /red-hat-cve-explainer | Looks up CVE severity using Red Hat rating system and recommends action. |
"How do I collect diagnostics?" or "What must-gather command do I use?" | /red-hat-diagnostics | Provides product-specific diagnostic collection commands for support cases. |
"Is RHEL 8 still supported?" or "When does OpenShift 4.14 reach EOL?" | /red-hat-product-lifecycle | Retrieves lifecycle phase and dates for any Red Hat product version. |
"What severity should I file this support case?" or "What SLA do I get?" | /red-hat-support-severity | Maps situation to Sev 1-4 and shows SLA for Premium and Standard support. |
"Install Red Hat skills" or "Set up Red Hat agent skills" | /red-hat-get-started | Bootstrap installer that downloads and installs all skills in the pack. |
References
- Red Hat Customer Portal - Security advisories, CVE database, product lifecycle, and support case management.
- Red Hat CVE Database - Red Hat severity ratings and advisory mappings for CVEs.
- Red Hat Product Life Cycles - Lifecycle phase dates for RHEL, OpenShift, Ansible, and other Red Hat products.
- Red Hat Lightspeed - Red Hat Insights console for inventory, CVE data, and patch advisory information.
- Red Hat Support Severity Definitions - Official severity levels and SLA commitments for Red Hat support subscriptions.
- Lola Package Manager - Package manager used to install agentic collections.
MCP Server Integrations
Sample Workflows
CVE triage
User: "What is CVE-2024-1234 and how urgent is it?"
-- red-hat-cve-explainer looks up severity and advisory, recommends action
Opening a support case
User: "My production RHEL cluster is partially down. What severity should I file?"
-- red-hat-support-severity maps situation to Sev 2, explains SLA and 24x7 coverage
-User: "What diagnostic data should I attach to the case?"
-- red-hat-diagnostics provides sos report commands and upload instructions
Lifecycle check before an upgrade decision
User: "Is RHEL 8.8 still receiving security patches?"
-- red-hat-product-lifecycle reports current phase, dates, and what updates are provided
-User: "When do I need to upgrade or move to EUS?"
-- red-hat-product-lifecycle explains EUS options and recommends upgrade timeline