Domain Iot

Name: Domain Iot
Author: actionbook

actionbook/rust-skills

Apply IoT domain constraints—MQTT, offline buffers, power, TLS, OTA rollback—to Rust architecture and crate choices.

Overview

domain-iot is an agent skill most often used in Build (also Operate) that encodes IoT domain constraints—network, power, security, and OTA—into Rust design and implementation guidance.

Install

npx skills add https://github.com/actionbook/rust-skills --skill domain-iot

What is this skill?

Layer 3 domain constraints mapped to design implications and Rust patterns
Six critical rules: unreliable network, power, resource limits, security, reliability, OTA updates
Offline-first with local queue and retry-with-backoff error handling
Power and footprint guidance including no_std and sleep-oriented efficiency
Encrypted comms, signed firmware, watchdog and rollback for safe OTA
6 domain constraint rows (network, power, resources, security, reliability, OTA)
6 critical constraint rule blocks in SKILL.md

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 675 installs on skills.sh; 1.2k GitHub stars; 2/3 security scanners passed (skills.sh audits).

What problem does it solve?

You are modeling an IoT Rust service but your design ignores offline networks, power limits, and device security realities.

Who is it for?

Solo builders architecting Rust telemetry, MQTT gateways, or edge agents before writing protocol and persistence code.

Skip if: Pure cloud-only CRUD APIs with no devices, or teams wanting a turnkey firmware flash tool without Rust design decisions.

When should I use this skill?

Building IoT apps in Rust involving sensors, MQTT, devices, edge computing, telemetry, actuators, or smart-home gateways.

What do I get? / Deliverables

Your architecture explicitly includes buffering, backoff, encryption, watchdog recovery, and safe OTA patterns aligned with domain rules.

Constraint-aligned architecture decisions
Traceable links to lifecycle, error, embedded, and performance patterns

Recommended Skills

Rust Async Patternswshobson/agents

Rust Async Patterns is a procedural agent skill for solo builders who write network services, CLIs, or backend crates wi…13.5k installs·36.5k stars

Rust Best Practicesapollographql/skills

rust-best-practices encodes Apollo GraphQL’s Rust coding idioms for agents and humans writing production Rust. The openi…11.5k installs·80 stars

Memory Safety Patternswshobson/agents

Memory Safety Patterns is an agent skill that distills cross-language techniques for writing systems code without classi…7.8k installs·36.5k stars

Tauri V2nodnarbnitram/claude-code-extensions

Tauri v2 is a cross-platform shell that pairs a web frontend with a Rust backend, which makes IPC, permissions, and pack…4.9k installs·11 stars

Rust Testingaffaan-m/everything-claude-code

Rust Testing Patterns from Everything Claude Code gives solo builders a procedural playbook for reliable Rust code under…4.5k installs·210k stars

Rust Patternsaffaan-m/everything-claude-code

rust-patterns is an agent skill that encodes idiomatic Rust conventions for solo and indie builders shipping performance…4.3k installs·210k stars

Journey fit

Spans multiple journey phases - primary shelf plus alternate fits below.

Primary fit

BuildBackend, data & payments

IoT firmware and gateway logic are implemented in Build; this skill is the domain layer for those Rust designs. Backend covers device protocols, telemetry pipelines, gateways, and edge services rather than mobile UI shells.

Also useful

OperateMonitoring & observability

Where it fits

Example use

BuildBackend, data & payments

Choose local persistence and backoff before wiring MQTT publish loops for field devices.

Example use

BuildIntegrations & version control

Require TLS and signed messages when defining actuator command paths.

Example use

OperateMonitoring & observability

Align watchdog and OTA rollback policies with fleet observability after first deploy.

How it compares

Domain constraint reference for Rust IoT—not a hardware BOM skill or a managed IoT cloud integration pack.

Common Questions / FAQ

Who is domain-iot for?

Rust-focused solo builders and agents working on sensors, gateways, smart-home, or edge telemetry who need constraint-first design.

When should I use domain-iot?

In Build when shaping MQTT/device architecture and in Operate when reinforcing monitoring, recovery, and OTA safety on deployed fleets.

Is domain-iot safe to install?

Review the Security Audits panel on this Prism page; the skill is documentation-only but your generated code still needs TLS, secrets, and firmware signing review.

SKILL.md

READMESKILL.md - Domain Iot

# IoT Domain

> **Layer 3: Domain Constraints**

## Domain Constraints → Design Implications

| Domain Rule | Design Constraint | Rust Implication |
|-------------|-------------------|------------------|
| Unreliable network | Offline-first | Local buffering |
| Power constraints | Efficient code | Sleep modes, minimal alloc |
| Resource limits | Small footprint | no_std where needed |
| Security | Encrypted comms | TLS, signed firmware |
| Reliability | Self-recovery | Watchdog, error handling |
| OTA updates | Safe upgrades | Rollback capability |

---

## Critical Constraints

### Network Unreliability

```
RULE: Network can fail at any time
WHY: Wireless, remote locations
RUST: Local queue, retry with backoff
```

### Power Management

```
RULE: Minimize power consumption
WHY: Battery life, energy costs
RUST: Sleep modes, efficient algorithms
```

### Device Security

```
RULE: All communication encrypted
WHY: Physical access possible
RUST: TLS, signed messages
```

---

## Trace Down ↓

From constraints to design (Layer 2):

```
"Need offline-first design"
    ↓ m12-lifecycle: Local buffer with persistence
    ↓ m13-domain-error: Retry with backoff

"Need power efficiency"
    ↓ domain-embedded: no_std patterns
    ↓ m10-performance: Minimal allocations

"Need reliable messaging"
    ↓ m07-concurrency: Async with timeout
    ↓ MQTT: QoS levels
```

---

## Environment Comparison

| Environment | Stack | Crates |
|-------------|-------|--------|
| Linux gateway | tokio + std | rumqttc, reqwest |
| MCU device | embassy + no_std | embedded-hal |
| Hybrid | Split workloads | Both |

## Key Crates

| Purpose | Crate |
|---------|-------|
| MQTT (std) | rumqttc, paho-mqtt |
| Embedded | embedded-hal, embassy |
| Async (std) | tokio |
| Async (no_std) | embassy |
| Logging (no_std) | defmt |
| Logging (std) | tracing |

## Design Patterns

| Pattern | Purpose | Implementation |
|---------|---------|----------------|
| Pub/Sub | Device comms | MQTT topics |
| Edge compute | Local processing | Filter before upload |
| OTA updates | Firmware upgrade | Signed + rollback |
| Power mgmt | Battery life | Sleep + wake events |
| Store & forward | Network reliability | Local queue |

## Code Pattern: MQTT Client

```rust
use rumqttc::{AsyncClient, MqttOptions, QoS};

async fn run_mqtt() -> anyhow::Result<()> {
    let mut options = MqttOptions::new("device-1", "broker.example.com", 1883);
    options.set_keep_alive(Duration::from_secs(30));

    let (client, mut eventloop) = AsyncClient::new(options, 10);

    // Subscribe to commands
    client.subscribe("devices/device-1/commands", QoS::AtLeastOnce).await?;

    // Publish telemetry
    tokio::spawn(async move {
        loop {
            let data = read_sensor().await;
            client.publish("devices/device-1/telemetry", QoS::AtLeastOnce, false, data).await.ok();
            tokio::time::sleep(Duration::from_secs(60)).await;
        }
    });

    // Process events
    loop {
        match eventloop.poll().await {
            Ok(event) => handle_event(event).await,
            Err(e) => {
                tracing::error!("MQTT error: {}", e);
                tokio::time::sleep(Duration::from_secs(5)).await;
            }
        }
    }
}
```

---

## Common Mistakes

| Mistake | Domain Violation | Fix |
|---------|-----------------|-----|
| No retry logic | Lost data | Exponential backoff |
| Always-on radio | Battery drain | Sleep between sends |
| Unencrypted MQTT | Security risk | TLS |
| No local buffer | Network outage = data loss | Persist locally |

---

## Trace to Layer 1

| Constraint | Layer 2 Pattern | Layer 1 Implementation |
|------------|-----------------|------------------------|
| Offline-first | Store & forward | Local queue + flu

What is this skill?

Layer 3 domain constraints mapped to design implications and Rust patterns

Six critical rules: unreliable network, power, resource limits, security, reliability, OTA updates

Offline-first with local queue and retry-with-backoff error handling

Power and footprint guidance including no_std and sleep-oriented efficiency

Encrypted comms, signed firmware, watchdog and rollback for safe OTA

6 domain constraint rows (network, power, resources, security, reliability, OTA)

6 critical constraint rule blocks in SKILL.md

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 675 installs on skills.sh; 1.2k GitHub stars; 2/3 security scanners passed (skills.sh audits).

Journey fit

Spans multiple journey phases - primary shelf plus alternate fits below.

Primary fit

BuildBackend, data & payments

Also useful

OperateMonitoring & observability

Where it fits

Example use

BuildBackend, data & payments

Choose local persistence and backoff before wiring MQTT publish loops for field devices.

Example use

BuildIntegrations & version control

Require TLS and signed messages when defining actuator command paths.

Example use

OperateMonitoring & observability

Align watchdog and OTA rollback policies with fleet observability after first deploy.

SKILL.md

READMESKILL.md - Domain Iot

# IoT Domain

> **Layer 3: Domain Constraints**

## Domain Constraints → Design Implications

| Domain Rule | Design Constraint | Rust Implication |
|-------------|-------------------|------------------|
| Unreliable network | Offline-first | Local buffering |
| Power constraints | Efficient code | Sleep modes, minimal alloc |
| Resource limits | Small footprint | no_std where needed |
| Security | Encrypted comms | TLS, signed firmware |
| Reliability | Self-recovery | Watchdog, error handling |
| OTA updates | Safe upgrades | Rollback capability |

---

## Critical Constraints

### Network Unreliability

```
RULE: Network can fail at any time
WHY: Wireless, remote locations
RUST: Local queue, retry with backoff
```

### Power Management

```
RULE: Minimize power consumption
WHY: Battery life, energy costs
RUST: Sleep modes, efficient algorithms
```

### Device Security

```
RULE: All communication encrypted
WHY: Physical access possible
RUST: TLS, signed messages
```

---

## Trace Down ↓

From constraints to design (Layer 2):

```
"Need offline-first design"
    ↓ m12-lifecycle: Local buffer with persistence
    ↓ m13-domain-error: Retry with backoff

"Need power efficiency"
    ↓ domain-embedded: no_std patterns
    ↓ m10-performance: Minimal allocations

"Need reliable messaging"
    ↓ m07-concurrency: Async with timeout
    ↓ MQTT: QoS levels
```

---

## Environment Comparison

| Environment | Stack | Crates |
|-------------|-------|--------|
| Linux gateway | tokio + std | rumqttc, reqwest |
| MCU device | embassy + no_std | embedded-hal |
| Hybrid | Split workloads | Both |

## Key Crates

| Purpose | Crate |
|---------|-------|
| MQTT (std) | rumqttc, paho-mqtt |
| Embedded | embedded-hal, embassy |
| Async (std) | tokio |
| Async (no_std) | embassy |
| Logging (no_std) | defmt |
| Logging (std) | tracing |

## Design Patterns

| Pattern | Purpose | Implementation |
|---------|---------|----------------|
| Pub/Sub | Device comms | MQTT topics |
| Edge compute | Local processing | Filter before upload |
| OTA updates | Firmware upgrade | Signed + rollback |
| Power mgmt | Battery life | Sleep + wake events |
| Store & forward | Network reliability | Local queue |

## Code Pattern: MQTT Client

```rust
use rumqttc::{AsyncClient, MqttOptions, QoS};

async fn run_mqtt() -> anyhow::Result<()> {
    let mut options = MqttOptions::new("device-1", "broker.example.com", 1883);
    options.set_keep_alive(Duration::from_secs(30));

    let (client, mut eventloop) = AsyncClient::new(options, 10);

    // Subscribe to commands
    client.subscribe("devices/device-1/commands", QoS::AtLeastOnce).await?;

    // Publish telemetry
    tokio::spawn(async move {
        loop {
            let data = read_sensor().await;
            client.publish("devices/device-1/telemetry", QoS::AtLeastOnce, false, data).await.ok();
            tokio::time::sleep(Duration::from_secs(60)).await;
        }
    });

    // Process events
    loop {
        match eventloop.poll().await {
            Ok(event) => handle_event(event).await,
            Err(e) => {
                tracing::error!("MQTT error: {}", e);
                tokio::time::sleep(Duration::from_secs(5)).await;
            }
        }
    }
}
```

---

## Common Mistakes

| Mistake | Domain Violation | Fix |
|---------|-----------------|-----|
| No retry logic | Lost data | Exponential backoff |
| Always-on radio | Battery drain | Sleep between sends |
| Unencrypted MQTT | Security risk | TLS |
| No local buffer | Network outage = data loss | Persist locally |

---

## Trace to Layer 1

| Constraint | Layer 2 Pattern | Layer 1 Implementation |
|------------|-----------------|------------------------|
| Offline-first | Store & forward | Local queue + flu

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Where it fits

Who is domain-iot for?

When should I use domain-iot?

Is domain-iot safe to install?

SKILL.md

This week for builders

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Where it fits

Who is domain-iot for?

When should I use domain-iot?

Is domain-iot safe to install?

SKILL.md