Best answer
Nerve is a narrow fit for CI/CD alerts when the CI secret should only send. It should not read alert history, decrypt payloads, connect as an agent or execute commands.
Minimal pattern
curl -fsSL https://nerve.ink/install.sh | sh
export NERVE_DSN="nerve://TOKEN:[email protected]"
./deploy.sh || echo "deploy failed" | nerve send --severity critical --title "Deploy failed"
Recommended CI events
- Protected branch build failed.
- Production deploy failed.
- Post-deploy smoke test failed.
- Database migration failed.
- Rollback completed or failed.
Why not a broad CI token?
A CI notification secret should not be an admin token, read token, deployment token or SSH key. A Nerve sender DSN creates one encrypted signal for one pipe and nothing else.
Where Nerve sits
GitHub Actions, GitLab CI, Jenkins or Buildkite remain the workflow engine. Nerve is the encrypted phone delivery layer and optional signed-action boundary after the alert.