Is this skill safe to run against my live AWS account?

The skill is categorized as 'safe' as it primarily performs read-only audits and provides policy recommendations. However, you should always review and test generated policies in a non-production environment before applying changes.

What is the primary benefit of the AWS IAM Best Practices skill?

It automates the detection of security vulnerabilities in AWS IAM policies, specifically targeting wildcard permissions, unrotated keys, and missing MFA enforcement.

Does this skill help with creating new IAM policies?

Yes, it provides optimized templates for common scenarios like least-privilege S3 access, time-based conditions, and IP-restricted resource access.

Can I use this to find unused IAM roles?

Yes, the skill includes specific analysis tools to list roles that have had no activity for over 90 days, helping you reduce your attack surface.

AWS IAM Security Best Practices

Name: AWS IAM Security Best Practices
Author: netbarros

bynetbarros

•

セキュリティとテスト

Hardens AWS IAM security by implementing least privilege principles and performing automated policy audits.

The AWS IAM Best Practices skill is a specialized tool for Claude Code designed to review, secure, and optimize Identity and Access Management configurations. It empowers developers and DevOps engineers to identify overly permissive policies, enforce Multi-Factor Authentication (MFA), and manage access key lifecycles through automated checks and templates. By adhering to core security principles like defense in depth and separation of duties, this skill helps mitigate the risk of unauthorized access and ensures cloud infrastructure remains compliant with modern security standards.

主な機能

01Role trust relationship analysis and external account access auditing

02Automated identification of wildcard (*) and overly permissive policies

03Detection and enforcement of Multi-Factor Authentication (MFA) across users

046 GitHub stars

05Access key lifecycle management and stale credential identification

06Least-privilege policy template generation for S3 and restricted access

ユースケース

01Identifying and rotating long-term credentials to meet compliance requirements

02Generating production-ready, restricted policies for new microservices

03Conducting comprehensive security audits of existing AWS IAM environments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add netbarros/psique security

For use in Claude.ai and ChatGPT