Does it automatically apply infrastructure changes?

No, this skill functions strictly as a review and auditing tool to identify risks and suggest improvements before manual application.

What types of IaC does this skill support?

It is designed to review any infrastructure-as-code format that provides a plan or diff output, including Terraform, CloudFormation, and Pulumi.

How does it handle resource drift?

The skill analyzes plan outputs to identify resources that have changed outside of the codebase, alerting you to potential state mismatches before they cause deployment failures.

Can it detect security vulnerabilities in my cloud setup?

Yes, it specifically scans for open security groups, overly permissive IAM roles, and misconfigured networking rules that could lead to data exposure.

Is this skill intended for expert cloud architects?

While useful for all levels, it is specifically optimized to act as a mentor and safety net for mid-level developers who need a reliable second look at their infrastructure changes.

Infrastructure-as-Code Reviewer

Name: Infrastructure-as-Code Reviewer
Author: spideynolove

byspideynolove

0•

Deployment & DevOps

Reviews infrastructure-as-code changes to identify security risks, destructive operations, and configuration errors.

The IaC Reviewer skill acts as a specialized virtual architect for cloud infrastructure changes, providing a critical second look at infrastructure-as-code (IaC) plans and diffs. It analyzes resource changes for potential drift, evaluates security group and IAM configurations against least-privilege principles, and identifies risky or destructive operations before they reach production. Designed for developers and DevOps engineers, it ensures that networking rules, state handling, and deployment sequences align with industry best practices for safe and stable cloud management.

Key Features

01Confirms correct resource deployment order and dependency handling

02Analyzes plan-vs-actual drift to prevent state corruption

03Validates IAM policies against least-privilege security standards

04Audits security groups and networking rules for potential vulnerabilities

05Detects destructive resource deletions and high-risk modifications

060 GitHub stars

Use Cases

01Performing a final safety check on Terraform plans before production deployment

02Reviewing complex networking updates to prevent accidental downtime or exposure

03Auditing IAM role changes to ensure compliance with organizational security policies

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add spideynolove/codex-in-action infra

For use in Claude.ai and ChatGPT