Can I use this for cloud-specific Terraform providers?

Yes, the skill is designed to review Terraform implementations across various providers by looking at general IaC principles and specific resource configurations.

What types of Terraform issues does this skill detect?

The skill identifies a wide range of issues including security vulnerabilities (like hardcoded secrets), operational risks (missing state backends), resource design flaws, and cost optimization opportunities.

How does the skill prioritize findings?

Findings are categorized into High (risk of data loss or security breach), Medium (maintainability and scaling issues), and Low (best practice deviations) severity levels.

Does it provide code fixes?

Yes, for every issue discovered, the skill provides specific, actionable recommendations and often includes code examples to help you implement the fix immediately.

Terraform Infrastructure Reviewer

Name: Terraform Infrastructure Reviewer
Author: sniper-fly

bysniper-fly

0•

部署与 DevOps

Conducts comprehensive reviews of Terraform implementation plans to ensure production readiness, security, and operational efficiency.

The Terraform Infrastructure Reviewer skill provides a structured framework for analyzing Terraform code and deployment plans before they reach production. It evaluates infrastructure-as-code (IaC) through multiple lenses—including security, resource design, cost optimization, and operational stability—to identify potential risks, misconfigurations, and best practice deviations. By utilizing a standardized scoring and feedback loop, it helps developers catch high-severity issues like resource destruction risks or security vulnerabilities before implementation, ensuring more reliable and maintainable cloud infrastructure.

主要功能

01Standardized severity grading (High, Medium, Low) for prioritized remediation.

02Actionable code recommendations and implementation examples for identified issues.

030 GitHub stars

04Context-aware evaluations tailored to specific environment targets.

05Multi-perspective analysis covering security, operations, cost, and resource design.

06Detection of common anti-patterns like hardcoded secrets and over-permissive IAM policies.

使用场景

01Pre-deployment validation of Terraform plans to prevent accidental infrastructure destruction.

02Operational readiness checks to ensure proper tagging, naming, and state management.

03Security auditing of IAM policies and network configurations within IaC modules.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add sniper-fly/souma-recette terraform-review

For use in Claude.ai and ChatGPT

主要功能

01Standardized severity grading (High, Medium, Low) for prioritized remediation.

02Actionable code recommendations and implementation examples for identified issues.

030 GitHub stars

04Context-aware evaluations tailored to specific environment targets.

05Multi-perspective analysis covering security, operations, cost, and resource design.

06Detection of common anti-patterns like hardcoded secrets and over-permissive IAM policies.

使用场景

01Pre-deployment validation of Terraform plans to prevent accidental infrastructure destruction.

02Operational readiness checks to ensure proper tagging, naming, and state management.

03Security auditing of IAM policies and network configurations within IaC modules.