Skill

aws-infra

From sundial-org-awesome-openclaw-skills-4

Assists with AWS infrastructure via CLI: query, audit, monitor resources (EC2, S3, IAM, Lambda, ECS/EKS, RDS, CloudWatch, billing). Proposes safe changes with explicit user confirmation before execution.

AWS

infrastructure

devops

Install

npx claudepluginhub joshuarweaver/cascade-ai-ml-agents-misc-2 --plugin sundial-org-awesome-openclaw-skills-4

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Use the local AWS CLI to answer questions about AWS resources. Default to read‑only queries. Only propose or run write/destructive actions after explicit user confirmation.

Supporting Assets

assets/icon.svgreferences/aws-cli-queries.md

SKILL.md

Similar Skills

cache-components

Guides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.

cache-components

139.2k

mcp-builder

9 files

Guides building MCP servers enabling LLMs to interact with external services via tools. Covers best practices, TypeScript/Node (MCP SDK), Python (FastMCP).

anthropics-skills-13

124.2k

canvas-design

20 files

Generates original PNG/PDF visual art via design philosophy manifestos for posters, graphics, and static designs on user request.

anthropics-skills-13

124.2k

Stats

Stars586

Forks75

Last CommitFeb 1, 2026

Actions

View Source View Plugin View on GitHub View README

AWS Infra

Overview

Use the local AWS CLI to answer questions about AWS resources. Default to read‑only queries. Only propose or run write/destructive actions after explicit user confirmation.

Quick Start

Determine profile/region from environment or ~/.aws/config.
Start with identity:
- aws sts get-caller-identity
Use read‑only service commands to answer the question.
If the user asks for changes, outline the exact command and ask for confirmation before running.

Safety Rules (must follow)

Treat all actions as read‑only unless the user explicitly requests a change and confirms it.
For any potentially destructive change (delete/terminate/destroy/modify/scale/billing/IAM credentials), require a confirmation step.
Prefer --dry-run when available and show the plan before execution.
Never reveal or log secrets (access keys, session tokens).

Task Guide (common requests)

Inventory / list: use list/describe/get commands.
Health / errors: use CloudWatch metrics/logs queries.
Security checks: IAM, S3 public access, SG exposure, KMS key usage.
Costs: Cost Explorer / billing queries (read‑only).
Changes: show exact CLI command and require confirmation.

Region & Profile Handling

If the user specifies a region/profile, honor it.
Otherwise use AWS_PROFILE / AWS_REGION if set, then fall back to ~/.aws/config.
When results are region‑scoped, state the region used.

References

See references/aws-cli-queries.md for common command patterns.

Assets

assets/icon.svg — custom icon (dark cloud + terminal prompt)