Skill

Cloud Posture

Manage cloud security posture, compliance scanning, and security settings across cloud environments using Trend Micro Vision One. This skill includes both read and write operations for posture management.

npx claudepluginhub trendmicro/vision-one-skills --plugin vision-one-api

Tool Access

This skill uses the workspace's default tool permissions.

Preview

SKILL.md

Similar Skills

android-clean-architecture

171.0k

Implements Clean Architecture in Android and Kotlin Multiplatform projects: module layouts, dependency rules, UseCases, Repositories, domain models, and data layers with Room, SQLDelight, Ktor.

everything-claude-code

plankton-code-quality

171.0k

Enforces code quality on file edits via Plankton hooks: auto-formats, lints, Claude-powered fixes with model tiering, config protection, and legacy package manager blocks.

everything-claude-code

cpp-coding-standards

171.0k

Enforces C++ Core Guidelines for writing, reviewing, and refactoring modern C++ code (C++17+), promoting RAII, immutability, type safety, and idiomatic practices.

everything-claude-code

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitFeb 23, 2026

Actions

View Source View Plugin View on GitHub View README

Cloud Posture

Instructions

When the user asks about cloud posture, compliance, or cloud security configuration, use this skill to query and manage posture data.
Check posture status: Start with get_cloud_posture_overview to understand the current compliance and posture state.
List compliance findings: Use list_cloud_posture_findings to identify misconfigurations and compliance violations.
Review templates: Use list_cloud_posture_templates to see available compliance templates and standards.
Before write operations: Always confirm with the user before executing any write operations (scan triggers, settings updates).
Trigger scans: Use trigger_cloud_posture_scan to initiate compliance scans when requested by the user.
Update settings: Use update_cloud_posture_settings to modify posture configurations with user approval.
Track remediation: Help users track which findings have been addressed and which remain open.

Tools

This skill uses the following Vision One MCP tools:

CSPM Accounts

Tool	Purpose	Type
`cloud_posture_accounts_list`	List all CSPM accounts	Read

Compliance Checks

Tool	Purpose	Type
`cloud_posture_account_checks_list`	List compliance checks for an account	Read

Scan Management

Tool	Purpose	Type
`cloud_posture_account_scan`	Start scanning a cloud posture account	Write
`cloud_posture_account_scan_settings_get`	Get scan settings for an account	Read
`cloud_posture_account_scan_settings_update`	Update scan settings (enabled/interval)	Write

Template Scanner

Tool	Purpose	Type
`cloud_posture_template_scanner_run`	Scan IaC templates (CloudFormation/Terraform)	Write

Cloud Risk Management

Tool	Purpose	Type
`cloud_risk_management_accounts_list`	List cloud accounts you can access	Read
`cloud_risk_management_account_scan_rules_get`	Get scan rule settings for an account	Read
`cloud_risk_management_services_list`	List cloud services and associated rules	Read

Common Workflows

Compliance Assessment

Get posture overview for current state
List findings grouped by severity
Identify critical misconfigurations
Map findings to compliance frameworks
Prioritize remediation activities

Compliance Scan Request

List available templates to identify scan scope
Confirm with user before triggering scan
Trigger cloud posture scan
Monitor scan progress
Review new findings after completion

Posture Configuration Update

Review current settings
Discuss proposed changes with user
Get explicit user approval for changes
Apply settings update
Verify changes were applied successfully

Remediation Tracking

List findings filtered by status
Identify findings marked for remediation
Check if remediated findings have been rescanned
Report on remediation progress
Highlight remaining open items

Infrastructure as Code Scanning

Receive CloudFormation or Terraform template content
Confirm with user before scanning
Run template scanner
Review findings for misconfigurations
Report security issues before deployment
Recommend remediations for template issues

Scan Rule Configuration

List cloud risk management accounts
Get scan rule settings for specific account
Review customized rules vs. defaults
List available services and rules
Document rule configuration for compliance

Output Format

Posture Overview

## Cloud Posture Summary

**Overall Compliance**: [%]
**Last Scan**: [Timestamp]

### Findings by Severity
- Critical: [count]
- High: [count]
- Medium: [count]
- Low: [count]

### Compliance by Framework
| Framework | Score | Pass | Fail |
|-----------|-------|------|------|
| CIS | [%] | [count] | [count] |
| SOC 2 | [%] | [count] | [count] |
| PCI DSS | [%] | [count] | [count] |

Compliance Finding

## Finding: [Title]

**Severity**: [Critical/High/Medium/Low]
**Framework**: [CIS/SOC 2/etc.]
**Rule ID**: [ID]

### Description
[Finding description]

### Affected Resources
- [Resource type]: [Resource ID]

### Remediation
[Steps to remediate]

### Compliance Impact
- [Framework]: [Control ID]

Write Operation Confirmation

## Action Required: [Operation Type]

**Operation**: [Description of what will be changed]
**Scope**: [What resources/settings will be affected]

### Current State
[Current configuration]

### Proposed Change
[What will change]

**Do you want to proceed with this operation? (yes/no)**

Security Considerations

Write operations require explicit user confirmation before execution
Scan triggers may impact cloud API rate limits
Settings changes affect security policy enforcement
Document all configuration changes for audit purposes
Critical findings should be addressed promptly
Coordinate posture changes with cloud operations teams
Test settings changes in non-production environments first when possible