@raishin/vanguard-frontier-agentic 1.0.0 → 1.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +245 -316
- package/agents/README.md +44 -43
- package/agents/aws/AGENTS.md +27 -0
- package/agents/aws/README.md +62 -0
- package/agents/aws/aws-agentcore-agent/AGENT.md +55 -0
- package/agents/aws/aws-agentcore-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-agentcore-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-agentcore-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-agentcore-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-agentcore-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-agentcore-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-agentcore-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-agentcore-agent/metadata.json +51 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-api-edge-delivery-review-agent/metadata.json +36 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/AGENT.md +55 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-bedrock-agent-security-governor-agent/metadata.json +36 -0
- package/agents/aws/aws-change-impact-advisor-agent/AGENT.md +56 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-change-impact-advisor-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-change-impact-advisor-agent/metadata.json +36 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/AGENT.md +55 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-ci-cd-release-engineer-agent/metadata.json +36 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/AGENT.md +55 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-compliance-evidence-mapper-agent/metadata.json +36 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/AGENT.md +56 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-cost-anomaly-watch-coordinator-agent/metadata.json +36 -0
- package/agents/aws/aws-cost-optimization-governor-agent/AGENT.md +55 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-cost-optimization-governor-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-cost-optimization-governor-agent/metadata.json +36 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/AGENT.md +56 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-daily-operations-briefing-coordinator-agent/metadata.json +36 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/AGENT.md +55 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-data-protection-backup-steward-agent/metadata.json +36 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/AGENT.md +54 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/codex.toml +30 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/copilot.agent.md +50 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/cursor.agent.md +39 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/gemini.agent.md +38 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/harnesses/kiro-ide.agent.md +37 -0
- package/agents/aws/aws-deployment-hotfix-operator-agent/metadata.json +34 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/AGENT.md +55 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-devops-agent-skill-designer-agent/metadata.json +36 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-dynamodb-data-modeling-performance-review-agent/metadata.json +36 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/AGENT.md +55 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-ec2-compute-operations-steward-agent/metadata.json +36 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/AGENT.md +55 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-ecs-fargate-platform-operator-agent/metadata.json +36 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/AGENT.md +54 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/codex.toml +30 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/copilot.agent.md +50 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/cursor.agent.md +39 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/gemini.agent.md +38 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/harnesses/kiro-ide.agent.md +37 -0
- package/agents/aws/aws-ecs-service-remediation-operator-agent/metadata.json +35 -0
- package/agents/aws/aws-eks-platform-operator-agent/AGENT.md +55 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-eks-platform-operator-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-eks-platform-operator-agent/metadata.json +36 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-event-driven-architecture-review-agent/metadata.json +36 -0
- package/agents/aws/aws-generative-ai-developer-agent/AGENT.md +56 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/codex.toml +33 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-generative-ai-developer-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-generative-ai-developer-agent/metadata.json +40 -0
- package/agents/aws/aws-iac-change-safety-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-iac-change-safety-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-iac-change-safety-review-agent/metadata.json +36 -0
- package/agents/aws/aws-iac-patch-executor-agent/AGENT.md +54 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/codex.toml +30 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/copilot.agent.md +50 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/cursor.agent.md +39 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/gemini.agent.md +38 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-iac-patch-executor-agent/harnesses/kiro-ide.agent.md +37 -0
- package/agents/aws/aws-iac-patch-executor-agent/metadata.json +35 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-iam-least-privilege-review-agent/metadata.json +36 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/AGENT.md +55 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-kms-secrets-lifecycle-steward-agent/metadata.json +36 -0
- package/agents/aws/aws-landing-zone-governor-agent/AGENT.md +55 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-landing-zone-governor-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-landing-zone-governor-agent/metadata.json +36 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/AGENT.md +57 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/IAM-PERMISSIONS.md +74 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/codex.toml +31 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/copilot.agent.md +53 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/aws/aws-live-deployment-guarded-operator-agent/metadata.json +27 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/AGENT.md +57 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/IAM-PERMISSIONS.md +86 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/codex.toml +31 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/aws/aws-live-ecs-rollout-guard-agent/metadata.json +27 -0
- package/agents/aws/aws-live-iac-change-guard-agent/AGENT.md +57 -0
- package/agents/aws/aws-live-iac-change-guard-agent/IAM-PERMISSIONS.md +87 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/codex.toml +31 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-live-iac-change-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/aws/aws-live-iac-change-guard-agent/metadata.json +28 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/AGENT.md +57 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/IAM-PERMISSIONS.md +79 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/codex.toml +31 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/copilot.agent.md +53 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/aws/aws-live-pipeline-approval-operator-agent/metadata.json +27 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/AGENT.md +57 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/IAM-PERMISSIONS.md +87 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/codex.toml +31 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/aws/aws-live-serverless-release-guard-agent/metadata.json +27 -0
- package/agents/aws/aws-maestro-agent/AGENT.md +55 -0
- package/agents/aws/aws-maestro-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-maestro-agent/harnesses/codex.toml +34 -0
- package/agents/aws/aws-maestro-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-maestro-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-maestro-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-maestro-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-maestro-agent/metadata.json +37 -0
- package/agents/aws/aws-migration-cutover-architect-agent/AGENT.md +55 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-migration-cutover-architect-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-migration-cutover-architect-agent/metadata.json +36 -0
- package/agents/aws/aws-network-architect-agent/AGENT.md +55 -0
- package/agents/aws/aws-network-architect-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-network-architect-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-network-architect-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-network-architect-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-network-architect-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-network-architect-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-network-architect-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-network-architect-agent/metadata.json +38 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/AGENT.md +56 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-non-destructive-task-automation-advisor-agent/metadata.json +36 -0
- package/agents/aws/aws-observability-incident-responder-agent/AGENT.md +55 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-observability-incident-responder-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-observability-incident-responder-agent/metadata.json +36 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/AGENT.md +54 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/codex.toml +30 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/copilot.agent.md +50 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/cursor.agent.md +39 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/gemini.agent.md +38 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/harnesses/kiro-ide.agent.md +37 -0
- package/agents/aws/aws-pipeline-fix-operator-agent/metadata.json +35 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/AGENT.md +55 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-rds-aurora-performance-investigator-agent/metadata.json +36 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/AGENT.md +55 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-resilience-bcdr-review-agent/metadata.json +36 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/AGENT.md +55 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-s3-data-perimeter-governor-agent/metadata.json +36 -0
- package/agents/aws/aws-security-posture-hardening-agent/AGENT.md +55 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-security-posture-hardening-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-security-posture-hardening-agent/metadata.json +36 -0
- package/agents/aws/aws-serverless-production-readiness-agent/AGENT.md +55 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-serverless-production-readiness-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-serverless-production-readiness-agent/metadata.json +36 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/AGENT.md +54 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/codex.toml +30 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/copilot.agent.md +50 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/cursor.agent.md +39 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/gemini.agent.md +38 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/harnesses/kiro-ide.agent.md +37 -0
- package/agents/aws/aws-serverless-rollout-corrector-agent/metadata.json +35 -0
- package/agents/aws/aws-solution-architect-agent/AGENT.md +55 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/copilot.agent.md +51 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/cursor.agent.md +40 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/gemini.agent.md +39 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-solution-architect-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/aws/aws-solution-architect-agent/metadata.json +37 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/AGENT.md +56 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/codex.toml +32 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/copilot.agent.md +52 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/cursor.agent.md +41 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/gemini.agent.md +40 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/aws/aws-ticket-triage-escalation-coordinator-agent/metadata.json +36 -0
- package/agents/azure/AGENTS.md +26 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/PERMISSIONS.md +56 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/PREFLIGHT.md +48 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/ROLLBACK.md +36 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-aks-rollout-guard-agent/metadata.json +27 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/PERMISSIONS.md +43 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/PREFLIGHT.md +50 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/ROLLBACK.md +46 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-app-service-slot-swap-guard-agent/metadata.json +26 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/PERMISSIONS.md +88 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/PREFLIGHT.md +48 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/ROLLBACK.md +48 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-arm-deployment-stack-guard-agent/metadata.json +27 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/PERMISSIONS.md +93 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/PREFLIGHT.md +44 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/ROLLBACK.md +49 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-cost-budget-action-guard-agent/metadata.json +27 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/PERMISSIONS.md +68 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/PREFLIGHT.md +46 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/ROLLBACK.md +44 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-keyvault-rotation-purge-guard-agent/metadata.json +27 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/AGENT.md +57 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/PERMISSIONS.md +59 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/PREFLIGHT.md +41 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/ROLLBACK.md +48 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/codex.toml +32 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/azure/azure-live-pim-jit-activation-guard-agent/metadata.json +27 -0
- package/agents/azure/azure-maestro-agent/AGENT.md +56 -0
- package/agents/azure/azure-maestro-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/azure/azure-maestro-agent/harnesses/codex.toml +14 -0
- package/agents/azure/azure-maestro-agent/harnesses/copilot.agent.md +52 -0
- package/agents/azure/azure-maestro-agent/harnesses/cursor.agent.md +41 -0
- package/agents/azure/azure-maestro-agent/harnesses/gemini.agent.md +40 -0
- package/agents/azure/azure-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/azure/azure-maestro-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/azure/azure-maestro-agent/metadata.json +38 -0
- package/agents/finops/AGENTS.md +36 -0
- package/agents/finops/finops-cloud-price-advisor-agent/AGENT.md +58 -0
- package/agents/finops/finops-cloud-price-advisor-agent/PERMISSIONS.md +112 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/codex.toml +33 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/copilot.agent.md +53 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/cursor.agent.md +40 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/gemini.agent.md +40 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/finops/finops-cloud-price-advisor-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/finops/finops-cloud-price-advisor-agent/metadata.json +29 -0
- package/agents/oci/AGENTS.md +28 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/PERMISSIONS.md +56 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/PREFLIGHT.md +48 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/ROLLBACK.md +50 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-autonomous-db-lifecycle-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/PERMISSIONS.md +77 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/PREFLIGHT.md +54 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/ROLLBACK.md +53 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-cost-budget-runaway-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/PERMISSIONS.md +87 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/PREFLIGHT.md +49 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/ROLLBACK.md +44 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-iam-policy-compartment-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/PERMISSIONS.md +92 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/PREFLIGHT.md +49 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/ROLLBACK.md +47 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-oke-rollout-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/PERMISSIONS.md +80 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/PREFLIGHT.md +51 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/ROLLBACK.md +45 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-resource-manager-stack-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/AGENT.md +57 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/PERMISSIONS.md +57 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/PREFLIGHT.md +53 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/ROLLBACK.md +49 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/codex.toml +32 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/copilot.agent.md +53 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/cursor.agent.md +40 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/gemini.agent.md +40 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/harnesses/kiro-ide.agent.md +40 -0
- package/agents/oci/oci-live-vault-key-destruction-guard-agent/metadata.json +27 -0
- package/agents/oci/oci-maestro-agent/AGENT.md +58 -0
- package/agents/oci/oci-maestro-agent/harnesses/claude-code.agent.md +41 -0
- package/agents/oci/oci-maestro-agent/harnesses/codex.toml +14 -0
- package/agents/oci/oci-maestro-agent/harnesses/copilot.agent.md +54 -0
- package/agents/oci/oci-maestro-agent/harnesses/cursor.agent.md +43 -0
- package/agents/oci/oci-maestro-agent/harnesses/gemini.agent.md +42 -0
- package/agents/oci/oci-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/oci/oci-maestro-agent/harnesses/kiro-ide.agent.md +41 -0
- package/agents/oci/oci-maestro-agent/metadata.json +37 -0
- package/agents/terraform/terraform-maestro-agent/AGENT.md +58 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/claude-code.agent.md +41 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/codex.toml +14 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/copilot.agent.md +54 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/cursor.agent.md +43 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/gemini.agent.md +42 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/terraform/terraform-maestro-agent/harnesses/kiro-ide.agent.md +41 -0
- package/agents/terraform/terraform-maestro-agent/metadata.json +38 -0
- package/catalog/agents.json +2330 -677
- package/catalog/skill-manifest.json +1921 -7
- package/catalog/skills.json +2200 -638
- package/package.json +3 -3
- package/scripts/export-marketplace-agents.mjs +29 -1
- package/scripts/gen_azure_live_guards.py +1424 -0
- package/scripts/gen_oci_live_guards.py +1510 -0
- package/skills/aws/README.md +69 -0
- package/skills/aws/aws-agentcore/SKILL.md +55 -0
- package/skills/aws/aws-agentcore/agents/openai.yaml +11 -0
- package/skills/aws/aws-agentcore/metadata.json +42 -0
- package/skills/aws/aws-agentcore/references/gateway-integration.md +137 -0
- package/skills/aws/aws-agentcore/references/getting-started.md +163 -0
- package/skills/aws/aws-agentcore/references/memory-integration.md +146 -0
- package/skills/aws/aws-agentcore/references/official-sources.md +67 -0
- package/skills/aws/aws-agentcore/references/safety-checklist.md +30 -0
- package/skills/aws/aws-agentcore/references/workflow-and-output.md +53 -0
- package/skills/aws/aws-api-edge-delivery-review/SKILL.md +48 -0
- package/skills/aws/aws-api-edge-delivery-review/metadata.json +27 -0
- package/skills/aws/aws-api-edge-delivery-review/references/official-sources.md +15 -0
- package/skills/aws/aws-api-edge-delivery-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-api-edge-delivery-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-bedrock-agent-security-governor/SKILL.md +48 -0
- package/skills/aws/aws-bedrock-agent-security-governor/metadata.json +27 -0
- package/skills/aws/aws-bedrock-agent-security-governor/references/official-sources.md +15 -0
- package/skills/aws/aws-bedrock-agent-security-governor/references/safety-checklist.md +25 -0
- package/skills/aws/aws-bedrock-agent-security-governor/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-change-impact-advisor/SKILL.md +49 -0
- package/skills/aws/aws-change-impact-advisor/metadata.json +27 -0
- package/skills/aws/aws-change-impact-advisor/references/official-sources.md +12 -0
- package/skills/aws/aws-change-impact-advisor/references/safety-checklist.md +14 -0
- package/skills/aws/aws-change-impact-advisor/references/workflow-and-output.md +37 -0
- package/skills/aws/aws-ci-cd-release-engineer/SKILL.md +48 -0
- package/skills/aws/aws-ci-cd-release-engineer/metadata.json +27 -0
- package/skills/aws/aws-ci-cd-release-engineer/references/official-sources.md +15 -0
- package/skills/aws/aws-ci-cd-release-engineer/references/safety-checklist.md +25 -0
- package/skills/aws/aws-ci-cd-release-engineer/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-compliance-evidence-mapper/SKILL.md +48 -0
- package/skills/aws/aws-compliance-evidence-mapper/metadata.json +27 -0
- package/skills/aws/aws-compliance-evidence-mapper/references/official-sources.md +15 -0
- package/skills/aws/aws-compliance-evidence-mapper/references/safety-checklist.md +25 -0
- package/skills/aws/aws-compliance-evidence-mapper/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-cost-anomaly-watch-coordinator/SKILL.md +49 -0
- package/skills/aws/aws-cost-anomaly-watch-coordinator/metadata.json +27 -0
- package/skills/aws/aws-cost-anomaly-watch-coordinator/references/official-sources.md +12 -0
- package/skills/aws/aws-cost-anomaly-watch-coordinator/references/safety-checklist.md +14 -0
- package/skills/aws/aws-cost-anomaly-watch-coordinator/references/workflow-and-output.md +37 -0
- package/skills/aws/aws-cost-optimization-governor/SKILL.md +48 -0
- package/skills/aws/aws-cost-optimization-governor/metadata.json +27 -0
- package/skills/aws/aws-cost-optimization-governor/references/official-sources.md +15 -0
- package/skills/aws/aws-cost-optimization-governor/references/safety-checklist.md +25 -0
- package/skills/aws/aws-cost-optimization-governor/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-daily-operations-briefing-coordinator/SKILL.md +49 -0
- package/skills/aws/aws-daily-operations-briefing-coordinator/metadata.json +27 -0
- package/skills/aws/aws-daily-operations-briefing-coordinator/references/official-sources.md +12 -0
- package/skills/aws/aws-daily-operations-briefing-coordinator/references/safety-checklist.md +14 -0
- package/skills/aws/aws-daily-operations-briefing-coordinator/references/workflow-and-output.md +37 -0
- package/skills/aws/aws-data-protection-backup-steward/SKILL.md +48 -0
- package/skills/aws/aws-data-protection-backup-steward/metadata.json +27 -0
- package/skills/aws/aws-data-protection-backup-steward/references/official-sources.md +15 -0
- package/skills/aws/aws-data-protection-backup-steward/references/safety-checklist.md +25 -0
- package/skills/aws/aws-data-protection-backup-steward/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-deployment-hotfix-operator/SKILL.md +48 -0
- package/skills/aws/aws-deployment-hotfix-operator/metadata.json +25 -0
- package/skills/aws/aws-deployment-hotfix-operator/references/official-sources.md +4 -0
- package/skills/aws/aws-deployment-hotfix-operator/references/safety-checklist.md +7 -0
- package/skills/aws/aws-deployment-hotfix-operator/references/workflow-and-output.md +17 -0
- package/skills/aws/aws-devops-agent-skill-designer/SKILL.md +48 -0
- package/skills/aws/aws-devops-agent-skill-designer/metadata.json +27 -0
- package/skills/aws/aws-devops-agent-skill-designer/references/official-sources.md +15 -0
- package/skills/aws/aws-devops-agent-skill-designer/references/safety-checklist.md +25 -0
- package/skills/aws/aws-devops-agent-skill-designer/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-dynamodb-data-modeling-performance-review/SKILL.md +48 -0
- package/skills/aws/aws-dynamodb-data-modeling-performance-review/metadata.json +27 -0
- package/skills/aws/aws-dynamodb-data-modeling-performance-review/references/official-sources.md +15 -0
- package/skills/aws/aws-dynamodb-data-modeling-performance-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-dynamodb-data-modeling-performance-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-ec2-compute-operations-steward/SKILL.md +48 -0
- package/skills/aws/aws-ec2-compute-operations-steward/metadata.json +27 -0
- package/skills/aws/aws-ec2-compute-operations-steward/references/official-sources.md +15 -0
- package/skills/aws/aws-ec2-compute-operations-steward/references/safety-checklist.md +25 -0
- package/skills/aws/aws-ec2-compute-operations-steward/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-ecs-fargate-platform-operator/SKILL.md +48 -0
- package/skills/aws/aws-ecs-fargate-platform-operator/metadata.json +27 -0
- package/skills/aws/aws-ecs-fargate-platform-operator/references/official-sources.md +15 -0
- package/skills/aws/aws-ecs-fargate-platform-operator/references/safety-checklist.md +25 -0
- package/skills/aws/aws-ecs-fargate-platform-operator/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-ecs-service-remediation-operator/SKILL.md +48 -0
- package/skills/aws/aws-ecs-service-remediation-operator/metadata.json +26 -0
- package/skills/aws/aws-ecs-service-remediation-operator/references/official-sources.md +5 -0
- package/skills/aws/aws-ecs-service-remediation-operator/references/safety-checklist.md +7 -0
- package/skills/aws/aws-ecs-service-remediation-operator/references/workflow-and-output.md +17 -0
- package/skills/aws/aws-eks-platform-operator/SKILL.md +48 -0
- package/skills/aws/aws-eks-platform-operator/metadata.json +27 -0
- package/skills/aws/aws-eks-platform-operator/references/official-sources.md +15 -0
- package/skills/aws/aws-eks-platform-operator/references/safety-checklist.md +25 -0
- package/skills/aws/aws-eks-platform-operator/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-event-driven-architecture-review/SKILL.md +48 -0
- package/skills/aws/aws-event-driven-architecture-review/metadata.json +27 -0
- package/skills/aws/aws-event-driven-architecture-review/references/official-sources.md +15 -0
- package/skills/aws/aws-event-driven-architecture-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-event-driven-architecture-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-generative-ai-developer/SKILL.md +49 -0
- package/skills/aws/aws-generative-ai-developer/metadata.json +31 -0
- package/skills/aws/aws-generative-ai-developer/references/official-sources.md +33 -0
- package/skills/aws/aws-generative-ai-developer/references/safety-checklist.md +23 -0
- package/skills/aws/aws-generative-ai-developer/references/workflow-and-output.md +40 -0
- package/skills/aws/aws-iac-change-safety-review/SKILL.md +48 -0
- package/skills/aws/aws-iac-change-safety-review/metadata.json +27 -0
- package/skills/aws/aws-iac-change-safety-review/references/official-sources.md +15 -0
- package/skills/aws/aws-iac-change-safety-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-iac-change-safety-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-iac-patch-executor/SKILL.md +48 -0
- package/skills/aws/aws-iac-patch-executor/metadata.json +26 -0
- package/skills/aws/aws-iac-patch-executor/references/official-sources.md +5 -0
- package/skills/aws/aws-iac-patch-executor/references/safety-checklist.md +7 -0
- package/skills/aws/aws-iac-patch-executor/references/workflow-and-output.md +17 -0
- package/skills/aws/aws-iam-least-privilege-review/SKILL.md +32 -24
- package/skills/aws/aws-iam-least-privilege-review/metadata.json +8 -6
- package/skills/aws/aws-iam-least-privilege-review/references/official-sources.md +15 -0
- package/skills/aws/aws-iam-least-privilege-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-iam-least-privilege-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-kms-secrets-lifecycle-steward/SKILL.md +48 -0
- package/skills/aws/aws-kms-secrets-lifecycle-steward/metadata.json +27 -0
- package/skills/aws/aws-kms-secrets-lifecycle-steward/references/official-sources.md +15 -0
- package/skills/aws/aws-kms-secrets-lifecycle-steward/references/safety-checklist.md +25 -0
- package/skills/aws/aws-kms-secrets-lifecycle-steward/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-landing-zone-governor/SKILL.md +48 -0
- package/skills/aws/aws-landing-zone-governor/metadata.json +27 -0
- package/skills/aws/aws-landing-zone-governor/references/official-sources.md +15 -0
- package/skills/aws/aws-landing-zone-governor/references/safety-checklist.md +25 -0
- package/skills/aws/aws-landing-zone-governor/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-live-deployment-guarded-operator/SKILL.md +49 -0
- package/skills/aws/aws-live-deployment-guarded-operator/metadata.json +27 -0
- package/skills/aws/aws-live-deployment-guarded-operator/references/approval-and-target-checklist.md +19 -0
- package/skills/aws/aws-live-deployment-guarded-operator/references/official-sources.md +12 -0
- package/skills/aws/aws-live-deployment-guarded-operator/references/safety-checklist.md +16 -0
- package/skills/aws/aws-live-deployment-guarded-operator/references/workflow-and-output.md +23 -0
- package/skills/aws/aws-live-ecs-rollout-guard/SKILL.md +49 -0
- package/skills/aws/aws-live-ecs-rollout-guard/metadata.json +27 -0
- package/skills/aws/aws-live-ecs-rollout-guard/references/approval-and-target-checklist.md +18 -0
- package/skills/aws/aws-live-ecs-rollout-guard/references/official-sources.md +12 -0
- package/skills/aws/aws-live-ecs-rollout-guard/references/safety-checklist.md +16 -0
- package/skills/aws/aws-live-ecs-rollout-guard/references/workflow-and-output.md +23 -0
- package/skills/aws/aws-live-iac-change-guard/SKILL.md +49 -0
- package/skills/aws/aws-live-iac-change-guard/metadata.json +28 -0
- package/skills/aws/aws-live-iac-change-guard/references/approval-and-target-checklist.md +18 -0
- package/skills/aws/aws-live-iac-change-guard/references/official-sources.md +13 -0
- package/skills/aws/aws-live-iac-change-guard/references/safety-checklist.md +16 -0
- package/skills/aws/aws-live-iac-change-guard/references/workflow-and-output.md +23 -0
- package/skills/aws/aws-live-pipeline-approval-operator/SKILL.md +49 -0
- package/skills/aws/aws-live-pipeline-approval-operator/metadata.json +27 -0
- package/skills/aws/aws-live-pipeline-approval-operator/references/approval-and-target-checklist.md +18 -0
- package/skills/aws/aws-live-pipeline-approval-operator/references/official-sources.md +12 -0
- package/skills/aws/aws-live-pipeline-approval-operator/references/safety-checklist.md +16 -0
- package/skills/aws/aws-live-pipeline-approval-operator/references/workflow-and-output.md +23 -0
- package/skills/aws/aws-live-serverless-release-guard/SKILL.md +49 -0
- package/skills/aws/aws-live-serverless-release-guard/metadata.json +27 -0
- package/skills/aws/aws-live-serverless-release-guard/references/approval-and-target-checklist.md +18 -0
- package/skills/aws/aws-live-serverless-release-guard/references/official-sources.md +12 -0
- package/skills/aws/aws-live-serverless-release-guard/references/safety-checklist.md +16 -0
- package/skills/aws/aws-live-serverless-release-guard/references/workflow-and-output.md +23 -0
- package/skills/aws/aws-maestro/SKILL.md +47 -0
- package/skills/aws/aws-maestro/metadata.json +28 -0
- package/skills/aws/aws-maestro/references/official-sources.md +24 -0
- package/skills/aws/aws-maestro/references/safety-checklist.md +42 -0
- package/skills/aws/aws-maestro/references/workflow-and-output.md +127 -0
- package/skills/aws/aws-migration-cutover-architect/SKILL.md +48 -0
- package/skills/aws/aws-migration-cutover-architect/metadata.json +27 -0
- package/skills/aws/aws-migration-cutover-architect/references/official-sources.md +15 -0
- package/skills/aws/aws-migration-cutover-architect/references/safety-checklist.md +25 -0
- package/skills/aws/aws-migration-cutover-architect/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-network-architect/SKILL.md +48 -0
- package/skills/aws/aws-network-architect/metadata.json +29 -0
- package/skills/aws/aws-network-architect/references/official-sources.md +15 -0
- package/skills/aws/aws-network-architect/references/safety-checklist.md +25 -0
- package/skills/aws/aws-network-architect/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-non-destructive-task-automation-advisor/SKILL.md +49 -0
- package/skills/aws/aws-non-destructive-task-automation-advisor/metadata.json +27 -0
- package/skills/aws/aws-non-destructive-task-automation-advisor/references/official-sources.md +12 -0
- package/skills/aws/aws-non-destructive-task-automation-advisor/references/safety-checklist.md +14 -0
- package/skills/aws/aws-non-destructive-task-automation-advisor/references/workflow-and-output.md +37 -0
- package/skills/aws/aws-observability-incident-responder/SKILL.md +48 -0
- package/skills/aws/aws-observability-incident-responder/metadata.json +27 -0
- package/skills/aws/aws-observability-incident-responder/references/official-sources.md +15 -0
- package/skills/aws/aws-observability-incident-responder/references/safety-checklist.md +25 -0
- package/skills/aws/aws-observability-incident-responder/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-pipeline-fix-operator/SKILL.md +48 -0
- package/skills/aws/aws-pipeline-fix-operator/metadata.json +26 -0
- package/skills/aws/aws-pipeline-fix-operator/references/official-sources.md +5 -0
- package/skills/aws/aws-pipeline-fix-operator/references/safety-checklist.md +7 -0
- package/skills/aws/aws-pipeline-fix-operator/references/workflow-and-output.md +17 -0
- package/skills/aws/aws-rds-aurora-performance-investigator/SKILL.md +48 -0
- package/skills/aws/aws-rds-aurora-performance-investigator/metadata.json +27 -0
- package/skills/aws/aws-rds-aurora-performance-investigator/references/official-sources.md +15 -0
- package/skills/aws/aws-rds-aurora-performance-investigator/references/safety-checklist.md +25 -0
- package/skills/aws/aws-rds-aurora-performance-investigator/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-resilience-bcdr-review/SKILL.md +48 -0
- package/skills/aws/aws-resilience-bcdr-review/metadata.json +27 -0
- package/skills/aws/aws-resilience-bcdr-review/references/official-sources.md +15 -0
- package/skills/aws/aws-resilience-bcdr-review/references/safety-checklist.md +25 -0
- package/skills/aws/aws-resilience-bcdr-review/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-s3-data-perimeter-governor/SKILL.md +48 -0
- package/skills/aws/aws-s3-data-perimeter-governor/metadata.json +27 -0
- package/skills/aws/aws-s3-data-perimeter-governor/references/official-sources.md +15 -0
- package/skills/aws/aws-s3-data-perimeter-governor/references/safety-checklist.md +25 -0
- package/skills/aws/aws-s3-data-perimeter-governor/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-security-posture-hardening/SKILL.md +48 -0
- package/skills/aws/aws-security-posture-hardening/metadata.json +27 -0
- package/skills/aws/aws-security-posture-hardening/references/official-sources.md +15 -0
- package/skills/aws/aws-security-posture-hardening/references/safety-checklist.md +25 -0
- package/skills/aws/aws-security-posture-hardening/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-serverless-production-readiness/SKILL.md +48 -0
- package/skills/aws/aws-serverless-production-readiness/metadata.json +27 -0
- package/skills/aws/aws-serverless-production-readiness/references/official-sources.md +15 -0
- package/skills/aws/aws-serverless-production-readiness/references/safety-checklist.md +25 -0
- package/skills/aws/aws-serverless-production-readiness/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-serverless-rollout-corrector/SKILL.md +48 -0
- package/skills/aws/aws-serverless-rollout-corrector/metadata.json +26 -0
- package/skills/aws/aws-serverless-rollout-corrector/references/official-sources.md +5 -0
- package/skills/aws/aws-serverless-rollout-corrector/references/safety-checklist.md +7 -0
- package/skills/aws/aws-serverless-rollout-corrector/references/workflow-and-output.md +17 -0
- package/skills/aws/aws-solution-architect/SKILL.md +48 -0
- package/skills/aws/aws-solution-architect/metadata.json +28 -0
- package/skills/aws/aws-solution-architect/references/official-sources.md +16 -0
- package/skills/aws/aws-solution-architect/references/safety-checklist.md +25 -0
- package/skills/aws/aws-solution-architect/references/workflow-and-output.md +58 -0
- package/skills/aws/aws-ticket-triage-escalation-coordinator/SKILL.md +49 -0
- package/skills/aws/aws-ticket-triage-escalation-coordinator/metadata.json +27 -0
- package/skills/aws/aws-ticket-triage-escalation-coordinator/references/official-sources.md +12 -0
- package/skills/aws/aws-ticket-triage-escalation-coordinator/references/safety-checklist.md +14 -0
- package/skills/aws/aws-ticket-triage-escalation-coordinator/references/workflow-and-output.md +37 -0
- package/skills/azure/azure-live-aks-rollout-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-aks-rollout-guard/metadata.json +27 -0
- package/skills/azure/azure-live-aks-rollout-guard/references/official-sources.md +19 -0
- package/skills/azure/azure-live-aks-rollout-guard/references/permission-model.md +54 -0
- package/skills/azure/azure-live-aks-rollout-guard/references/preflight-commands.md +55 -0
- package/skills/azure/azure-live-aks-rollout-guard/references/rollback-playbook.md +38 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/metadata.json +26 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/references/official-sources.md +12 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/references/permission-model.md +40 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/references/preflight-commands.md +46 -0
- package/skills/azure/azure-live-app-service-slot-swap-guard/references/rollback-playbook.md +46 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/metadata.json +27 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/references/official-sources.md +17 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/references/permission-model.md +68 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/references/preflight-commands.md +55 -0
- package/skills/azure/azure-live-arm-deployment-stack-guard/references/rollback-playbook.md +53 -0
- package/skills/azure/azure-live-cost-budget-action-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-cost-budget-action-guard/metadata.json +27 -0
- package/skills/azure/azure-live-cost-budget-action-guard/references/official-sources.md +17 -0
- package/skills/azure/azure-live-cost-budget-action-guard/references/permission-model.md +66 -0
- package/skills/azure/azure-live-cost-budget-action-guard/references/preflight-commands.md +48 -0
- package/skills/azure/azure-live-cost-budget-action-guard/references/rollback-playbook.md +40 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/metadata.json +27 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/references/official-sources.md +13 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/references/permission-model.md +64 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/references/preflight-commands.md +48 -0
- package/skills/azure/azure-live-keyvault-rotation-purge-guard/references/rollback-playbook.md +44 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/SKILL.md +49 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/metadata.json +27 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/references/official-sources.md +13 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/references/permission-model.md +56 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/references/preflight-commands.md +46 -0
- package/skills/azure/azure-live-pim-jit-activation-guard/references/rollback-playbook.md +45 -0
- package/skills/azure/azure-maestro/SKILL.md +140 -0
- package/skills/azure/azure-maestro/metadata.json +28 -0
- package/skills/finops/finops-cloud-price-advisor/SKILL.md +60 -0
- package/skills/finops/finops-cloud-price-advisor/metadata.json +26 -0
- package/skills/finops/finops-cloud-price-advisor/references/currency-handling.md +100 -0
- package/skills/finops/finops-cloud-price-advisor/references/estimation-workflow.md +145 -0
- package/skills/finops/finops-cloud-price-advisor/references/official-sources.md +64 -0
- package/skills/finops/finops-cloud-price-advisor/references/pricing-apis.md +271 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/metadata.json +27 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/references/official-sources.md +13 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/references/permission-model.md +49 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/references/preflight-commands.md +58 -0
- package/skills/oci/oci-live-autonomous-db-lifecycle-guard/references/rollback-playbook.md +44 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/metadata.json +27 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/references/official-sources.md +17 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/references/permission-model.md +59 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/references/preflight-commands.md +42 -0
- package/skills/oci/oci-live-cost-budget-runaway-guard/references/rollback-playbook.md +44 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/metadata.json +27 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/references/official-sources.md +13 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/references/permission-model.md +71 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/references/preflight-commands.md +49 -0
- package/skills/oci/oci-live-iam-policy-compartment-guard/references/rollback-playbook.md +62 -0
- package/skills/oci/oci-live-oke-rollout-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-oke-rollout-guard/metadata.json +27 -0
- package/skills/oci/oci-live-oke-rollout-guard/references/official-sources.md +18 -0
- package/skills/oci/oci-live-oke-rollout-guard/references/permission-model.md +80 -0
- package/skills/oci/oci-live-oke-rollout-guard/references/preflight-commands.md +55 -0
- package/skills/oci/oci-live-oke-rollout-guard/references/rollback-playbook.md +45 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/metadata.json +27 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/references/official-sources.md +12 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/references/permission-model.md +70 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/references/preflight-commands.md +57 -0
- package/skills/oci/oci-live-resource-manager-stack-guard/references/rollback-playbook.md +51 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/SKILL.md +49 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/metadata.json +27 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/references/official-sources.md +13 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/references/permission-model.md +55 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/references/preflight-commands.md +62 -0
- package/skills/oci/oci-live-vault-key-destruction-guard/references/rollback-playbook.md +55 -0
- package/skills/oci/oci-maestro/SKILL.md +163 -0
- package/skills/oci/oci-maestro/metadata.json +27 -0
- package/skills/terraform/terraform-maestro/SKILL.md +123 -0
- package/skills/terraform/terraform-maestro/metadata.json +30 -0
- package/skills/terraform/terraform-maestro/references/official-sources.md +59 -0
- package/skills/terraform/terraform-maestro/references/safety-checklist.md +53 -0
- package/skills/terraform/terraform-maestro/references/workflow-and-output.md +108 -0
- package/docs/AGENTS.md +0 -16
- package/docs/azure-role-skill-gap-analysis.md +0 -154
- package/docs/azure-role-skill-specs.md +0 -352
- package/docs/compatibility.md +0 -24
- package/docs/marketplace-model.md +0 -17
- package/docs/normalized-platform-matrix.md +0 -109
- package/docs/quality-bar.md +0 -27
- package/docs/release-versioning.md +0 -114
- package/docs/taxonomy.md +0 -39
|
@@ -0,0 +1,57 @@
|
|
|
1
|
+
---
|
|
2
|
+
metadata:
|
|
3
|
+
author: "github: Raishin"
|
|
4
|
+
version: "0.2.0"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# AWS Live IaC Change Guard
|
|
8
|
+
|
|
9
|
+
> Agent for `aws-live-iac-change-guard`. Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
10
|
+
|
|
11
|
+
## Harness Variants
|
|
12
|
+
|
|
13
|
+
- `harnesses/codex.toml` — Codex native agent configuration.
|
|
14
|
+
- `harnesses/copilot.agent.md` — GitHub Copilot / VS Code custom agent definition.
|
|
15
|
+
- `harnesses/claude-code.agent.md` — Claude Code Markdown-family adapter.
|
|
16
|
+
- `harnesses/cursor.agent.md` — Cursor Markdown-family adapter.
|
|
17
|
+
- `harnesses/gemini.agent.md` — Gemini CLI Markdown-family adapter.
|
|
18
|
+
- `harnesses/kiro-ide.agent.md` — Kiro IDE Markdown-family adapter.
|
|
19
|
+
- `harnesses/kiro-cli.agent.json` — Kiro CLI JSON adapter.
|
|
20
|
+
|
|
21
|
+
## Canonical Contract
|
|
22
|
+
|
|
23
|
+
# AWS Live IaC Change Guard
|
|
24
|
+
|
|
25
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
26
|
+
|
|
27
|
+
## Required Skill
|
|
28
|
+
|
|
29
|
+
Before answering, read and follow:
|
|
30
|
+
|
|
31
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
32
|
+
|
|
33
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
34
|
+
|
|
35
|
+
## Focus
|
|
36
|
+
|
|
37
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
38
|
+
|
|
39
|
+
## Operating Rules
|
|
40
|
+
|
|
41
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
42
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
43
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
44
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
45
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
46
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
47
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
48
|
+
|
|
49
|
+
## Response Shape
|
|
50
|
+
|
|
51
|
+
1. Target confirmation
|
|
52
|
+
2. Preflight evidence
|
|
53
|
+
3. Approval status
|
|
54
|
+
4. Proposed or executed action
|
|
55
|
+
5. Rollback posture
|
|
56
|
+
6. Post-change verification
|
|
57
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,87 @@
|
|
|
1
|
+
# Least-privilege IAM guidance
|
|
2
|
+
|
|
3
|
+
## Identity model
|
|
4
|
+
|
|
5
|
+
Preferred order:
|
|
6
|
+
|
|
7
|
+
1. IAM Identity Center or federation
|
|
8
|
+
2. short-lived assumed role
|
|
9
|
+
3. narrow environment-scoped role
|
|
10
|
+
4. IAM user only as a last resort
|
|
11
|
+
|
|
12
|
+
Minimum common baseline for any live operator:
|
|
13
|
+
|
|
14
|
+
```json
|
|
15
|
+
{
|
|
16
|
+
"Version": "2012-10-17",
|
|
17
|
+
"Statement": [
|
|
18
|
+
{
|
|
19
|
+
"Sid": "CallerIdentity",
|
|
20
|
+
"Effect": "Allow",
|
|
21
|
+
"Action": "sts:GetCallerIdentity",
|
|
22
|
+
"Resource": "*"
|
|
23
|
+
}
|
|
24
|
+
]
|
|
25
|
+
}
|
|
26
|
+
```
|
|
27
|
+
|
|
28
|
+
Do not treat repo write access as a reason to hand out broad AWS permissions.
|
|
29
|
+
|
|
30
|
+
## Recommended scope
|
|
31
|
+
|
|
32
|
+
Bind this role to one stack family and one environment.
|
|
33
|
+
|
|
34
|
+
## CloudFormation-focused minimum
|
|
35
|
+
|
|
36
|
+
```json
|
|
37
|
+
{
|
|
38
|
+
"Version": "2012-10-17",
|
|
39
|
+
"Statement": [
|
|
40
|
+
{
|
|
41
|
+
"Sid": "CloudFormationReadAndPreview",
|
|
42
|
+
"Effect": "Allow",
|
|
43
|
+
"Action": [
|
|
44
|
+
"cloudformation:ValidateTemplate",
|
|
45
|
+
"cloudformation:GetTemplate",
|
|
46
|
+
"cloudformation:GetTemplateSummary",
|
|
47
|
+
"cloudformation:DescribeStacks",
|
|
48
|
+
"cloudformation:DescribeStackEvents",
|
|
49
|
+
"cloudformation:DescribeStackResources",
|
|
50
|
+
"cloudformation:DescribeChangeSet",
|
|
51
|
+
"cloudformation:ListChangeSets",
|
|
52
|
+
"cloudformation:CreateChangeSet",
|
|
53
|
+
"cloudformation:DeleteChangeSet",
|
|
54
|
+
"cloudformation:ExecuteChangeSet",
|
|
55
|
+
"cloudformation:DetectStackDrift",
|
|
56
|
+
"cloudformation:DetectStackResourceDrift",
|
|
57
|
+
"cloudformation:DescribeStackDriftDetectionStatus",
|
|
58
|
+
"cloudformation:BatchDescribeTypeConfigurations"
|
|
59
|
+
],
|
|
60
|
+
"Resource": [
|
|
61
|
+
"arn:aws:cloudformation:<REGION>:<ACCOUNT_ID>:stack/<STACK_NAME>/*",
|
|
62
|
+
"arn:aws:cloudformation:<REGION>:<ACCOUNT_ID>:changeSet/*/*"
|
|
63
|
+
]
|
|
64
|
+
},
|
|
65
|
+
{
|
|
66
|
+
"Sid": "CallerIdentity",
|
|
67
|
+
"Effect": "Allow",
|
|
68
|
+
"Action": "sts:GetCallerIdentity",
|
|
69
|
+
"Resource": "*"
|
|
70
|
+
}
|
|
71
|
+
]
|
|
72
|
+
}
|
|
73
|
+
```
|
|
74
|
+
|
|
75
|
+
## Important catch
|
|
76
|
+
|
|
77
|
+
Drift detection also needs read permissions for the underlying resource types in the stack, for example `ec2:DescribeInstances` when EC2 resources exist.
|
|
78
|
+
|
|
79
|
+
## Optional only if needed
|
|
80
|
+
|
|
81
|
+
- narrow `iam:PassRole` to one CloudFormation service role ARN
|
|
82
|
+
|
|
83
|
+
## Do not add
|
|
84
|
+
|
|
85
|
+
- broad `cloudformation:*`
|
|
86
|
+
- broad `iam:PassRole`
|
|
87
|
+
- unrelated mutate permissions on resources outside the named stack family
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: "AWS Live IaC Change Guard"
|
|
3
|
+
description: "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
# AWS Live IaC Change Guard
|
|
7
|
+
|
|
8
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
9
|
+
|
|
10
|
+
## Required Skill
|
|
11
|
+
|
|
12
|
+
Before answering, read and follow:
|
|
13
|
+
|
|
14
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
15
|
+
|
|
16
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
17
|
+
|
|
18
|
+
## Focus
|
|
19
|
+
|
|
20
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
21
|
+
|
|
22
|
+
## Operating Rules
|
|
23
|
+
|
|
24
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
25
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
26
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
27
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
28
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
29
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
30
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
31
|
+
|
|
32
|
+
## Response Shape
|
|
33
|
+
|
|
34
|
+
1. Target confirmation
|
|
35
|
+
2. Preflight evidence
|
|
36
|
+
3. Approval status
|
|
37
|
+
4. Proposed or executed action
|
|
38
|
+
5. Rollback posture
|
|
39
|
+
6. Post-change verification
|
|
40
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,31 @@
|
|
|
1
|
+
name = "aws-live-iac-change-guard_agent"
|
|
2
|
+
description = "Specialized subagent for aws-live-iac-change-guard. Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
3
|
+
model = "gpt-5.4"
|
|
4
|
+
model_reasoning_effort = "high"
|
|
5
|
+
sandbox_mode = "workspace-write"
|
|
6
|
+
|
|
7
|
+
developer_instructions = """
|
|
8
|
+
Load and follow the bound `aws-live-iac-change-guard` skill first. This agent exists only for that guarded live-AWS role; do not drift into generic cloud advice.
|
|
9
|
+
|
|
10
|
+
Token discipline:
|
|
11
|
+
- Read only SKILL.md first; load references only when the task requires them.
|
|
12
|
+
- Keep answers compact: target, approval status, evidence, action, rollback, verification, open risks.
|
|
13
|
+
- Do not paste long docs, raw tool inventories, raw credential output, or full environment dumps.
|
|
14
|
+
|
|
15
|
+
Role focus: Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
16
|
+
|
|
17
|
+
Safety contract:
|
|
18
|
+
- This role may operate in repos or shells connected to live AWS credentials or deployment authority.
|
|
19
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target, expected impact, and explicit human approval.
|
|
20
|
+
- Prefer preview, dry-run, change set, plan, describe, status, alarm, and rollback evidence before mutation.
|
|
21
|
+
- If approval, identity, target, or rollback posture is ambiguous, stop and explain the blocker.
|
|
22
|
+
- Never ask for secrets, credentials, access tokens, account numbers, customer identifiers, private keys, or raw environment dumps unless already sanitized and required.
|
|
23
|
+
- Label facts as live evidence, user-provided sanitized evidence, documentation-based, or inference.
|
|
24
|
+
"""
|
|
25
|
+
|
|
26
|
+
[[skills.config]]
|
|
27
|
+
path = "skills/aws/aws-live-iac-change-guard/SKILL.md"
|
|
28
|
+
enabled = true
|
|
29
|
+
|
|
30
|
+
[metadata]
|
|
31
|
+
author = "github: Raishin"
|
|
@@ -0,0 +1,53 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
3
|
+
name: "AWS Live IaC Change Guard"
|
|
4
|
+
tools:
|
|
5
|
+
- "read"
|
|
6
|
+
- "search"
|
|
7
|
+
- "search/codebase"
|
|
8
|
+
- "web/githubRepo"
|
|
9
|
+
- "web/fetch"
|
|
10
|
+
- "read/problems"
|
|
11
|
+
- "execute/runInTerminal"
|
|
12
|
+
- "execute/getTerminalOutput"
|
|
13
|
+
- "read/terminalLastCommand"
|
|
14
|
+
- "read/terminalSelection"
|
|
15
|
+
disable-model-invocation: false
|
|
16
|
+
user-invocable: true
|
|
17
|
+
---
|
|
18
|
+
|
|
19
|
+
# AWS Live IaC Change Guard
|
|
20
|
+
|
|
21
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
22
|
+
|
|
23
|
+
## Required Skill
|
|
24
|
+
|
|
25
|
+
Before answering, read and follow:
|
|
26
|
+
|
|
27
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
28
|
+
|
|
29
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
30
|
+
|
|
31
|
+
## Focus
|
|
32
|
+
|
|
33
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
34
|
+
|
|
35
|
+
## Operating Rules
|
|
36
|
+
|
|
37
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
38
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
39
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
40
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
41
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
42
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
43
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
44
|
+
|
|
45
|
+
## Response Shape
|
|
46
|
+
|
|
47
|
+
1. Target confirmation
|
|
48
|
+
2. Preflight evidence
|
|
49
|
+
3. Approval status
|
|
50
|
+
4. Proposed or executed action
|
|
51
|
+
5. Rollback posture
|
|
52
|
+
6. Post-change verification
|
|
53
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: "AWS Live IaC Change Guard"
|
|
3
|
+
description: "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
# AWS Live IaC Change Guard
|
|
7
|
+
|
|
8
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
9
|
+
|
|
10
|
+
## Required Skill
|
|
11
|
+
|
|
12
|
+
Before answering, read and follow:
|
|
13
|
+
|
|
14
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
15
|
+
|
|
16
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
17
|
+
|
|
18
|
+
## Focus
|
|
19
|
+
|
|
20
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
21
|
+
|
|
22
|
+
## Operating Rules
|
|
23
|
+
|
|
24
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
25
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
26
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
27
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
28
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
29
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
30
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
31
|
+
|
|
32
|
+
## Response Shape
|
|
33
|
+
|
|
34
|
+
1. Target confirmation
|
|
35
|
+
2. Preflight evidence
|
|
36
|
+
3. Approval status
|
|
37
|
+
4. Proposed or executed action
|
|
38
|
+
5. Rollback posture
|
|
39
|
+
6. Post-change verification
|
|
40
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: "AWS Live IaC Change Guard"
|
|
3
|
+
description: "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
# AWS Live IaC Change Guard
|
|
7
|
+
|
|
8
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
9
|
+
|
|
10
|
+
## Required Skill
|
|
11
|
+
|
|
12
|
+
Before answering, read and follow:
|
|
13
|
+
|
|
14
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
15
|
+
|
|
16
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
17
|
+
|
|
18
|
+
## Focus
|
|
19
|
+
|
|
20
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
21
|
+
|
|
22
|
+
## Operating Rules
|
|
23
|
+
|
|
24
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
25
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
26
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
27
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
28
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
29
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
30
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
31
|
+
|
|
32
|
+
## Response Shape
|
|
33
|
+
|
|
34
|
+
1. Target confirmation
|
|
35
|
+
2. Preflight evidence
|
|
36
|
+
3. Approval status
|
|
37
|
+
4. Proposed or executed action
|
|
38
|
+
5. Rollback posture
|
|
39
|
+
6. Post-change verification
|
|
40
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,5 @@
|
|
|
1
|
+
{
|
|
2
|
+
"name": "AWS Live IaC Change Guard",
|
|
3
|
+
"description": "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.",
|
|
4
|
+
"prompt": "# AWS Live IaC Change Guard\n\nUse this canonical agent only for `aws-live-iac-change-guard` work.\n\n## Required Skill\n\nBefore answering, read and follow:\n\n- `skills/aws/aws-live-iac-change-guard/SKILL.md`\n\nLoad files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.\n\n## Focus\n\nGuard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.\n\n## Operating Rules\n\n- Load and follow the bound AWS skill first; do not drift into generic cloud advice.\n- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.\n- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.\n- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.\n- If the target, approval state, or rollback posture is ambiguous, stop and say so.\n- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.\n- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.\n\n## Response Shape\n\n1. Target confirmation\n2. Preflight evidence\n3. Approval status\n4. Proposed or executed action\n5. Rollback posture\n6. Post-change verification\n7. Open risks or refusal reason"
|
|
5
|
+
}
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: "AWS Live IaC Change Guard"
|
|
3
|
+
description: "Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval."
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
# AWS Live IaC Change Guard
|
|
7
|
+
|
|
8
|
+
Use this canonical agent only for `aws-live-iac-change-guard` work.
|
|
9
|
+
|
|
10
|
+
## Required Skill
|
|
11
|
+
|
|
12
|
+
Before answering, read and follow:
|
|
13
|
+
|
|
14
|
+
- `skills/aws/aws-live-iac-change-guard/SKILL.md`
|
|
15
|
+
|
|
16
|
+
Load files under `skills/aws/aws-live-iac-change-guard/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
17
|
+
|
|
18
|
+
## Focus
|
|
19
|
+
|
|
20
|
+
Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.
|
|
21
|
+
|
|
22
|
+
## Operating Rules
|
|
23
|
+
|
|
24
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
25
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
26
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
27
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
28
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
29
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
30
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
31
|
+
|
|
32
|
+
## Response Shape
|
|
33
|
+
|
|
34
|
+
1. Target confirmation
|
|
35
|
+
2. Preflight evidence
|
|
36
|
+
3. Approval status
|
|
37
|
+
4. Proposed or executed action
|
|
38
|
+
5. Rollback posture
|
|
39
|
+
6. Post-change verification
|
|
40
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,28 @@
|
|
|
1
|
+
{
|
|
2
|
+
"id": "aws-live-iac-change-guard-agent",
|
|
3
|
+
"name": "AWS Live IaC Change Guard",
|
|
4
|
+
"type": "agent",
|
|
5
|
+
"provider": "aws",
|
|
6
|
+
"harnesses": [
|
|
7
|
+
"codex",
|
|
8
|
+
"copilot",
|
|
9
|
+
"claude-code",
|
|
10
|
+
"cursor",
|
|
11
|
+
"gemini",
|
|
12
|
+
"kiro"
|
|
13
|
+
],
|
|
14
|
+
"summary": "Agent for aws-live-iac-change-guard. Guard live CloudFormation, SAM, CDK, and Terraform-backed AWS infrastructure changes with change sets or plans, rollback triggers, stack policies, drift checks, and explicit approval.",
|
|
15
|
+
"source_type": "adapted",
|
|
16
|
+
"official_docs": [
|
|
17
|
+
"https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/best-practices.html",
|
|
18
|
+
"https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-changesets.html",
|
|
19
|
+
"https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-rollback-triggers.html",
|
|
20
|
+
"https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/protect-stack-resources.html",
|
|
21
|
+
"https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/detect-drift-stack.html"
|
|
22
|
+
],
|
|
23
|
+
"security_notes": "Live IaC execution only with explicit preview evidence, confirmed targets, rollback triggers or equivalent safeguards, and human approval before execute. Never treat repo write access as enough authority for live infrastructure mutation.",
|
|
24
|
+
"last_verified": "2026-04-29",
|
|
25
|
+
"path": "agents/aws/aws-live-iac-change-guard-agent",
|
|
26
|
+
"author": "github: Raishin",
|
|
27
|
+
"version": "0.2.0"
|
|
28
|
+
}
|
|
@@ -0,0 +1,57 @@
|
|
|
1
|
+
---
|
|
2
|
+
metadata:
|
|
3
|
+
author: "github: Raishin"
|
|
4
|
+
version: "0.2.0"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# AWS Live Pipeline Approval Operator
|
|
8
|
+
|
|
9
|
+
> Agent for `aws-live-pipeline-approval-operator`. Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability.
|
|
10
|
+
|
|
11
|
+
## Harness Variants
|
|
12
|
+
|
|
13
|
+
- `harnesses/codex.toml` — Codex native agent configuration.
|
|
14
|
+
- `harnesses/copilot.agent.md` — GitHub Copilot / VS Code custom agent definition.
|
|
15
|
+
- `harnesses/claude-code.agent.md` — Claude Code Markdown-family adapter.
|
|
16
|
+
- `harnesses/cursor.agent.md` — Cursor Markdown-family adapter.
|
|
17
|
+
- `harnesses/gemini.agent.md` — Gemini CLI Markdown-family adapter.
|
|
18
|
+
- `harnesses/kiro-ide.agent.md` — Kiro IDE Markdown-family adapter.
|
|
19
|
+
- `harnesses/kiro-cli.agent.json` — Kiro CLI JSON adapter.
|
|
20
|
+
|
|
21
|
+
## Canonical Contract
|
|
22
|
+
|
|
23
|
+
# AWS Live Pipeline Approval Operator
|
|
24
|
+
|
|
25
|
+
Use this canonical agent only for `aws-live-pipeline-approval-operator` work.
|
|
26
|
+
|
|
27
|
+
## Required Skill
|
|
28
|
+
|
|
29
|
+
Before answering, read and follow:
|
|
30
|
+
|
|
31
|
+
- `skills/aws/aws-live-pipeline-approval-operator/SKILL.md`
|
|
32
|
+
|
|
33
|
+
Load files under `skills/aws/aws-live-pipeline-approval-operator/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
34
|
+
|
|
35
|
+
## Focus
|
|
36
|
+
|
|
37
|
+
Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability.
|
|
38
|
+
|
|
39
|
+
## Operating Rules
|
|
40
|
+
|
|
41
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
42
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
43
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
44
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
45
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
46
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
47
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
48
|
+
|
|
49
|
+
## Response Shape
|
|
50
|
+
|
|
51
|
+
1. Target confirmation
|
|
52
|
+
2. Preflight evidence
|
|
53
|
+
3. Approval status
|
|
54
|
+
4. Proposed or executed action
|
|
55
|
+
5. Rollback posture
|
|
56
|
+
6. Post-change verification
|
|
57
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,79 @@
|
|
|
1
|
+
# Least-privilege IAM guidance
|
|
2
|
+
|
|
3
|
+
## Identity model
|
|
4
|
+
|
|
5
|
+
Preferred order:
|
|
6
|
+
|
|
7
|
+
1. IAM Identity Center or federation
|
|
8
|
+
2. short-lived assumed role
|
|
9
|
+
3. narrow environment-scoped role
|
|
10
|
+
4. IAM user only as a last resort
|
|
11
|
+
|
|
12
|
+
Minimum common baseline for any live operator:
|
|
13
|
+
|
|
14
|
+
```json
|
|
15
|
+
{
|
|
16
|
+
"Version": "2012-10-17",
|
|
17
|
+
"Statement": [
|
|
18
|
+
{
|
|
19
|
+
"Sid": "CallerIdentity",
|
|
20
|
+
"Effect": "Allow",
|
|
21
|
+
"Action": "sts:GetCallerIdentity",
|
|
22
|
+
"Resource": "*"
|
|
23
|
+
}
|
|
24
|
+
]
|
|
25
|
+
}
|
|
26
|
+
```
|
|
27
|
+
|
|
28
|
+
Do not treat repo write access as a reason to hand out broad AWS permissions.
|
|
29
|
+
|
|
30
|
+
## Recommended scope
|
|
31
|
+
|
|
32
|
+
One named pipeline, or a very small named set.
|
|
33
|
+
|
|
34
|
+
## Narrow approval policy
|
|
35
|
+
|
|
36
|
+
```json
|
|
37
|
+
{
|
|
38
|
+
"Version": "2012-10-17",
|
|
39
|
+
"Statement": [
|
|
40
|
+
{
|
|
41
|
+
"Sid": "OptionalPipelineList",
|
|
42
|
+
"Effect": "Allow",
|
|
43
|
+
"Action": "codepipeline:ListPipelines",
|
|
44
|
+
"Resource": "*"
|
|
45
|
+
},
|
|
46
|
+
{
|
|
47
|
+
"Sid": "ReadOnePipeline",
|
|
48
|
+
"Effect": "Allow",
|
|
49
|
+
"Action": [
|
|
50
|
+
"codepipeline:GetPipeline",
|
|
51
|
+
"codepipeline:GetPipelineState",
|
|
52
|
+
"codepipeline:GetPipelineExecution"
|
|
53
|
+
],
|
|
54
|
+
"Resource": "arn:aws:codepipeline:<REGION>:<ACCOUNT_ID>:<PIPELINE_NAME>"
|
|
55
|
+
},
|
|
56
|
+
{
|
|
57
|
+
"Sid": "ApproveOneAction",
|
|
58
|
+
"Effect": "Allow",
|
|
59
|
+
"Action": "codepipeline:PutApprovalResult",
|
|
60
|
+
"Resource": "arn:aws:codepipeline:<REGION>:<ACCOUNT_ID>:<PIPELINE_NAME>/<STAGE_NAME>/<APPROVAL_ACTION_NAME>"
|
|
61
|
+
},
|
|
62
|
+
{
|
|
63
|
+
"Sid": "CallerIdentity",
|
|
64
|
+
"Effect": "Allow",
|
|
65
|
+
"Action": "sts:GetCallerIdentity",
|
|
66
|
+
"Resource": "*"
|
|
67
|
+
}
|
|
68
|
+
]
|
|
69
|
+
}
|
|
70
|
+
```
|
|
71
|
+
|
|
72
|
+
## Do not add unless truly required
|
|
73
|
+
|
|
74
|
+
- `codepipeline:StartPipelineExecution`
|
|
75
|
+
- `codepipeline:RetryStageExecution`
|
|
76
|
+
- `codepipeline:UpdatePipeline`
|
|
77
|
+
- `codepipeline:DeletePipeline`
|
|
78
|
+
|
|
79
|
+
Approval power is not deploy-admin power.
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: "AWS Live Pipeline Approval Operator"
|
|
3
|
+
description: "Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability."
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
# AWS Live Pipeline Approval Operator
|
|
7
|
+
|
|
8
|
+
Use this canonical agent only for `aws-live-pipeline-approval-operator` work.
|
|
9
|
+
|
|
10
|
+
## Required Skill
|
|
11
|
+
|
|
12
|
+
Before answering, read and follow:
|
|
13
|
+
|
|
14
|
+
- `skills/aws/aws-live-pipeline-approval-operator/SKILL.md`
|
|
15
|
+
|
|
16
|
+
Load files under `skills/aws/aws-live-pipeline-approval-operator/references/` only when the task needs that reference. Do not dump reference text into the response.
|
|
17
|
+
|
|
18
|
+
## Focus
|
|
19
|
+
|
|
20
|
+
Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability.
|
|
21
|
+
|
|
22
|
+
## Operating Rules
|
|
23
|
+
|
|
24
|
+
- Load and follow the bound AWS skill first; do not drift into generic cloud advice.
|
|
25
|
+
- This role is for repos or sessions that may be connected to live AWS credentials, profiles, deploy tooling, or real environments.
|
|
26
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target resource or workload, expected impact, and explicit human approval.
|
|
27
|
+
- Prefer preview, dry-run, describe, status, change set, plan, alarm, and rollback evidence before mutation.
|
|
28
|
+
- If the target, approval state, or rollback posture is ambiguous, stop and say so.
|
|
29
|
+
- Keep outputs short: target, approval status, evidence, action, rollback, verification, open risks.
|
|
30
|
+
- Never ask for secrets, credentials, access tokens, private keys, or raw environment dumps unless already sanitized and required.
|
|
31
|
+
|
|
32
|
+
## Response Shape
|
|
33
|
+
|
|
34
|
+
1. Target confirmation
|
|
35
|
+
2. Preflight evidence
|
|
36
|
+
3. Approval status
|
|
37
|
+
4. Proposed or executed action
|
|
38
|
+
5. Rollback posture
|
|
39
|
+
6. Post-change verification
|
|
40
|
+
7. Open risks or refusal reason
|
|
@@ -0,0 +1,31 @@
|
|
|
1
|
+
name = "aws-live-pipeline-approval-operator_agent"
|
|
2
|
+
description = "Specialized subagent for aws-live-pipeline-approval-operator. Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability."
|
|
3
|
+
model = "gpt-5.4"
|
|
4
|
+
model_reasoning_effort = "high"
|
|
5
|
+
sandbox_mode = "workspace-write"
|
|
6
|
+
|
|
7
|
+
developer_instructions = """
|
|
8
|
+
Load and follow the bound `aws-live-pipeline-approval-operator` skill first. This agent exists only for that guarded live-AWS role; do not drift into generic cloud advice.
|
|
9
|
+
|
|
10
|
+
Token discipline:
|
|
11
|
+
- Read only SKILL.md first; load references only when the task requires them.
|
|
12
|
+
- Keep answers compact: target, approval status, evidence, action, rollback, verification, open risks.
|
|
13
|
+
- Do not paste long docs, raw tool inventories, raw credential output, or full environment dumps.
|
|
14
|
+
|
|
15
|
+
Role focus: Handle live CodePipeline approval and gated resume decisions with exact pipeline targeting, approver scope, stage evidence, blast-radius review, and explicit approval auditability.
|
|
16
|
+
|
|
17
|
+
Safety contract:
|
|
18
|
+
- This role may operate in repos or shells connected to live AWS credentials or deployment authority.
|
|
19
|
+
- Before any live AWS mutation, confirm account, region, active principal or profile, exact target, expected impact, and explicit human approval.
|
|
20
|
+
- Prefer preview, dry-run, change set, plan, describe, status, alarm, and rollback evidence before mutation.
|
|
21
|
+
- If approval, identity, target, or rollback posture is ambiguous, stop and explain the blocker.
|
|
22
|
+
- Never ask for secrets, credentials, access tokens, account numbers, customer identifiers, private keys, or raw environment dumps unless already sanitized and required.
|
|
23
|
+
- Label facts as live evidence, user-provided sanitized evidence, documentation-based, or inference.
|
|
24
|
+
"""
|
|
25
|
+
|
|
26
|
+
[[skills.config]]
|
|
27
|
+
path = "skills/aws/aws-live-pipeline-approval-operator/SKILL.md"
|
|
28
|
+
enabled = true
|
|
29
|
+
|
|
30
|
+
[metadata]
|
|
31
|
+
author = "github: Raishin"
|