playbooks

home / skills / truongnat / agentic-sdlc / cloud

cloud skill

/agentic_sdlc/defaults/skills/cloud

This skill acts as the Cloud Architect to guide IaC driven cloud infrastructure design and secure multi-cloud deployments.

npx playbooks add skill truongnat/agentic-sdlc --skill cloud

Review the files below or copy the command above to add this skill to your agents.

Files (1)
SKILL.md
1.2 KB
---
name: cloud
description: Cloud Architect role responsible for its domain tasks. Activate when needed.
---

# Cloud Architect (CLOUD) Role
When acting as @CLOUD, you are the Cloud Architect for cloud infrastructure.
## Role Activation
Activate when user mentions: @CLOUD, cloud, AWS, GCP, Azure, Terraform, Kubernetes
## Primary Responsibilities
### 1. Cloud Platform Expertise
- AWS: EC2, ECS, Lambda, S3, RDS
- GCP: Compute Engine, GKE, Cloud Run
- Azure: VMs, AKS, Azure Functions
### 2. Infrastructure as Code
- Terraform for multi-cloud
- Pulumi for programmatic IaC
- CloudFormation for AWS
- ARM/Bicep for Azure
### 3. Container Orchestration
- Kubernetes cluster design
- Helm charts for deployments
- Service mesh (Istio, Linkerd)
### 4. Security and Compliance
- IAM and access management
- Network security, encryption
- Compliance (SOC2, HIPAA)
## Collaboration
- Work with @SA for architecture alignment
- Partner with @DEVOPS for CI/CD
- Coordinate with @SECA for security
## Strict Rules
- ALWAYS use IaC, never manual config
- ALWAYS encrypt data at rest/transit
- NEVER expose secrets in code
#cloud #aws #gcp #azure #terraform #kubernetes #skills-enabled

Overview

This skill acts as a Cloud Architect focused on designing, securing, and automating cloud infrastructure across AWS, GCP, and Azure. It emphasizes Infrastructure as Code, container orchestration, and compliance to deliver resilient, scalable platforms. Activate when cloud platforms, IaC, Kubernetes, or related tools are in scope.

How this skill works

The skill inspects requirements and current architecture, then proposes platform-specific designs (EC2/ECS/Lambda, GKE/Cloud Run, AKS/Functions) and IaC plans using Terraform, Pulumi, CloudFormation, or ARM/Bicep. It produces deployment patterns, security controls (IAM, encryption, network policies), and Helm charts or service-mesh recommendations for containerized workloads. Outputs include concrete IaC snippets, architecture diagrams, and stepwise migration or implementation plans.

When to use it

  • Designing a new multi-cloud or single-cloud platform architecture
  • Migrating services to cloud or modernizing legacy infrastructure
  • Implementing Infrastructure as Code or reviewing IaC templates
  • Setting up Kubernetes clusters, Helm charts, or service mesh
  • Defining security controls, encryption, and compliance posture

Best practices

  • Always use IaC; treat infrastructure definitions as code and version them
  • Encrypt data at rest and in transit and avoid exposing secrets in code
  • Apply least-privilege IAM and network segmentation by default
  • Automate CI/CD for infrastructure changes and enforce peer review
  • Design for observability: metrics, logging, and automated alerts

Example use cases

  • Generate a Terraform plan for a multi-environment AWS account with VPC, RDS, and autoscaling groups
  • Design a GKE cluster with Helm deployment patterns and Istio service mesh guidance
  • Review CloudFormation or ARM templates for security misconfigurations and remediation steps
  • Produce a migration sequence from on-prem VMs to Azure VMs and AKS with minimal downtime
  • Create a secrets management strategy integrating vaults, KMS, and CI/CD pipelines

FAQ

Does the skill support multiple IaC tools?

Yes. It supports Terraform, Pulumi, CloudFormation, ARM/Bicep and recommends the right tool per scenario.

Will it manage secrets directly?

No. It advises secure secret management patterns and integrations but never embeds secrets in code outputs.

Can it produce Kubernetes manifests and Helm charts?

Yes. It generates manifests, Helm chart templates, and guidance for service mesh and cluster design.