Handles cloud security assessments across AWS, Azure, and GCP with a focus on misconfigurations and compliance gaps. You'd reach for this when auditing infrastructure, checking IAM policies, or validating security group rules against best practices. It knows the CIS benchmarks and common cloud security frameworks, so it can spot things like overly permissive S3 buckets or exposed databases without you having to explain what good looks like. The straightforward part is configuration scanning. The trickier part is knowing which findings actually matter in your specific setup versus textbook issues that don't apply to your architecture.
npx skills add https://github.com/alirezarezvani/claude-skills --skill cloud-security