This sets up a complete multi-AZ VPC following AWS Well-Architected patterns: public and private subnets with automatic CIDR planning, internet gateway, NAT gateways for HA outbound access, route tables, and tiered security groups. You specify the region, VPC name, allowed web CIDRs, and how many AZs you want (2 to 6, defaults to 3). It waits for NAT gateways to come online before configuring routes and warns you if you're opening web access to 0.0.0.0/0 but allows it if you explicitly request it. Good starting point when you need production infrastructure scaffolding without manually calculating subnet ranges or wiring up NAT gateway routes yourself.
npx skills add https://github.com/aws/agent-toolkit-for-aws --skill creating-production-vpc-multi-az