This handles the full security setup for AWS Secrets Manager so you don't have to remember all the pieces. It creates dedicated KMS encryption keys for each secret, configures automatic rotation, sets up least-privilege IAM policies, and enables CloudTrail auditing. Supports database credentials, API keys, OAuth tokens, and custom secrets. The main value is that it bundles together all the production-grade controls that are easy to forget when you're just trying to store a secret quickly. If you're managing secrets in AWS and want to avoid the "we'll add proper encryption later" trap, this gets you there immediately.
npx skills add https://github.com/aws/agent-toolkit-for-aws --skill creating-secrets-using-best-practices