This sets up CloudTrail to capture API activity across all AWS regions in one go, storing logs in S3 and pushing them to CloudWatch Logs for querying. You'd use this when you need centralized audit trails for security monitoring or compliance requirements instead of managing per-region trails. The skill walks through the complete setup including the CloudWatch Logs integration and has practical troubleshooting for common issues like permission errors and the sometimes lengthy delay for opt-in region events to appear. Worth noting it explicitly steers you away from overly permissive IAM policies, which is the right call for anything touching audit logs.
npx skills add https://github.com/aws/agent-toolkit-for-aws --skill setting-up-cloudtrail-multi-region