pantheon-ai/cdk-nag
Enforce AWS CDK security and compliance controls with cdk-nag. Use when adding rule packs, triaging findings, writing justified suppressions, integrating checks in CI/CD, or preventing insecure infrastructure patterns in CDK stacks.
Overall
score
100%
Does it follow best practices?
Validation for skill structure
Discovery
100%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is an excellent skill description that follows best practices. It uses third person voice, clearly states the tool and domain (cdk-nag for AWS CDK), lists specific actionable capabilities, and includes an explicit 'Use when...' clause with natural trigger terms. The description is concise yet comprehensive, making it easy for Claude to select this skill when appropriate.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Lists multiple specific concrete actions: 'adding rule packs', 'triaging findings', 'writing justified suppressions', 'integrating checks in CI/CD', 'preventing insecure infrastructure patterns'. These are concrete, actionable capabilities. | 3 / 3 |
Completeness | Clearly answers both what ('Enforce AWS CDK security and compliance controls with cdk-nag') and when ('Use when adding rule packs, triaging findings, writing justified suppressions, integrating checks in CI/CD, or preventing insecure infrastructure patterns'). Has explicit 'Use when...' clause with specific triggers. | 3 / 3 |
Trigger Term Quality | Includes strong natural keywords users would say: 'AWS CDK', 'cdk-nag', 'security', 'compliance', 'rule packs', 'suppressions', 'CI/CD', 'CDK stacks'. Covers both the tool name and domain terminology users would naturally use. | 3 / 3 |
Distinctiveness Conflict Risk | Highly distinctive with clear niche: specifically targets 'cdk-nag' tool within 'AWS CDK' context. The combination of CDK + security/compliance + cdk-nag creates a unique trigger profile unlikely to conflict with general AWS, security, or infrastructure skills. | 3 / 3 |
Total | 12 / 12 Passed |
Implementation
100%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This is an exemplary skill file that demonstrates excellent token efficiency while providing comprehensive, actionable guidance. The deterministic workflow with explicit checkpoints, concrete code examples with expected results, and well-structured anti-patterns section make it immediately useful. The progressive disclosure to reference files is well-organized and clearly signaled.
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The content is lean and efficient, avoiding explanations of concepts Claude already knows (like what CDK is or how npm works). Every section serves a clear purpose with no padding or unnecessary context. | 3 / 3 |
Actionability | Provides fully executable TypeScript code examples, specific bash commands, and copy-paste ready snippets. The suppression example includes a realistic, detailed reason string showing exactly what good practice looks like. | 3 / 3 |
Workflow Clarity | The 6-step deterministic workflow includes an explicit checkpoint at step 4 requiring categorization of all findings before proceeding. This feedback loop ensures validation before advancing, which is critical for compliance operations. | 3 / 3 |
Progressive Disclosure | Clear structure with quick commands, code examples, and anti-patterns in the main file, with six well-signaled one-level-deep references to detailed guides (implementation, rule packs, suppression, troubleshooting, etc.). | 3 / 3 |
Total | 12 / 12 Passed |
Validation
100%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 11 / 11 Passed
Validation for skill structure
No warnings or errors.
Install with Tessl CLI
npx tessl i pantheon-ai/cdk-nagReviewed
Table of Contents