configuring-private-connectivity
Configures private network connectivity for CockroachDB Cloud clusters including AWS PrivateLink, GCP Private Service Connect, Azure Private Link, egress private endpoints, and VPC peering. Use when setting up private endpoints to eliminate public internet exposure, configuring egress to external services like Kafka, or establishing VPC peering.
90
88%
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Risky
Do not use without reviewing
Quality
Discovery
100%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is an excellent skill description that clearly defines its scope (private network connectivity for CockroachDB Cloud), lists specific capabilities across multiple cloud providers, and includes an explicit 'Use when' clause with natural trigger scenarios. It is well-structured, concise, and highly distinguishable from other potential skills.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Lists multiple specific concrete actions: configuring AWS PrivateLink, GCP Private Service Connect, Azure Private Link, egress private endpoints, and VPC peering. These are all distinct, named capabilities. | 3 / 3 |
Completeness | Clearly answers both 'what' (configures private network connectivity for CockroachDB Cloud clusters across multiple cloud providers) and 'when' (explicit 'Use when' clause covering private endpoints, egress to external services, and VPC peering scenarios). | 3 / 3 |
Trigger Term Quality | Includes strong natural keywords users would say: 'private network', 'PrivateLink', 'Private Service Connect', 'Azure Private Link', 'VPC peering', 'egress', 'private endpoints', 'public internet exposure', 'Kafka'. Good coverage of cloud-specific and general networking terms. | 3 / 3 |
Distinctiveness Conflict Risk | Highly distinctive with a clear niche: CockroachDB Cloud private networking specifically. The combination of CockroachDB Cloud + private connectivity + specific cloud provider technologies makes it very unlikely to conflict with other skills. | 3 / 3 |
Total | 12 / 12 Passed |
Implementation
77%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This is a well-structured, highly actionable skill that covers a complex multi-cloud networking topic with clear decision trees, executable commands, and good safety/rollback guidance. Its main weaknesses are moderate verbosity (some explanatory text Claude doesn't need) and a lengthy single file that could benefit from splitting provider-specific details into referenced files. The referenced bundle files are missing, making it impossible to verify the progressive disclosure structure.
Suggestions
Remove explanatory sentences that describe what private endpoints or VPC peering are — Claude already knows these concepts. Focus only on CockroachDB-specific configuration details.
Consider splitting cloud-provider-specific sections (AWS, GCP, Azure) into separate referenced files to reduce the main SKILL.md length and improve progressive disclosure.
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The skill is mostly efficient but includes some unnecessary framing (e.g., 'When to Use This Skill' section repeats what the description already covers, and some explanatory text like 'Private endpoints allow applications in your VPC to connect to CockroachDB Cloud without traversing the public internet' states what Claude already knows). The decision tree structure adds useful guidance but could be tighter. | 2 / 3 |
Actionability | Provides fully executable CLI commands for AWS, GCP, Azure, and ccloud; includes curl commands for Cloud API calls; provides Terraform HCL snippets; and includes SQL examples for CDC changefeeds. Commands are copy-paste ready with clear placeholder syntax. | 3 / 3 |
Workflow Clarity | The multi-step workflows are clearly sequenced with explicit validation checkpoints (e.g., 'Wait for the connection status to become AVAILABLE', verify peering status, test connectivity). The decision tree at the top clearly routes users to relevant sections. Safety considerations table and rollback procedures provide good guardrails. The 'stuck pending' troubleshooting adds a feedback loop for error recovery. | 3 / 3 |
Progressive Disclosure | References to 'references/ccloud-commands.md' and 'references/cloud-provider-setup.md' are well-signaled, but no bundle files were provided, so these references are unverifiable. The DNS configuration in section 1.6 defers to a reference file for detailed steps, which is appropriate, but the main SKILL.md is quite long (~250 lines of substantive content) and could benefit from splitting cloud-provider-specific sections into separate files. | 2 / 3 |
Total | 10 / 12 Passed |
Validation
100%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 11 / 11 Passed
Validation for skill structure
No warnings or errors.
- Repository
- cockroachlabs/cockroachdb-skills
- Commit
84bc1e4
- Reviewed
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.