CtrlK
BlogDocsLog inGet started
Tessl Logo

iam-policy-creator

Iam Policy Creator - Auto-activating skill for AWS Skills. Triggers on: iam policy creator, iam policy creator Part of the AWS Skills skill category.

36

0.99x

Quality

3%

Does it follow best practices?

Impact

99%

0.99x

Average score across 3 eval scenarios

SecuritybySnyk

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./planned-skills/generated/13-aws-skills/iam-policy-creator/SKILL.md
SKILL.md
Quality
Evals
Security

Evaluation results

100%

S3 Data Pipeline Access Policy

S3 least-privilege IAM policy with AWS CLI deployment

Criteria
Without context
With context

AWS CLI deploy script

100%

100%

Valid JSON policy

100%

100%

Correct Action format

100%

100%

Resource ARN specificity

100%

100%

Separate read/write statements

100%

100%

No wildcard actions

100%

100%

Policy version field

100%

100%

Effect field present

100%

100%

Production completeness

100%

100%

Step-by-step guidance

100%

100%

Without context: $0.1323 · 36s · 11 turns · 12 in / 2,047 out tokens

With context: $0.3714 · 1m 3s · 25 turns · 26 in / 4,019 out tokens

100%

Serverless Image Moderation Pipeline

Lambda execution role with multi-service permissions

Criteria
Without context
With context

AWS CLI commands used

100%

100%

Lambda trust policy

100%

100%

S3 read permissions present

100%

100%

S3 write permissions present

100%

100%

Rekognition permissions present

100%

100%

No wildcard service actions

100%

100%

Scoped resource ARNs

100%

100%

CloudWatch Logs permissions

100%

100%

Valid JSON structure

100%

100%

Production completeness

100%

100%

Without context: $0.3049 · 1m 3s · 19 turns · 20 in / 3,708 out tokens

With context: $0.4121 · 1m 15s · 25 turns · 286 in / 4,815 out tokens

97%

-3%

EC2 Application Server Infrastructure

CloudFormation IAM instance profile for EC2

Criteria
Without context
With context

CloudFormation template format

100%

100%

IAM Role resource present

100%

100%

InstanceProfile resource present

100%

100%

SSM read permissions

100%

100%

CloudWatch Logs write permissions

100%

100%

No wildcard actions in policies

100%

100%

Scoped resource ARNs

100%

62%

AWS CLI deploy command

100%

100%

Inline or managed policy attached

100%

100%

Production completeness

100%

100%

Without context: $0.1574 · 39s · 12 turns · 13 in / 2,499 out tokens

With context: $0.3927 · 1m 18s · 24 turns · 24 in / 4,715 out tokens

Repository
jeremylongshore/claude-code-plugins-plus-skills
Commit

0c08951

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

S3 Data Pipeline Access PolicyServerless Image Moderation PipelineEC2 Application Server Infrastructure

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill