iam-policy-reviewer
Iam Policy Reviewer - Auto-activating skill for Security Advanced. Triggers on: iam policy reviewer, iam policy reviewer Part of the Security Advanced skill category.
32
0%
Does it follow best practices?
Impact
92%
1.00xAverage score across 3 eval scenarios
Passed
No known issues
Optimize this skill with Tessl
npx tessl skill review --optimize ./planned-skills/generated/04-security-advanced/iam-policy-reviewer/SKILL.mdEvaluation results
100%
IAM Policy Security Review
Step-by-step IAM policy audit with threat analysis
Step-by-step structure
100%
100%
Wildcard action identification
100%
100%
Wildcard resource identification
100%
100%
Privilege escalation path
100%
100%
Named standard reference
100%
100%
Condition key recommendation
100%
100%
Resource scoping recommendation
100%
100%
Severity rating
100%
100%
Specific remediation
100%
100%
86%
Lambda Function IAM Policy for Data Processing Service
Production-ready least-privilege IAM policy
Valid JSON policy
100%
100%
Version field present
100%
100%
No placeholder values
100%
100%
Specific resource ARNs
100%
100%
No wildcard actions
100%
100%
Condition block included
0%
0%
S3 actions scoped correctly
100%
100%
DynamoDB actions scoped correctly
100%
100%
Separate statements per service
100%
100%
90%
SOC2 Readiness: IAM Configuration Review
SOC2 compliance gap analysis for IAM
SOC2 explicit reference
100%
100%
Step-by-step structure
100%
100%
Specific gap identification
100%
100%
Least privilege / separation of duties
100%
100%
Production-ready remediation snippet
100%
100%
Second compliance framework
0%
0%
MFA or access control recommendation
100%
100%
Audit/logging recommendation
100%
100%
Actionable next steps
100%
100%
- Commit
3e83543
- Evaluated
- Agent
- Claude Code
- Model
- Claude Sonnet 4.6
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.