CtrlK
BlogDocsLog inGet started
Tessl Logo

iam-role-generator

Iam Role Generator - Auto-activating skill for AWS Skills. Triggers on: iam role generator, iam role generator Part of the AWS Skills skill category.

39

1.03x

Quality

7%

Does it follow best practices?

Impact

100%

1.03x

Average score across 3 eval scenarios

SecuritybySnyk

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./planned-skills/generated/13-aws-skills/iam-role-generator/SKILL.md
SKILL.md
Quality
Evals
Security

Evaluation results

100%

Data Processing Lambda: IAM Role Setup

Lambda IAM role with least privilege S3 access

Criteria
Without context
With context

Correct Lambda principal

100%

100%

Trust policy Action

100%

100%

S3 read scoped to source bucket

100%

100%

S3 write scoped to destination bucket

100%

100%

No wildcard resource on S3

100%

100%

CloudWatch Logs permissions

100%

100%

Valid JSON format

100%

100%

No over-permissive actions

100%

100%

aws CLI commands in steps

100%

100%

Step-by-step structure

100%

100%

Without context: $0.3449 · 1m 25s · 19 turns · 20 in / 5,515 out tokens

With context: $0.4449 · 1m 24s · 25 turns · 1,826 in / 5,383 out tokens

100%

8%

Infrastructure Automation: EC2 Role for CloudFormation Deployments

EC2 CloudFormation deployment IAM role

Criteria
Without context
With context

Correct EC2 principal

100%

100%

Trust policy Action

100%

100%

CloudFormation permissions present

100%

100%

Instance profile mentioned

100%

100%

No blanket admin wildcard

100%

100%

Resource scoping attempted

0%

100%

Valid JSON format

100%

100%

aws CLI commands in guide

100%

100%

Step-by-step structure

100%

100%

IAM passrole or boundary considered

100%

100%

Without context: $0.3575 · 1m 25s · 18 turns · 19 in / 6,136 out tokens

With context: $0.3695 · 1m 31s · 21 turns · 22 in / 5,997 out tokens

100%

Serverless Order Processing: IAM Roles for Multi-Service Application

Serverless application multi-service IAM roles

Criteria
Without context
With context

Lambda trust principal

100%

100%

Three separate policy files

100%

100%

SQS access only in receiver

100%

100%

SNS publish only in notifier

100%

100%

Reporter has S3 write, receiver has S3 write

100%

100%

No wildcard resource on sensitive services

100%

100%

No blanket wildcard actions

100%

100%

CloudWatch Logs in all functions

100%

100%

aws CLI commands in setup

100%

100%

Permission reasoning documented

100%

100%

Valid JSON format

100%

100%

Without context: $0.2764 · 1m 16s · 17 turns · 18 in / 4,803 out tokens

With context: $0.4792 · 1m 46s · 26 turns · 26 in / 6,589 out tokens

Repository
jeremylongshore/claude-code-plugins-plus-skills
Commit

0c08951

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

Data Processing Lambda: IAM Role SetupInfrastructure Automation: EC2 Role for CloudFormation DeploymentsServerless Order Processing: IAM Roles for Multi-Service Application

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill