s3-bucket-policy-generator
S3 Bucket Policy Generator - Auto-activating skill for AWS Skills. Triggers on: s3 bucket policy generator, s3 bucket policy generator Part of the AWS Skills skill category.
35
3%
Does it follow best practices?
Impact
93%
0.98xAverage score across 3 eval scenarios
Passed
No known issues
Optimize this skill with Tessl
npx tessl skill review --optimize ./planned-skills/generated/13-aws-skills/s3-bucket-policy-generator/SKILL.mdEvaluation results
81%
-3%Transaction Bucket Access Policy
HTTPS enforcement and least-privilege S3 bucket policy
Valid AWS policy structure
100%
100%
HTTPS-only Deny statement
100%
100%
No wildcard Principal
33%
25%
Specific IAM role ARNs
100%
100%
Specific S3 actions
20%
0%
Specific Resource ARN
100%
100%
No placeholder values
100%
100%
Explanation document
100%
100%
Condition operator correctness
100%
100%
Deny applies to all S3 actions
100%
100%
100%
Internal Data Storage Bucket Setup
AWS CLI deployment script with step-by-step guidance and validation
Uses aws s3api command
100%
100%
Correct --bucket flag
100%
100%
Policy file referenced
100%
100%
Validation step present
100%
100%
Error handling
100%
100%
No hardcoded credentials
100%
100%
Numbered step-by-step guide
100%
100%
Steps explain each action
100%
100%
No placeholder values in policy.json
100%
100%
Policy restricts to own account
100%
100%
100%
Partner Data Sharing and Lambda Pipeline Policy
Cross-account policy with service-specific conditions and principals
External account principal
100%
100%
Partner prefix scoped resource
100%
100%
Lambda IAM role as principal
100%
100%
Lambda prefix scoped resource
100%
100%
No wildcard Principal
100%
100%
Partner access is read-only actions
100%
100%
Lambda cannot delete objects
100%
100%
No placeholder values
100%
100%
README explains each statement
100%
100%
Policy separates concerns
100%
100%
- Commit
933cf26
- Evaluated
- Agent
- Claude Code
- Model
- Claude Sonnet 4.6
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.