Content
77%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
Highly actionable with a clear, well-validated multi-phase workflow and executable examples. Weaker on conciseness and progressive disclosure: the inline remediation blocks are lengthy and the existing reference files are never linked from the body.
Suggestions
Link the existing references from the body, e.g. in Phase 4 add 'See [terraform-security-patterns.md](references/terraform-security-patterns.md)' and the Kubernetes equivalent, so the bundle files are no longer orphaned.
Move the bulk of the inline Terraform/Kubernetes/CloudFormation remediation code into those reference files, keeping only one representative example per platform in SKILL.md to tighten the body.
Collapse the Quick Start block into a pointer to Phase 1–5 to remove the restated sequence and reduce redundancy.
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | Mostly lean and task-oriented with tables/code instead of concept explanation, but ~360 lines with redundancy: Quick Start restates the phases and large inline remediation blocks (Terraform/K8s/CloudFormation) duplicate content the reference files already cover. | 2 / 3 |
Actionability | Concrete snyk_iac_scan invocations with named parameters, executable terraform plan/show commands, and complete copy-paste HCL/YAML remediation examples — fully executable and specific. | 3 / 3 |
Workflow Clarity | A clear 5-phase sequence (Discovery → Execute → Analyze → Remediation → Verification) with an explicit re-scan feedback loop, before/after comparison, and an error-handling table providing checkpoints for risky IaC operations. | 3 / 3 |
Progressive Disclosure | Two reference files exist (terraform/kubernetes security patterns) but the body never references or signals them, leaving them orphaned, while large fix examples remain inline that belong in those references. | 2 / 3 |
Total | 10 / 12 Passed |