cloud-infrastructure
Cloud infrastructure design and deployment patterns for AWS, Azure, and GCP. Use when designing cloud architectures, implementing IaC with Terraform, optimizing costs, or setting up multi-region deployments.
Best use case
cloud-infrastructure is best used when you need a repeatable AI agent workflow instead of a one-off prompt. It is especially useful for teams working in multi. Cloud infrastructure design and deployment patterns for AWS, Azure, and GCP. Use when designing cloud architectures, implementing IaC with Terraform, optimizing costs, or setting up multi-region deployments.
Cloud infrastructure design and deployment patterns for AWS, Azure, and GCP. Use when designing cloud architectures, implementing IaC with Terraform, optimizing costs, or setting up multi-region deployments.
Users should expect a more consistent workflow output, faster repeated execution, and less time spent rewriting prompts from scratch.
Practical example
Example input
Use the "cloud-infrastructure" skill to help with this workflow task. Context: Cloud infrastructure design and deployment patterns for AWS, Azure, and GCP. Use when designing cloud architectures, implementing IaC with Terraform, optimizing costs, or setting up multi-region deployments.
Example output
A structured workflow result with clearer steps, more consistent formatting, and an output that is easier to reuse in the next run.
When to use this skill
- Use this skill when you want a reusable workflow rather than writing the same prompt again and again.
When not to use this skill
- Do not use this when you only need a one-off answer and do not need a reusable workflow.
- Do not use it if you cannot install or maintain the related files, repository context, or supporting tools.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/cloud-infrastructure/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How cloud-infrastructure Compares
| Feature / Agent | cloud-infrastructure | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Cloud infrastructure design and deployment patterns for AWS, Azure, and GCP. Use when designing cloud architectures, implementing IaC with Terraform, optimizing costs, or setting up multi-region deployments.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Cloud Infrastructure Comprehensive cloud infrastructure skill covering multi-cloud architecture, Infrastructure as Code, cost optimization, and production deployment patterns. ## When to Use This Skill - Designing cloud architecture for new applications - Implementing Infrastructure as Code (Terraform, CloudFormation, Pulumi) - Cost optimization and resource right-sizing - Multi-region and high-availability deployments - Cloud migration planning - Security and compliance implementation - Auto-scaling and performance optimization ## Cloud Architecture Patterns ### Compute Patterns | Pattern | AWS | Azure | GCP | Use Case | |---------|-----|-------|-----|----------| | Serverless | Lambda | Functions | Cloud Functions | Event-driven, variable load | | Containers | ECS/EKS | AKS | GKE | Microservices, consistent env | | VMs | EC2 | Virtual Machines | Compute Engine | Legacy apps, full control | | Batch | Batch | Batch | Batch | Large-scale processing | ### Storage Patterns | Type | AWS | Azure | GCP | Use Case | |------|-----|-------|-----|----------| | Object | S3 | Blob Storage | Cloud Storage | Static files, backups | | Block | EBS | Managed Disks | Persistent Disk | Database storage | | File | EFS | Azure Files | Filestore | Shared file systems | | Archive | Glacier | Archive | Coldline | Long-term retention | ### Database Patterns | Type | AWS | Azure | GCP | Use Case | |------|-----|-------|-----|----------| | Relational | RDS, Aurora | SQL Database | Cloud SQL | ACID transactions | | NoSQL | DynamoDB | Cosmos DB | Firestore | Flexible schema | | Cache | ElastiCache | Cache for Redis | Memorystore | Session, caching | | Data Warehouse | Redshift | Synapse | BigQuery | Analytics | ## Infrastructure as Code ### Terraform Best Practices **Project Structure:** ``` infrastructure/ ├── modules/ │ ├── networking/ │ ├── compute/ │ └── database/ ├── environments/ │ ├── dev/ │ ├── staging/ │ └── prod/ ├── main.tf ├── variables.tf ├── outputs.tf └── versions.tf ``` **State Management:** - Use remote state (S3, Azure Blob, GCS) - Enable state locking (DynamoDB, Blob lease) - Separate state per environment - Never commit state files **Module Design:** - Single responsibility per module - Expose minimal required variables - Document inputs/outputs - Version modules with git tags ### Cost Optimization **Compute Savings:** - Reserved Instances (1-3 year commitment): 30-60% savings - Spot/Preemptible instances: 60-90% savings for interruptible workloads - Right-sizing: Match instance size to actual usage - Auto-scaling: Scale down during low usage **Storage Savings:** - Lifecycle policies: Auto-transition to cheaper tiers - Compression: Reduce storage footprint - Deduplication: Eliminate redundant data - Delete unused resources: Orphaned volumes, snapshots **Network Savings:** - Use CDN for static content - Optimize data transfer paths - Use private endpoints - Compress API responses ## High Availability Patterns ### Multi-AZ Deployment - Deploy across 2-3 availability zones - Use load balancers for distribution - Database replication across AZs - Automatic failover configuration ### Multi-Region Deployment - Active-active or active-passive - DNS-based routing (Route53, Traffic Manager) - Data replication strategy - Disaster recovery procedures ### Resilience Patterns - Circuit breakers for external dependencies - Retry with exponential backoff - Bulkhead isolation - Graceful degradation ## Security Best Practices ### Identity & Access - Principle of least privilege - Use IAM roles, not long-term credentials - Enable MFA for privileged accounts - Regular access reviews ### Network Security - VPC/VNet isolation - Security groups as firewalls - Private subnets for backend services - VPN/Direct Connect for hybrid ### Data Protection - Encryption at rest (KMS) - Encryption in transit (TLS) - Key rotation policies - Backup and recovery testing ## Monitoring & Observability ### Key Metrics - CPU, Memory, Disk utilization - Network throughput and latency - Error rates and types - Cost per service/team ### Alerting Strategy - Set thresholds based on baselines - Alert on symptoms, not causes - Runbooks for each alert - Escalation paths defined ## Reference Files - **`references/terraform_patterns.md`** - IaC patterns and examples - **`references/cost_optimization.md`** - Detailed cost reduction strategies ## Integration with Other Skills - **security-engineering** - For security architecture - **network-engineering** - For network design - **performance** - For optimization strategies - **devops-runbooks** - For operational procedures
Related Skills
openclaw-secure-linux-cloud
Use when self-hosting OpenClaw on a cloud server, hardening a remote OpenClaw gateway, choosing between SSH tunneling, Tailscale, or reverse-proxy exposure, or reviewing Podman, pairing, sandboxing, token auth, and tool-permission defaults for a secure personal deployment.
terraform-infrastructure
Terraform infrastructure as code workflow for provisioning cloud resources, creating reusable modules, and managing infrastructure at scale.
multi-cloud-architecture
Design multi-cloud architectures using a decision framework to select and integrate services across AWS, Azure, and GCP. Use when building multi-cloud systems, avoiding vendor lock-in, or leveraging best-of-breed services from multiple providers.
hybrid-cloud-networking
Configure secure, high-performance connectivity between on-premises infrastructure and cloud platforms using VPN and dedicated connections. Use when building hybrid cloud architectures, connecting data centers to cloud, or implementing secure cross-premises networking.
hybrid-cloud-architect
Expert hybrid cloud architect specializing in complex multi-cloud solutions across AWS/Azure/GCP and private clouds (OpenStack/VMware). Masters hybrid connectivity, workload placement optimization, edge computing, and cross-cloud automation. Handles compliance, cost optimization, disaster recovery, and migration strategies. Use PROACTIVELY for hybrid architecture, multi-cloud strategy, or complex infrastructure integration.
gcp-cloud-run
Specialized skill for building production-ready serverless applications on GCP. Covers Cloud Run services (containerized), Cloud Run Functions (event-driven), cold start optimization, and event-driven architecture with Pub/Sub.
database-cloud-optimization-cost-optimize
You are a cloud cost optimization expert specializing in reducing infrastructure expenses while maintaining performance and reliability. Analyze cloud spending, identify savings opportunities, and implement cost-effective architectures across AWS, Azure, and GCP.
cloudformation-best-practices
CloudFormation template optimization, nested stacks, drift detection, and production-ready patterns. Use when writing or reviewing CF templates.
cloud-penetration-testing
This skill should be used when the user asks to "perform cloud penetration testing", "assess Azure or AWS or GCP security", "enumerate cloud resources", "exploit cloud misconfigurations", "test O365 security", "extract secrets from cloud environments", or "audit cloud infrastructure". It provides comprehensive techniques for security assessment across major cloud platforms.
cloud-devops
Cloud infrastructure and DevOps workflow covering AWS, Azure, GCP, Kubernetes, Terraform, CI/CD, monitoring, and cloud-native development.
cloud-architect
Expert cloud architect specializing in AWS/Azure/GCP multi-cloud infrastructure design, advanced IaC (Terraform/OpenTofu/CDK), FinOps cost optimization, and modern architectural patterns. Masters serverless, microservices, security, compliance, and disaster recovery. Use PROACTIVELY for cloud architecture, cost optimization, migration planning, or multi-cloud strategies.
azure-cloud-migrate
Assess and migrate cross-cloud workloads to Azure. Generates assessment reports and converts code from AWS, GCP, or other providers to Azure services. WHEN: "migrate Lambda to Azure Functions", "migrate AWS to Azure", "Lambda migration assessment", "convert AWS serverless to Azure", "migration readiness report", "migrate from AWS", "migrate from GCP", "cross-cloud migration".