Terraform & Infrastructure as Code Production Engineering
Complete Terraform & IaC production methodology — project structure, module design, state management, multi-environment deployment, security hardening, testing, CI/CD pipelines, cost optimization, and drift management. Use when designing infrastructure, writing Terraform, reviewing IaC, or managing cloud environments.
Why use this skill?
Master production-grade Terraform with our comprehensive 14-phase IaC methodology. Optimize your infrastructure, security, and CI/CD pipelines today.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/1kalin/afrexai-terraform-productionWhat This Skill Does
This skill provides a high-fidelity, production-grade framework for managing Infrastructure as Code (IaC) using Terraform. It encapsulates 14 phases of engineering excellence, ranging from foundational health checks to advanced CI/CD integration and drift management. The skill acts as a senior DevOps consultant, enforcing strict architectural rules such as state isolation, modularity, and immutable infrastructure practices. By using this, you ensure that your cloud environments are reproducible, secure, and easy to audit.
Installation
To integrate this skill into your agent, run the following command in your terminal or agent console: clawhub install openclaw/skills/skills/1kalin/afrexai-terraform-production. Ensure your environment has the necessary Terraform CLI installed to allow the agent to validate plans and configurations.
Use Cases
This skill is designed for:
- Greenfield Infrastructure: Scaffolding a new, scalable environment from scratch using the recommended multi-environment structure.
- Legacy Refactoring: Analyzing existing "spaghetti" Terraform code and proposing a migration path to a modular, directory-based layout.
- Security Hardening: Auditing existing environments against the 8-signal triage checklist to identify state exposure, missing encryption, or unpinned provider vulnerabilities.
- CI/CD Implementation: Designing professional deployment pipelines that incorporate mandatory
planreviews and scheduled drift detection.
Example Prompts
- "Perform a health check on my infrastructure. I have a
main.tfand avariables.tf, but no clear separation between dev and prod environments. What should I change?" - "I am struggling with cross-module dependencies. How can I structure my networking and compute modules so the compute module properly references VPC subnets without creating circular dependencies?"
- "Design a CI/CD pipeline strategy for my AWS infrastructure that ensures no manual apply happens without a peer review of the Terraform plan output."
Tips & Limitations
- Tip: Always prioritize the Phase 1 Triage; if your state management is compromised, no amount of architectural cleanup will keep your infrastructure safe.
- Tip: Treat modules like products; include a README and version documentation to ensure other team members can adopt them without friction.
- Limitation: The skill provides architectural and code-generation guidance. It does not possess direct credentials to your cloud provider unless specifically configured via environment variables or agent secrets management. Always verify generated code in a sandbox environment before applying it to production.
- Security: Never export secrets in variable outputs. Always use specialized secret stores like AWS Secrets Manager or HashiCorp Vault.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-1kalin-afrexai-terraform-production": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-read, code-execution