terraform-patterns
Terraform infrastructure-as-code agent skill and plugin for Claude Code, Codex, Gemini CLI, Cursor, OpenClaw. Covers module design patterns, state management strategies, provider configuration, security hardening, policy-as-code with Sentinel/OPA, and CI/CD plan/apply workflows. Use when: user wants to design Terraform modules, manage state backends, review Terraform security, implement multi-region deployments, or follow IaC best practices.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/alirezarezvani/terraform-patternsWhat This Skill Does
The terraform-patterns skill is an opinionated framework designed to elevate your Infrastructure-as-Code (IaC) workflow within OpenClaw. It shifts the burden of managing complex Terraform HCL from manual oversight to automated, consistent, and secure best practices. The skill acts as an intelligent assistant that understands module composition, state lifecycle management, and security posture. It provides specific slash commands—/terraform:review, /terraform:module, and /terraform:security—to ensure your infrastructure remains maintainable, scalable, and resilient against common anti-patterns that often plague DevOps teams. By enforcing structured module design and strict provider versioning, it ensures your infrastructure doesn't just work today, but remains predictable at 3 AM during an incident.
Installation
To install this skill, run the following command in your terminal within your OpenClaw-enabled project:
clawhub install openclaw/skills/skills/alirezarezvani/terraform-patterns
Ensure your development environment has access to the repository provider and the OpenClaw agent is running with appropriate permissions to access the local file system.
Use Cases
- Production Refactoring: Use this when your Terraform code has become a monolithic mess, helping you break logic into clean, reusable modules.
- Security Hardening: Automatically audit existing configurations against industry-standard benchmarks to identify overly permissive IAM roles or unencrypted resources.
- State Migration: Safely move local state to remote backends with locking, or manage complex multi-environment configurations using workspace or directory-based isolation.
- CI/CD Integration: Prepare your Terraform modules for automated pipelines, ensuring they meet the criteria for plan/apply workflows in environments like GitHub Actions or GitLab CI.
Example Prompts
- "/terraform:review - Analyze my current AWS VPC module for potential security vulnerabilities and suggest improvements for module encapsulation."
- "/terraform:module - I need to design a generic RDS module that supports multi-AZ deployments with proper encryption and automated backups."
- "/terraform:security - Audit my current main.tf file; I am concerned about potential secret exposure and hardcoded credentials in my provider block."
Tips & Limitations
- Tip: Always run
/terraform:reviewbefore a major refactor to establish a baseline of existing resource dependencies. - Tip: Use
sensitive = truein all variable definitions containing secrets; the skill will flag any variable missing this attribute that appears to hold sensitive data. - Limitation: The skill performs static analysis of your local HCL files. It cannot reach out and inspect the live infrastructure (the real-world state) directly. Always run
terraform planto verify the automated changes before applying them to your production environment.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-alirezarezvani-terraform-patterns": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-read, file-write
Related Skills
intl-expansion
International market expansion strategy. Market selection, entry modes, localization, regulatory compliance, and go-to-market by region. Use when expanding to new countries, evaluating international markets, planning localization, or building regional teams.
marketing-strategy-pmm
Product marketing skill for positioning, GTM strategy, competitive intelligence, and product launches. Use when the user asks about product positioning, go-to-market planning, competitive analysis, target audience definition, ICP definition, market research, launch plans, or sales enablement. Covers April Dunford positioning, ICP definition, competitive battlecards, launch playbooks, and international market entry. Produces deliverables including positioning statements, battlecard documents, launch plans, and go-to-market strategies.
paid-ads
When the user wants help with paid advertising campaigns on Google Ads, Meta (Facebook/Instagram), LinkedIn, Twitter/X, or other ad platforms. Also use when the user mentions 'PPC,' 'paid media,' 'ad copy,' 'ad creative,' 'ROAS,' 'CPA,' 'ad campaign,' 'retargeting,' or 'audience targeting.' This skill covers campaign strategy, ad creation, audience targeting, and optimization.
qms-audit-expert
ISO 13485 internal audit expertise for medical device QMS. Covers audit planning, execution, nonconformity classification, and CAPA verification. Use for internal audit planning, audit execution, finding classification, external audit preparation, or audit program management.
code-reviewer
Code review automation for TypeScript, JavaScript, Python, Go, Swift, Kotlin. Analyzes PRs for complexity and risk, checks code quality for SOLID violations and code smells, generates review reports. Use when reviewing pull requests, analyzing code quality, identifying issues, generating review checklists.