The Agent Skills Directory

Infrastructure Provisioning Controls: The skill automates the deployment of AWS resources but requires explicit user confirmation before proceeding with any changes. This prevents the accidental or unauthorized creation of cloud infrastructure.
Permission Management: The procedure utilizes the AWSLambdaDynamoDBExecutionRole managed policy. This is a security best practice as it provides the Lambda function with only the necessary permissions to interact with DynamoDB streams and CloudWatch logs rather than using overly broad permissions.
Input Validation: The skill includes constraints to validate user-provided parameters, such as function and table names, against AWS naming conventions. This helps mitigate risks associated with malformed input and ensures deployment compatibility.
Environmental Verification: Before execution, the skill performs a check of the AWS CLI configuration using sts get-caller-identity, ensuring the agent is operating with the expected identity and context before attempting resource creation.
Secure Data Handling: The skill generates Lambda function code and configuration locally. No hardcoded credentials or external network exfiltration patterns were detected in the provided instructions or scripts.

connecting-lambda-to-dynamodb