The Agent Skills Directory

IAM Resource Management: The skill automates the creation of an IAM service role (APIGatewayCloudWatchLogsRole) and attaches the AmazonAPIGatewayPushToCloudWatchLogs managed policy. This is a necessary step to grant API Gateway the permissions required to send logs to CloudWatch, following standard AWS configuration procedures.
AWS CLI Command Construction: The skill uses the call_aws tool to execute configuration commands based on user-provided parameters like rest_api_id and stage_name. This allows the agent to interact directly with AWS infrastructure to manage resources.
Security Feature Integration: The procedure explicitly configures security controls including WAF (Web Application Firewall) association and request throttling. These steps represent a proactive security posture for API deployment.
Data Ingestion Surface: Parameters such as stage_description and environment-variables are interpolated into AWS CLI commands. Users should provide trusted data for these fields to ensure the generated commands reflect the intended configuration.

creating-api-gateway-stage