The Agent Skills Directory

[SAFE]: The skill implements standard security auditing practices for AWS Nitro Enclaves. The provided agent script utilizes the official AWS SDK (boto3) to interface with authorized cloud services such as EC2, KMS, and IAM.
[COMMAND_EXECUTION]: The auditing tool utilizes the AWS Systems Manager (SSM) SendCommand API to remotely inspect enclave allocator configuration files (/etc/nitro_enclaves/allocator.yaml) on EC2 instances to verify resource allocation and isolation settings.
[EXTERNAL_DOWNLOADS]: The documentation references the official AWS Nitro Enclaves Root CA certificate from a well-known AWS domain (aws-nitro-enclaves.amazonaws.com) for the purpose of validating enclave attestation documents.

implementing-aws-nitro-enclave-security