agentdevsl/tf-architecture-patterns
docker/skills-cache/tf-architecture-patterns/SKILL.md
Terraform module design patterns, resource composition conventions, and project structure standards. Use when designing module structure, choosing resource composition patterns, or setting up project layout for AWS Terraform modules.
$ install --global
skillsauthnpx skillsauth add agentdevsl/agentpane tf-architecture-patternsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 21, 2026, 12:55 PM52.6s1 file scanned
SKILL.md
- name:
- tf-architecture-patterns
- description:
- Terraform module design patterns, resource composition conventions, and project structure standards. Use when designing module structure, choosing resource composition patterns, or setting up project layout for AWS Terraform modules.
- source:
- image
Terraform Architecture Patterns
Module-First Architecture
This repository develops well-structured, reusable Terraform modules using raw resources that follow HashiCorp and organizational best practices.
Module Design Rules
- Author modules using native Terraform resources and data sources from official providers
- Follow the standard HashiCorp module structure: root module,
variables.tf,outputs.tf,examples/,tests/ - Research AWS docs and provider docs before writing resource configurations
- Study well-regarded public registry modules for design patterns (e.g.,
terraform-aws-modules/) - Expose configurable inputs with secure defaults
- Support conditional resource creation via
create_*boolean variables - Use semantic versioning (major.minor.patch) with clear CHANGELOG entries
- Use
>=version constraints for providers in modules (maximize consumer compatibility)
Project Structure Convention
/
├── main.tf # Primary resource definitions
├── variables.tf # Input variables with validation
├── outputs.tf # Output values with descriptions
├── locals.tf # Computed values
├── versions.tf # Terraform and provider version constraints (required_version + required_providers)
├── README.md # Auto-generated via terraform-docs
├── CHANGELOG.md # Version history
├── examples/
│ ├── basic/ # Minimal usage example (with provider config)
│ └── complete/ # Full-featured example
├── tests/ # Terraform test files (.tftest.hcl)
└── .github/
└── workflows/ # CI/CD pipelines
File Organization Rules
- No monolithic files exceeding 500 lines
- No intermingling resource types without logical grouping
- No default values for security-sensitive variables
- No provider configuration in the root module
- Variables: snake_case with descriptive names
- Resources: Use
thisfor single primary resource, descriptive names for multiples - Prefer
for_eachovercountfor resource iteration (stable addresses)
Security-First Defaults
Security defaults per constitution sections 1.2 and 4.x. Key: zero trust, encryption by default, least privilege, sensitive = true on secrets.
Related Skills
agentdevsl/tf-security-baselines
development
VerifiedTrustedCommunity
AWS security assessment domains, risk rating framework, CIS/NIST reference baselines, and evidence-based finding format. Use when reviewing AWS security posture, assessing risk, or applying CIS/NIST baselines to Terraform configurations.
5SKILL.mdUpdated Apr 21, 2026
agentdevsl/docker/skills-cache/tf-runtask
testing
VerifiedTrustedCommunity
--- name: "tf-runtask" description: "Retrieve and display Terraform Cloud/Enterprise run task results for a given run. Use this skill whenever the user asks about run task results, run task checks, task stage statuses, or wants to inspect what run tasks reported for a Terraform Cloud/Enterprise run. Triggers on phrases like "check the run tasks", "what did the run tasks say", "show run task results", "get task results for run-xxx", or any reference to run task outcomes on a specific run." source
5SKILL.mdUpdated Apr 21, 2026
agentdevsl/tf-research
devops
VerifiedTrustedCommunity
Research strategies for AWS documentation, provider docs, and public registry patterns. Use when researching AWS services, investigating provider resources, or studying public registry modules for design patterns.
5SKILL.mdUpdated Apr 21, 2026
agentdevsl/tf-report-template
development
VerifiedTrustedCommunity
Validation results summary template for Phase 4 output. Provides the format for reporting terraform test, validate, fmt, tflint, pre-commit, trivy, and security checklist results.
5SKILL.mdUpdated Apr 21, 2026