sutanunandigrami/infra-deploy
dot-claude/skills/infra-deploy/SKILL.md
Infrastructure as Code workflows with Terraform, Ansible, Docker, and Kubernetes. Use when provisioning, configuring, deploying, or managing infrastructure.
$ install --global
skillsauthnpx skillsauth add sutanunandigrami/claude-titan-setup infra-deployInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 15, 2026, 2:23 AM6.0s1 file scanned
SKILL.md
- name:
- infra-deploy
- description:
- Infrastructure as Code workflows with Terraform, Ansible, Docker, and Kubernetes. Use when provisioning, configuring, deploying, or managing infrastructure.
- paths:
- **/*.tf,**/*.tfvars,**/*.hcl,**/ansible*,**/playbooks/**,**/*.yaml,**/*.yml,**/k8s/**,**/helm/**
Infrastructure Workflows
Terraform
terraform fmt -recursive— format all .tf filestflint— lint for errors and best practicesterraform validate— syntax validationterraform plan -out=plan.tfplan— preview changes (ALWAYS do this first)infracost breakdown --path=plan.tfplan— estimate cost impact- Only after review:
terraform apply plan.tfplan
NEVER run terraform apply -auto-approve or terraform destroy without explicit operator approval.
Ansible
ansible-lint— lint playbooksansible-playbook --check -i inventory site.yml— dry runansible-playbook -i inventory site.yml— actual run
Docker
hadolint Dockerfile— lint before buildingdocker build -t <name>:<tag> .— build imagetrivy image <name>:<tag>— scan for vulnerabilitiesdive <name>:<tag>— analyze layer efficiencydocker compose up -d— deploy
Kubernetes
kubectl get pods -A— cluster overviewk9s— interactive managementstern <pod-prefix>— tail logs from multiple podshelm list -A— check installed charts
Hetzner Cloud
Run hcloud --help for available commands.
Common: hcloud server list, hcloud server create, hcloud firewall list
Rules
- ALWAYS plan before apply
- ALWAYS scan images before deploying
- ALWAYS lint IaC files before committing
- Use
sopsoragefor secrets, never plaintext
Related Skills
sutanunandigrami/dot-claude/skills/workspace
tools
VerifiedTrustedCommunity
Project workspace configuration — auto-detect commands, _workspace.json convention, .envrc templates
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/VibeSec-Skill
development
VerifiedTrustedCommunity
This skill helps Claude write secure web applications. Use this when working on any web application or when a user requests a scan or audit to ensure security best practices are followed.
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/modern-python
tools
VerifiedTrustedCommunity
Configures Python projects with modern tooling (uv, ruff, ty). Use when creating projects, writing standalone scripts, or migrating from pip/Poetry/mypy/black.
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/dot-claude/skills/tmux-control
tools
VerifiedTrustedCommunity
Control tmux sessions — create panes, run commands, read output, monitor processes
9SKILL.mdUpdated Apr 15, 2026