cloudformation

📁 bagelhole/devops-security-agent-skills 📅 9 days ago

总安装量

周安装量

#52510

全站排名

安装命令

npx skills add https://github.com/bagelhole/devops-security-agent-skills --skill cloudformation

Agent 安装分布

opencode 1

codex 1

claude-code 1

Skill 文档

CloudFormation

Deploy AWS infrastructure with native CloudFormation templates.

Template Structure

AWSTemplateFormatVersion: '2010-09-09'
Description: Web application stack

Parameters:
  Environment:
    Type: String
    AllowedValues: [dev, staging, prod]
    
Resources:
  WebServer:
    Type: AWS::EC2::Instance
    Properties:
      ImageId: !Ref AMI
      InstanceType: t3.micro
      Tags:
        - Key: Name
          Value: !Sub '${Environment}-web'
          
Outputs:
  InstanceId:
    Value: !Ref WebServer
    Export:
      Name: !Sub '${Environment}-WebServerId'

Stack Operations

# Create stack
aws cloudformation create-stack \
  --stack-name myapp \
  --template-body file://template.yaml \
  --parameters ParameterKey=Environment,ParameterValue=prod

# Update stack
aws cloudformation update-stack \
  --stack-name myapp \
  --template-body file://template.yaml

# Delete stack
aws cloudformation delete-stack --stack-name myapp

# Detect drift
aws cloudformation detect-stack-drift --stack-name myapp

Intrinsic Functions

# Reference
!Ref MyResource

# Get attribute
!GetAtt MyResource.Arn

# Substitute
!Sub 'arn:aws:s3:::${BucketName}/*'

# Conditional
!If [CreateProdResources, 't3.large', 't3.micro']

# Join
!Join ['-', [!Ref Environment, 'app', 'bucket']]

Best Practices

Use change sets before updates
Implement stack policies
Use nested stacks for modularity
Enable termination protection
Use cfn-lint for validation

Related Skills

terraform-aws – Alternative IaC
aws-iam – IAM resources

GitHub 仓库 ↗ ← 返回陌讯 Skills 聚合平台