Which cloud providers are supported?

While the core logic applies to Terraform, this specific skill is optimized for AWS infrastructure and credential management.

How does it help with security?

It specifically flags 'Security Drift,' such as modified security groups or IAM roles, allowing you to quickly revert unauthorized access changes.

Can I use this with OpenTofu?

Yes, the workflows provided in this skill are compatible with both Terraform and OpenTofu environments.

What is infrastructure drift?

Infrastructure drift occurs when the actual state of your cloud resources deviates from the configuration defined in your Terraform code, often due to manual changes or external automation.

Does this skill automatically change my infrastructure?

No, the skill follows a safety-first approach. It identifies drift and presents resolution options, but never applies changes without explicit user approval.

Terraform Drift Detection

Name: Terraform Drift Detection
Author: lgbarn

bylgbarn

0•

Cloud Infrastructure

Identifies and categorizes out-of-band changes between Terraform state and live AWS infrastructure to maintain environment consistency.

The Terraform Drift Detection skill provides a structured framework for DevOps engineers to identify discrepancies between Infrastructure as Code (IaC) and actual cloud resources. It automates the process of refreshing state, analyzing changes via JSON output, and categorizing drift by severity levels—ranging from critical security modifications to low-impact tag changes. By providing clear resolution paths such as accepting the drift into state or reverting resources to match the code, it ensures that your AWS environment remains secure, predictable, and fully synchronized with your Terraform configuration.

Key Features

01Guided resolution workflows for accepting or rejecting changes

02Memory integration to track recurring drift patterns over time

03Automated state refreshing and JSON-based impact analysis

04Security-first verification of AWS credentials and environments

050 GitHub stars

06Drift categorization by severity (Security, Configuration, Tag, Metadata)

Use Cases

01Detecting unauthorized manual changes made via the AWS Management Console

02Synchronizing state files after emergency hotfixes or auto-scaling events

03Auditing security group and IAM modifications for compliance

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add lgbarn/devops-skills terraform-drift-detection

For use in Claude.ai and ChatGPT

Download Skill