Which cloud providers are supported?

While the core logic applies to Terraform, this specific skill is optimized for AWS infrastructure and credential management.

How does it help with security?

It specifically flags 'Security Drift,' such as modified security groups or IAM roles, allowing you to quickly revert unauthorized access changes.

Can I use this with OpenTofu?

Yes, the workflows provided in this skill are compatible with both Terraform and OpenTofu environments.

What is infrastructure drift?

Infrastructure drift occurs when the actual state of your cloud resources deviates from the configuration defined in your Terraform code, often due to manual changes or external automation.

Does this skill automatically change my infrastructure?

No, the skill follows a safety-first approach. It identifies drift and presents resolution options, but never applies changes without explicit user approval.

Terraform Drift Detection

Name: Terraform Drift Detection
Author: lgbarn

bylgbarn

Cloud Infrastructure

Identifies and categorizes out-of-band changes between Terraform state and live AWS infrastructure to maintain environment consistency.

About

The Terraform Drift Detection skill provides a structured framework for DevOps engineers to identify discrepancies between Infrastructure as Code (IaC) and actual cloud resources. It automates the process of refreshing state, analyzing changes via JSON output, and categorizing drift by severity levels—ranging from critical security modifications to low-impact tag changes. By providing clear resolution paths such as accepting the drift into state or reverting resources to match the code, it ensures that your AWS environment remains secure, predictable, and fully synchronized with your Terraform configuration.

Key Features

Guided resolution workflows for accepting or rejecting changes
Memory integration to track recurring drift patterns over time
Automated state refreshing and JSON-based impact analysis
Security-first verification of AWS credentials and environments
0 GitHub stars
Drift categorization by severity (Security, Configuration, Tag, Metadata)

Use Cases

Detecting unauthorized manual changes made via the AWS Management Console
Synchronizing state files after emergency hotfixes or auto-scaling events
Auditing security group and IAM modifications for compliance

About

Key Features

Guided resolution workflows for accepting or rejecting changes
Memory integration to track recurring drift patterns over time
Automated state refreshing and JSON-based impact analysis
Security-first verification of AWS credentials and environments
0 GitHub stars
Drift categorization by severity (Security, Configuration, Tag, Metadata)

Use Cases

Detecting unauthorized manual changes made via the AWS Management Console
Synchronizing state files after emergency hotfixes or auto-scaling events
Auditing security group and IAM modifications for compliance