Terrashark

Trust Score 89/100

Diagnose and fix Terraform/OpenTofu failure modes (identity churn, secret exposure, blast radius, CI drift, compliance gaps) and generate risk-controlled remedi

triggers:terraformopentofuiac-fixidentity-churnsecret-exposureci-driftblast-radius

GitHub SKILL.md

What it does

Terrashark is a Terraform/OpenTofu-focused workflow skill that helps agents diagnose common failure modes in infrastructure-as-code and produce concrete, low-risk remediation plans. It guides the agent to capture execution context (runtime, providers, backend, criticality), identify likely failure modes (identity churn, secret exposure, blast radius, CI drift, compliance gate gaps), load only relevant references, propose mitigations with explicit guardrails, and generate implementation artifacts such as HCL patches, migration blocks, and CI pipeline updates.

When to use it

Use Terrashark when generating, reviewing, refactoring, or migrating IaC, or when building/testing delivery pipelines. It's intended for tasks where hallucination risk is high (LLM-generated HCL), when backend or provider changes are planned, or when compliance and safety controls must be enforced before apply.

What's included

Scripts: none detected in this repo snapshot
References: structured guidance and conditional reference files for identity, secrets, blast radius, CI drift, and compliance (the SKILL.md lists many references/ files to load when relevant)
Instructions: procedural workflow from context capture → diagnosis → targeted reference loading → fix proposal → artifact generation → validation.

Compatible agents

Best fit for Claude Code and Codex-style assistants that can produce HCL and step-by-step remediation plans.

Audit Summary

Terrashark is a Terraform/OpenTofu failure-mode diagnostic skill with no bundled scripts. Its SKILL.md provides a well-structured 7-step workflow covering identity churn, secret exposure, blast radius, CI drift, and compliance gaps. References are organized with conditional loading based on detected signals, and the output contract is explicit.

Notes

No scripts to audit. SKILL.md is clean with no security concerns. Progressive disclosure via conditional references is a nice pattern. Skill is purely instructional — all value comes from the agent following the workflow steps.

Information

Repository: terrashark
Stars: 325
Installs: 0

Trust Score

Overall89

Security100

Code Quality78

Architecture80

Usefulness75

Related Skills

Development Worktree

Create an isolated git worktree for feature work, auto-run project setup, and verify a clean test baseline before development.

Readwise Reader Document Management

Manage Readwise Reader documents: list, save, search, move, tag, highlight, export and bulk-edit via official and custom CLIs.

Bounty Hunter — Atlas

Persona skill: 'Atlas' — a profit-focused developer persona for discovering, evaluating and executing paid bounties or freelance tasks with ROI-aware workflows.

Junshi — Research Advisor

Daily strategic research advisor that scans arXiv/venues, digests papers, and proposes bold, ranked research ideas tailored to the user's profile.

TradeOS

Natural-language driven CEX trading and portfolio management for agents: API key vaulting, multi-exchange orders, DCA, arbitrage scanning, alerts and security r

Full Stack Builder

End-to-end builder that scaffolds, implements, tests, and optionally deploys web and API applications from a natural-language specification.

ezBookkeeping API Tools

Command-line API tools for ezBookkeeping: record and query transactions, retrieve accounts/categories/tags, and fetch exchange rates for self-hosted personal fi

Feishu Voice Sender

Convert MP3s and send them as native Feishu voice messages (playable voice clips) to users or groups.

Back to Skills