Infrastructure Drift Detector

What it does

This skill automates a drift-detection workflow: compare Terraform state to actual cloud resources and surface unmanaged, changed, or missing resources. It documents risk categories, suggests remediation paths (import, revert, or delete), and includes CI integration examples for scheduled auditing. The skill relies on the Snyk CLI (snyk iac describe) to perform the comparison and emit JSON for analysis.

When to use it

Run during pre-deployment checks, post-incident audits, or regular infra hygiene sweeps when you need to ensure infrastructure matches IaC. Use for shadow-IT discovery, security reviews, or to gate deployments on drift-free state.

What's included

• Scripts: none bundled (has_scripts=false) — the SKILL provides command examples and CI snippets
• References: repo contains references/ materials (has_references=true) that complement the workflow
• Instructions: stepwise guidance for local and remote state scans, cloud credential validation, JSON output generation, risk categorization, and remediation recommendations.

Compatible agents

Agents capable of running CLI tools and interacting with cloud APIs (DevOps assistants, CI-integrated bots, or agents with Snyk/terraform knowledge).