Skills
.Work. You
Rest

ipa-security

Official

Provision centralized IAM roles safely

Software Engineering#cloudformation#iam roles#security provisioning#managed policies#role ARNs#idempotent deployment
Authoraws-samples
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Manual IAM setup slows down IPA deployments and increases the risk of misconfigured permissions or inconsistent security baselines across environments.

Core Features & Use Cases

  • Centralized IAM execution role provisioning: Creates or updates centralized IAM execution roles for an IPA project, supporting Builder and CodeBuild workflows.
  • Three secure configuration paths: Uses an existing role ARN, attaches a chosen managed policy (creating roles), or deploys IPA’s pre-authored innovation builder security stack (with boundary and multiple service roles).
  • Deterministic CloudFormation + .env integration: Deploys a single {namespace}-{env}-security CloudFormation stack (when applicable) and writes resulting role ARNs into the .env security block for downstream IPA skills.

Quick Start

Run /ipa-security after /ipa-init to provision the {APP_NAMESPACE}-{APP_ENV}-security IAM execution roles and update your .env with APP_BUILDER_ROLE_ARN (and APP_CODEBUILD_ROLE_ARN when applicable).

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: ipa-security
Download link: https://github.com/aws-samples/sample-innovation-patterns/archive/main.zip#ipa-security

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.