infra-engineer_skill

This skill helps you design and operate multi-cloud infrastructure with IaC, CI/CD, GitOps, security, and FinOps to optimize performance and cost.
  • Python

12

GitHub Stars

2

Bundled Files

2 months ago

Catalog Refreshed

4 months ago

First Indexed

Readme & install

Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.

Installation

Preview and clipboard use veilstrat where the catalogue uses aiagentskills.

npx veilstrat add skill samhvw8/dotfiles --skill infra-engineer

  • dot_env.example2.5 KB
  • SKILL.md23.1 KB

Overview

This skill provides comprehensive infrastructure engineering for modern cloud-native systems, covering DevOps, multi-cloud platforms, FinOps, and DevSecOps. It helps teams deploy, secure, scale, and optimize infrastructure across AWS, Azure, GCP, and Cloudflare with IaC, CI/CD, and GitOps patterns. The focus is practical outcomes: reliable deployments, cost savings, and stronger security posture.

How this skill works

I inspect your target platform and requirements, then produce concrete actions: IaC templates (Terraform/CloudFormation), CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins), Kubernetes manifests/Helm charts, and Cloudflare Worker deployments. I can run cost analysis and recommend FinOps moves (reserved/spot scheduling, rightsizing). For security I integrate SAST/DAST, image scanning, secrets management, and compliance controls into pipelines and runtime.

When to use it

  • Deploying applications to AWS, Azure, GCP, or Cloudflare
  • Building or hardening CI/CD pipelines and GitOps workflows
  • Managing Kubernetes clusters (EKS/AKS/GKE) and container orchestration
  • Performing cloud cost analysis and implementing FinOps optimizations
  • Implementing DevSecOps: scanning, secrets, runtime protection, compliance

Best practices

  • Treat Git as the single source of truth; use GitOps for cluster config and automated sync
  • Write reusable, versioned IaC modules and store remote state with locking
  • Automate security scans (SAST, SCA, container image scanning) in pipelines before deploy
  • Right-size and tag resources; use reserved/spot instances where appropriate and schedule dev environments off-hours
  • Implement observability (logs, metrics, traces) and alerting tied to runbooks and incident processes

Example use cases

  • Create an AWS EKS cluster with an ArgoCD GitOps flow and Helm chart deployment
  • Migrate a web app to Cloudflare Workers + R2 for edge delivery and lower egress costs
  • Build CI/CD pipeline: build Docker image, push to registry, run Trivy scan, deploy to ECS or Kubernetes
  • Run FinOps analysis and produce actionable recommendations: rightsizing, RI/savings plans, and scheduling
  • Implement secrets management with Vault or cloud-native secrets stores plus CI integration

FAQ

Choose based on requirements: AWS for breadth and enterprise features, GCP for analytics/ML and GKE, Azure for Microsoft-centric stacks, Cloudflare for edge-first low-latency apps. Hybrid/multi-cloud is viable when you need best-of-breed across layers.

How do I start lowering cloud spend quickly?

Begin with discovery: identify untagged/idle resources, enable cost allocation tags, right-size instances, apply reserved or savings plans for steady workloads, and use spot instances for fault-tolerant tasks. Schedule non-prod environments to shut down when idle.

Built by
VeilStrat
AI signals for GTM teams
© 2026 VeilStrat. All rights reserved.All systems operational