Iam Policy Auditor
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a straightforward IAM policy review skill, with only a minor notice that it declares bash access even though the written workflow is advisory.
Before installing, note that this skill is meant to review IAM policy content and produce recommendations, not directly modify AWS. Review any generated replacement policy carefully before applying it, and do not approve shell or AWS commands unless you explicitly understand and want that action.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent asks to run shell commands while using this skill, that would go beyond the documented policy-review workflow and should be checked first.
The skill declares bash availability, which is a broad local execution capability, although the body only describes analyzing IAM policy text and does not instruct any shell commands.
tools: claude, bash
Use it primarily with user-provided IAM policy JSON and only approve shell commands if they are clearly necessary and scoped to the audit task.