Spot Strategy
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent instruction-only AWS planning skill that asks for read-only exported AWS inventory and cost data, without requesting credentials or making account changes.
Before installing, be comfortable sharing sanitized AWS inventory, Auto Scaling, and cost outputs with the agent. Do not provide access keys, secret keys, session tokens, or unredacted data that is not needed for Spot strategy planning.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may run the provided AWS CLI commands to collect data, but the skill itself is not instructed to run commands or change AWS resources.
The artifact lists bash as a tool and includes AWS CLI examples, but frames them as user-run data export steps rather than commands the skill should execute. This is purpose-aligned but worth noticing.
tools: claude, bash ... This skill is instruction-only. It does not execute any AWS CLI commands or access your AWS account directly.
Keep command execution user-controlled, review the AWS CLI commands before running them, and provide only the exported outputs needed for the analysis.
Sharing the exported output may disclose details about your AWS infrastructure and costs, even though it does not grant write access or include credentials.
The skill provides a read-only IAM policy for collecting AWS inventory, Auto Scaling, Spot pricing, and cost data. This access is expected for the stated purpose, but it can expose account structure and spend information.
"Action": ["ec2:DescribeInstances", "ec2:DescribeSpotPriceHistory", "autoscaling:Describe*", "ce:GetCostAndUsage"], "Resource": "*"
Use a least-privilege read-only role, avoid pasting credentials or secrets, and redact account details that are not needed for the strategy design.