Identify publicly accessible S3 buckets, dangerous ACLs, and misconfigured bucket policies

Detect hardcoded secrets, exposed API keys, and credential misconfigurations in IaC and config files

Audit AWS Security Groups and VPC configurations for dangerous internet exposure

Design AWS architectures for startups using serverless patterns and IaC templates. Use when asked to design serverless architecture, create CloudFormation templates, optimize AWS costs, set up CI/CD pipelines, or migrate to AWS. Covers Lambda, API Gateway, DynamoDB, ECS, Aurora, and cost optimization.

Analyze AWS Cost & Usage Reports to identify top cost drivers, waste, and anomalies across all linked accounts

Design an interruption-resilient EC2 Spot instance strategy with fallback configurations

Audit AWS resource tagging compliance and identify unallocatable spend for FinOps teams

Review Terraform plans and HCL files for AWS security misconfigurations before deployment

Manage AWS Lightsail and EC2 instances using AWS CLI

Accessibility testing and remediation using the axe MCP Server. Use when creating or modifying UI code (HTML, JSX, TSX, Vue, Svelte, CSS) to ensure accessibility compliance. Triggers on tasks involving web pages, components, forms, navigation, modals, tables, images, or any user-facing markup. Also use when explicitly asked to check accessibility or run an axe scan.

AI-powered Base-chain trading and on-chain query agent via natural language. Use when the user wants to trade crypto (buy/sell/swap tokens), set up automated strategies (DCA, limit orders, RSI), check portfolio balances, view token prices, query token info/analysis, check order status, manage take-profit/stop-loss orders, or ask about crypto/DeFi topics on Base chain. Always run scripts/axelrod_chat.py to fetch real-time results.

Deploy applications, static sites, and edge functions to Azion using Azion CLI. Use when the user asks to deploy/publish to Azion, configure link/build/deploy flow, or troubleshoot Azion auth/project linking problems.

Comprehensive Azure Cloud Platform management via command-line interface

Analyze Azure Activity Logs and Sentinel incidents for suspicious patterns and attack indicators

Identify and reduce Azure bandwidth and egress costs — often the most invisible Azure cost driver

Interpret Microsoft Defender for Cloud Secure Score and generate a prioritized remediation roadmap

Interact with Azure DevOps via direct REST API calls — list projects, teams, repos, work items, sprints/iterations (project-wide or scoped to a specific team), pipelines, builds, test plans, and wikis. Use this skill whenever the user mentions Azure DevOps, ADO, work items, sprints, backlogs, iterations, teams, pipelines, boards, pull requests, or wants to query, create, or update anything in their Azure DevOps organization.

Optimize Azure dev/test environment costs with auto-shutdown schedules and Dev/Test pricing enrollment

Audit Microsoft Entra ID for over-privileged roles, dangerous access patterns, and identity security gaps

Generate images using Azure OpenAI DALL-E. Supports batch generation, custom prompts, and outputs a gallery.

Chat-based Azure infrastructure assistance using Azure CLI and portal context. Use for querying, auditing, and monitoring Azure resources (VMs, Storage, IAM, Functions, AKS, App Service, Key Vault, Azure Monitor, billing, etc.), and for proposing safe changes with explicit confirmation before any write/destructive action.

Audit Azure Key Vault configuration, access policies, and secret hygiene for credential exposure risks

Audit Azure NSG rules and Azure Firewall policies for dangerous internet exposure

Enable Azure OpenAI integration with OpenClaw via a lightweight local proxy. Use when configuring Azure OpenAI as a model provider, when encountering 404 errors with Azure OpenAI in OpenClaw, or when needing to use Azure credits (e.g. Visual Studio subscription) with OpenClaw subagents. Solves the api-version query parameter issue that prevents direct Azure OpenAI integration.