checking-infrastructure-compliance

Quick Review

This skill suffers from being a generic template applied to compliance checking without meaningful customization. The description is vague ('work with compliance checking') and doesn't clarify what compliance frameworks, tools, or infrastructure types are supported. The task knowledge consists of entirely generic DevOps steps (assess, design, implement, validate, deploy) that could apply to any infrastructure task—there's no compliance-specific guidance on policy engines (OPA, Sentinel), compliance frameworks (CIS, PCI-DSS, SOC2), or actual compliance validation techniques. Structure is reasonable with clear sections, but the content is hollow. Novelty is low because a CLI agent could easily perform generic 'check status, make changes, validate' workflows without this skill, and the skill provides no specialized compliance tooling, policy templates, or audit automation that would justify its existence. To be useful, this needs concrete compliance checking logic, specific policy validation scripts, integration with compliance tools, and actual compliance domain knowledge rather than boilerplate DevOps workflow steps.