CloudFormation plugins

Manage the full AWS lifecycle from infrastructure-as-code and serverless deployments to cost optimization, observability, and AI/ML on Bedrock, with SDK patterns for JavaScript, Python, and Swift.

Deploy applications to AWS with architecture recommendations, cost estimates, and infrastructure-as-code generation using CDK, CloudFormation, or Terraform. Generates validated AWS architecture diagrams as draw.io XML and queries AWS pricing data for cost estimation.

Build, train, and deploy AI models on AWS SageMaker with deep ML expertise: validate datasets, fine-tune models (SFT, DPO, RLVR), generate Jupyter notebooks, evaluate model quality, and diagnose HyperPod cluster issues (NCCL, GPU, Slurm, EKS) — all from your coding assistant.

Automate GRC engineering workflows: map IaC (Terraform, Kubernetes, CloudFormation) to compliance controls (SOC2, NIST, ISO27001), generate policy-as-code (Rego, Sentinel, Checkov), collect audit evidence from AWS/Azure/GCP/K8s via scripts, scan IaC/PRs for violations with fixes, test control effectiveness, resolve framework conflicts, and transform risks into Jira tickets.

Assess SOC 2 Type I/II audit readiness for cloud environments, identify control gaps across Trust Service Criteria, generate remediation Infrastructure as Code in Terraform or CloudFormation, produce evidence checklists and matrices, map controls from documents or IaC, and compile auditor-ready packages with AWS evidence collection.

Accelerate cloud security workflows by triaging alerts, investigating incidents, analyzing IAM risks, mapping attack paths, assessing compliance gaps, and discovering sensitive data exposure across AWS, GCP, and Azure environments using the Orca Cloud Platform.

Orchestrate AI agent workflows across IDEs with structured planning, implementation, testing, and documentation generation, plus infrastructure-as-code support and multi-agent coordination.

Automate full infrastructure lifecycles: generate IaC with Terraform, CDK, or CloudFormation for AWS; design CI/CD pipelines for GitHub Actions or GitLab; create idempotent Bash/Python scripts; orchestrate deployments with blue-green/canary strategies, rollbacks, health checks; implement GitOps using ArgoCD/Flux on Kubernetes.

Audit AWS IaC code in Terraform, CloudFormation, and Pulumi against all six Well-Architected Framework pillars for security, reliability, performance efficiency, cost optimization, operational excellence, and sustainability. Scan JavaScript, TypeScript, Python, Java, and Go code for OWASP Top 10 2025 vulnerabilities, reporting severity, locations, risks, and fixes.

Generate infrastructure and architecture diagrams from your codebase using D2. Analyzes IaC patterns and documentation to produce annotated SVGs with light/dark themes, then validates and enhances them with animations for GitHub.

Scan Terraform, CloudFormation, Bicep, Docker, Kubernetes, and Python code for security and compliance violations, then auto-fix issues or generate new ORL rules. Optionally convert HashiCorp Sentinel policies into ORL rules.

Design AWS and GCP infrastructure using Terraform and Ansible patterns, build data pipelines with dbt and SQLMesh, generate and manage RFCs plus technical specs in Markdown, and automate local dev setups including direnv, git worktrees, and port allocations for Docker services.