The Agent Skills Directory

[SAFE] (SAFE): No security issues were detected. The skill contains documentation and Terraform code snippets that adhere to industry standards for secure infrastructure deployment. Key security features identified include:
Container Hardening: Task definitions implement readonlyRootFilesystem = true and use tmpfs for temporary file storage, minimizing the persistent attack surface within containers.
Secret Management: Container environment variables are mapped using valueFrom referencing external secret stores (AWS Secrets Manager or SSM Parameter Store), ensuring no sensitive data is hardcoded in the templates.
Transport Security: Load balancer configurations enforce TLS 1.3 and include mandatory redirection from HTTP to HTTPS.
Storage Security: The EFS file system and ECS Exec logging are configured with encryption enabled using KMS.
Least Privilege Networking: Security groups are defined with restricted ingress rules, allowing traffic only from specific load balancers to application containers.

terraform-ecs