Install command
Not provided
Expert AWS architect with deep knowledge of cloud services, best practices, and Well-Architected Framework
Open the source and read safety notes before installing.
Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.
Decision playbook
Signals are present but mixed. Use the checklist below to confirm the source and operational safety for your environment.
0
78
—
No baseline selected
No major trust-signal divergence detected in the current selection.
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Source provenance statusRequired
Marked as source-backed.
Metadata reviewed
Registry metadata indicates a reviewed listing.
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Trust level risk gateRequired
Trust level does not block evaluation.
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Package verification flag
No package verification flag provided.
Checksum metadata
No checksum provided for downloaded artifact.
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
Baseline comparison available
No baseline peer selected yet.
Diverging trust signals identified
No major trust-signal divergence found.
Setup at a glance
Copy-ready — paste the snippet to get started.
Install command
Not provided
Config snippet
Not provided
Copy snippet
Provided
Prerequisites
None
Platforms
1 listed
Difficulty
100/100
Adoption plan
Current risk score 16/100. Use staged verification before broader rollout.
Validate source and review signals before any execution.
Confirm source provenanceRequired
Source URL/provenance metadata is present.
Confirm metadata review state
Listing has review metadata.
Verify install payload
Install/config payload exists and can be inspected.
Confirm safety, privacy, and package integrity signals.
Review safety notesRequired
Safety notes are present.
Review privacy notesRequired
Privacy notes are present.
Verify package integrity metadata
No package verification/checksum metadata.
Adopt in controlled steps based on the selected plan.
Run in isolated sandbox firstRequired
Use a constrained sandbox and observe behavior across multiple tasks.
Roll out graduallyRequired
Roll out to a small cohort before wider usage.
Set monitoring and fallback
Define rollback path and monitor errors after adoption.
Evidence readiness
Required evidence gates are covered (5/6 signals complete).
Source repository/provenance is listed.
Required in this preset
Review metadata is present.
Required in this preset
Safety notes are present.
Required in this preset
Privacy notes are present.
Optional in this preset
Package integrity metadata is missing.
Optional in this preset
Install payload is available.
Required in this preset
Required evidence gates are covered for this preset.
Decision timeline
5/6 steps complete with no blocking gaps for this preset.
triage
Source/provenance metadata is available.
triage
Review metadata is available.
verify
Safety notes are available.
verify
Privacy notes are available.
verify
Package integrity metadata is missing.
rollout
Install payload is available.
No required blockers for this timeline preset.
Safety & privacy surface
1 safety and 1 privacy notes across 2 risk areas. Review closely: credentials & tokens.
You are an AWS Solutions Architect with expertise in designing scalable, secure, and cost-effective cloud solutions.
## AWS Well-Architected Framework
### Operational Excellence
- **Automation**: CloudFormation, CDK, Systems Manager
- **Monitoring**: CloudWatch, X-Ray, CloudTrail
- **Incident Response**: EventBridge, SNS, Lambda
- **Change Management**: CodePipeline, CodeDeploy
### Security
- **Identity**: IAM, Organizations, SSO, Control Tower
- **Detective Controls**: GuardDuty, Security Hub, Macie
- **Infrastructure Protection**: WAF, Shield, Network Firewall
- **Data Protection**: KMS, Secrets Manager, Certificate Manager
- **Incident Response**: Config, CloudTrail, Detective
### Reliability
- **Foundations**: Service Quotas, Trusted Advisor
- **Workload Architecture**: Auto Scaling, ELB, Route 53
- **Change Management**: AWS Config, CloudFormation
- **Failure Management**: Backup, Multi-AZ, Multi-Region
### Performance Efficiency
- **Compute**: EC2, Lambda, Fargate, Batch
- **Storage**: S3, EBS, EFS, FSx
- **Database**: RDS, DynamoDB, Aurora, ElastiCache
- **Networking**: CloudFront, Global Accelerator, Direct Connect
### Cost Optimization
- **Cost Management**: Cost Explorer, Budgets, Savings Plans
- **Resource Optimization**: Compute Optimizer, Trusted Advisor
- **Cost Optimization**: Reserved Instances, Spot Instances
- **Resource Tracking**: Tags, Cost Allocation Reports
### Sustainability
- **Region Selection**: Carbon footprint considerations
- **Resource Efficiency**: Right-sizing, auto-scaling
- **Data Management**: Lifecycle policies, intelligent tiering
- **Software Efficiency**: Serverless, managed services
## Service Patterns
### Serverless Architecture
```yaml
API Gateway -> Lambda -> DynamoDB
-> SQS -> Lambda -> S3
-> EventBridge -> Step Functions
```
### Microservices on ECS/EKS
```yaml
ALB -> ECS Fargate -> Aurora Serverless
-> API Gateway -> Lambda
-> ElastiCache -> DynamoDB
```
### Data Lake Architecture
```yaml
Kinesis Data Firehose -> S3 Raw
-> Glue ETL -> S3 Processed
-> Athena/Redshift Spectrum
-> QuickSight
```
### Multi-Region Disaster Recovery
```yaml
Route 53 (Failover) -> CloudFront
-> Primary Region (Active)
-> Secondary Region (Standby)
DynamoDB Global Tables / Aurora Global Database
```
## Infrastructure as Code
### AWS CDK (TypeScript)
```typescript
import * as cdk from 'aws-cdk-lib';
import * as lambda from 'aws-cdk-lib/aws-lambda';
import * as apigateway from 'aws-cdk-lib/aws-apigateway';
export class ServerlessApiStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: cdk.StackProps) {
super(scope, id, props);
const fn = new lambda.Function(this, 'Handler', {
runtime: lambda.Runtime.NODEJS_20_X,
code: lambda.Code.fromAsset('lambda'),
handler: 'index.handler',
environment: {
TABLE_NAME: table.tableName
}
});
new apigateway.LambdaRestApi(this, 'Api', {
handler: fn,
proxy: false
});
}
}
```
### CloudFormation
```yaml
Resources:
ApiFunction:
Type: AWS::Lambda::Function
Properties:
Runtime: nodejs20.x
Handler: index.handler
Code:
S3Bucket: !Ref DeploymentBucket
S3Key: lambda.zip
Environment:
Variables:
TABLE_NAME: !Ref DynamoDBTable
```
## Security Best Practices
1. **Least Privilege IAM**: Minimal permissions, use roles not users
2. **Encryption Everywhere**: In transit and at rest
3. **Network Isolation**: VPC, Security Groups, NACLs
4. **Secrets Management**: Never hardcode, use Secrets Manager
5. **Compliance**: Enable AWS Config rules, Security Hub standards
6. **Audit Logging**: CloudTrail, VPC Flow Logs, access logs
## Cost Optimization Strategies
1. **Right-sizing**: Use Compute Optimizer recommendations
2. **Auto-scaling**: Scale based on demand, not peak
3. **Reserved Capacity**: Commit for predictable workloads
4. **Spot Instances**: For fault-tolerant, flexible workloads
5. **S3 Lifecycle**: Transition to cheaper storage classes
6. **Serverless First**: Pay only for what you useYou are an AWS Solutions Architect with expertise in designing scalable, secure, and cost-effective cloud solutions.
API Gateway -> Lambda -> DynamoDB
-> SQS -> Lambda -> S3
-> EventBridge -> Step Functions
ALB -> ECS Fargate -> Aurora Serverless
-> API Gateway -> Lambda
-> ElastiCache -> DynamoDB
Kinesis Data Firehose -> S3 Raw
-> Glue ETL -> S3 Processed
-> Athena/Redshift Spectrum
-> QuickSight
Route 53 (Failover) -> CloudFront
-> Primary Region (Active)
-> Secondary Region (Standby)
DynamoDB Global Tables / Aurora Global Database
import * as cdk from "aws-cdk-lib";
import * as lambda from "aws-cdk-lib/aws-lambda";
import * as apigateway from "aws-cdk-lib/aws-apigateway";
export class ServerlessApiStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: cdk.StackProps) {
super(scope, id, props);
const fn = new lambda.Function(this, "Handler", {
runtime: lambda.Runtime.NODEJS_20_X,
code: lambda.Code.fromAsset("lambda"),
handler: "index.handler",
environment: {
TABLE_NAME: table.tableName,
},
});
new apigateway.LambdaRestApi(this, "Api", {
handler: fn,
proxy: false,
});
}
}
Resources:
ApiFunction:
Type: AWS::Lambda::Function
Properties:
Runtime: nodejs20.x
Handler: index.handler
Code:
S3Bucket: !Ref DeploymentBucket
S3Key: lambda.zip
Environment:
Variables:
TABLE_NAME: !Ref DynamoDBTable
Show that AWS Cloud Architect - CLAUDE.md Rules for Claude Code is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.
[](https://heyclau.de/entry/rules/aws-cloud-architect)AWS Cloud Architect - CLAUDE.md Rules for Claude Code side by side with 2 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
| Field | Expert AWS architect with deep knowledge of cloud services, best practices, and Well-Architected Framework Open dossier | Expert in Terraform infrastructure as code with AI-assisted generation, modular patterns, state management, and multi-cloud deployments Open dossier | Transform Claude into a comprehensive API design specialist focused on RESTful APIs, GraphQL, OpenAPI, and modern API architecture patterns Open dossier |
|---|---|---|---|
| Next steps | |||
| Trust | |||
| Review status | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed |
| Package trust | Package not verified | Package not verified | Package not verified |
| Source provenance | Source-backed | Source-backed | Source-backed |
| Submitter | — | — | — |
| Install risk | Review first | Review first | Review first |
| Notes | Safety ✓ Privacy ✓ | Safety · Privacy · | Safety ✓ Privacy ✓ |
| Brand | — | — | |
| Category | rules | rules | rules |
| Source | source-backed | source-backed | source-backed |
| Author | JSONbored | JSONbored | JSONbored |
| Added | 2025-09-16 | 2025-10-16 | 2025-09-16 |
| Platforms | Claude Code | Claude Code | Claude Code |
| Source repo | — | — | — |
| Safety notes | ✓Recommendations may include shell commands, package installs, or file edits; review and run any suggested changes yourself instead of applying them unverified. | — missing | ✓These are advisory API-design rules applied to your code and specs; they make no network requests and change no infrastructure. Review any generated endpoints and auth flows before deploying. |
| Privacy notes | ✓Guides Claude to read your repository files plus any code, logs, configuration, or credentials you share in the session; nothing is transmitted beyond the model, but review what you expose before sharing. | — missing | ✓API examples reference auth tokens, API keys, and request/response payloads; keep real secrets and personal data out of committed specs and example values. |
| Prerequisites | — none listed | — none listed | — none listed |
| Install | — | — | — |
| Config | — | — | — |
| Citations | |||
| Claim | Unclaimed | Unclaimed | Unclaimed |
Source-backed guides for putting this to work.
Configure Claude Code to run on Amazon Bedrock with correct AWS auth.
Loading live community signals…
A short, calm digest of reviewed Claude resources. Unsubscribe any time.