← 返回 Skills 市场

Finops Report

Name: Finops Report
Author: anmolnagpal

作者 Anmol Nagpal · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

337

总下载

当前安装

版本数

在 OpenClaw 中安装

/install finops-report

功能描述

Generate executive-ready monthly AWS FinOps reports with team-level chargeback and savings opportunities

使用说明 (SKILL.md)

AWS FinOps Monthly Report Generator

You are a senior AWS FinOps analyst. Generate a complete monthly cost report from billing data.

Steps

Parse total spend, MoM delta, and per-account/team breakdown
Identify top 5 savings opportunities with estimated $ impact
Calculate budget vs actual variance per team/account
Build service-level cost heatmap
Write executive narrative + team-level action items

Output Format

Executive Summary

Total spend, MoM trend (↑↓), % vs budget
3 most important things that happened this month

Cost Breakdown

Per-team/account table: spend, budget, variance, MoM delta
Top 5 services by spend with trend

Savings Opportunities

Ranked table: opportunity, estimated savings/mo, effort (Low/Med/High), owner

Action Items

Per-team bullet points (written for engineers, not finance)

Finance Summary

Formatted for CFO/board: total, forecast, savings realized YTD

Rules

Write two tones: technical (for engineering) and executive (for finance/board)
Always include "savings realized this month vs last month" if historical data available
Flag if any team exceeded budget by > 20%
Align with FinOps FOCUS 1.2 standard terminology

安全使用建议

This skill is missing explicit instructions about where and how to get AWS billing data and it doesn't declare the credentials it needs. Before installing or using it: (1) ask the author to specify the data source (AWS Cost & Usage Report S3 bucket or Cost Explorer API) and required, minimal-scoped credentials (ideally a read-only IAM role or short-lived credentials). (2) Do not provide long-lived root or broad AWS keys; prefer an IAM role with least privilege (Cost Explorer read-only or S3 read access to a CUR export). (3) If you must run it locally, run in a sandbox and inspect any shell commands the agent executes; restrict the agent's ability to read environment variables or ~/.aws credentials if you don't want it to access them. (4) Confirm whether the skill will prompt users for credentials vs. attempt to discover them automatically—automatic discovery of credentials on the host is a significant privacy/security risk. If the author supplies an updated SKILL.md that declares explicit data sources and required read-only credentials, this assessment could be re-evaluated as benign.

功能分析

Type: OpenClaw Skill Name: finops-report Version: 1.0.0 The skill's metadata and instructions are entirely aligned with its stated purpose of generating AWS FinOps reports. While the skill declares `bash` as a tool, which implies shell execution capabilities, there are no instructions within SKILL.md that leverage this capability for malicious purposes, data exfiltration, unauthorized actions, or prompt injection against the agent. All instructions are focused on report generation and formatting.

能力评估

⚠ Purpose & Capability

The skill's stated purpose is to generate AWS FinOps reports from billing data, but the package declares no required credentials, no config paths, and no data-source configuration. A legitimate FinOps report generator would normally require access to AWS Cost & Usage Reports, Cost Explorer API, or an S3 bucket with CUR exports and must declare how those will be supplied.

⚠ Instruction Scope

SKILL.md instructs the agent to parse billing data and historical data but does not specify where to obtain that data or how to authenticate. It also lists tools (claude, bash) that could enable the agent to run shell commands and read local files—this open-ended guidance could lead the agent to search local environment variables, config files, or other system data to find credentials or billing exports.

✓ Install Mechanism

No install spec and no code files are present, so nothing will be written to disk during installation. This is the lowest-risk install mechanism.

⚠ Credentials

No environment variables or credentials are declared even though the task logically requires read-only AWS access to billing data. That omission is disproportionate: either the skill is incomplete, or it implicitly expects the agent to use credentials found elsewhere on the system or to prompt the user for them.

✓ Persistence & Privilege

always is false and there is no indication the skill requests persistent or elevated privileges. Autonomous invocation is allowed (platform default) but is not by itself a red flag; combined with the credential/data-source gaps this increases the potential blast radius.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install finops-report
安装完成后，直接呼叫该 Skill 的名称或使用 /finops-report 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

- Initial release of aws-finops-report skill. - Generates executive-ready monthly AWS FinOps reports with team-level chargeback and savings insights. - Parses total spend, MoM trend, per-account/team breakdown, and service-level cost heatmap. - Identifies top 5 savings opportunities with estimated monthly impact. - Produces budget vs actual variances and highlights teams exceeding budget by 20%+. - Includes executive summary, finance summary, and engineer-focused action items. - Aligns reporting and terminology with FinOps FOCUS 1.2 standards.

元数据

Slug finops-report

版本 1.0.0

许可证 —

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Finops Report 是什么？

Generate executive-ready monthly AWS FinOps reports with team-level chargeback and savings opportunities. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 337 次。

如何安装 Finops Report？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install finops-report」即可一键安装，无需额外配置。

Finops Report 是免费的吗？

是的，Finops Report 完全免费（开源免费），可自由下载、安装和使用。

Finops Report 支持哪些平台？

Finops Report 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Finops Report？

由 Anmol Nagpal（@anmolnagpal）开发并维护，当前版本 v1.0.0。