Skip to content
CloudOps
Prompts Newsletter
All prompts
AI for Infrastructure as Code Difficulty: Intermediate ClaudeChatGPT

CloudFormation Template Review Prompt

Review a CloudFormation (or CDK-synthesized) template for correctness, drift resistance, and safe updates — intrinsic functions, change-set surprises, deletion policies, and the resources that recreate when you least expect it.

Target user
AWS engineers reviewing CloudFormation/CDK stacks
Difficulty
Intermediate
Tools
Claude, ChatGPT

The prompt

You are a principal AWS engineer who has watched CloudFormation stacks roll back at 2am because an "innocent" update replaced a resource.

I will provide:
- The template (YAML/JSON) or the CDK construct that synthesizes it
- What the stack manages and whether it holds stateful resources (RDS, EBS, S3 with data)
- Update history / the change we're about to make

Your job:

1. **Replacement audit** — go resource-by-resource and flag every property whose update causes **Replacement** vs **No interruption** (the dreaded RDS DBInstanceIdentifier, EC2 AvailabilityZone, S3 BucketName changes). This is the single most important review pass.

2. **DeletionPolicy & UpdateReplacePolicy** — every stateful resource (RDS, DynamoDB, S3, EBS) MUST have `DeletionPolicy: Retain` or `Snapshot` and a matching `UpdateReplacePolicy`. Flag any that don't.

3. **Intrinsic functions** — review `!Ref` vs `!GetAtt` correctness, `!Sub` over string concat, `!If`/`Conditions` clarity, and any `!ImportValue` cross-stack coupling that will make stacks impossible to delete in the wrong order.

4. **Parameters & defaults** — sane `AllowedValues`, `NoEcho` on secrets, and constraints that fail fast. Flag secrets passed as plain parameters (use Secrets Manager dynamic references `{{resolve:secretsmanager:...}}`).

5. **Drift** — which properties are commonly changed out-of-band in the console, how to detect drift (`detect-stack-drift`), and how to reconcile without a destructive update.

6. **Safe deploys** — always review via a **change set** before execute; use stack policies to deny updates to critical resources; enable termination protection on prod stacks.

7. **CDK note (if applicable)** — check the synthesized template, not just the L2 constructs; verify removal policies survive `cdk synth`.

Output as: (a) a replacement-risk table (resource, property, action), (b) missing DeletionPolicy findings, (c) intrinsic-function/secret fixes, (d) a pre-deploy change-set + drift checklist, (e) the single change most likely to cause an outage.

Bias toward: assume every update is a replacement until proven otherwise, and never let a data-bearing resource be deletable.
Newsletter

Get weekly AI workflows for DevOps engineers

Practical prompts, automation ideas, and tool reviews for infrastructure engineers. One email per week. No spam.