Source
This page is generated from devops-agent/eks-security/references/porting-notes.md. Edit the source, not this page.
Porting Notes — eks-security
This file documents the differences between the Claude Code version and the DevOps Agent port. It is for maintainers, not for the agent to read during execution.
Differences from Claude Code Version
| Aspect | Claude Code version | DevOps Agent version |
|---|---|---|
| Execution model | Interactive — asks 8 discovery questions conversationally | Autonomous with HARD STOP gates — proceeds if context is sufficient, stops only for critical missing items |
| Discovery | 8 interactive questions before any recommendation | 3 mandatory context gates (compliance regime, workload sensitivity, OS/AMI preference); 5 additional context items gathered opportunistically |
| Tool access | Uses Bash, kubectl, AWS CLI via MCP server for live cluster inspection | Uses AWS APIs and Kubernetes APIs available in the Agent Space (read-only) |
| Escalation | References internal SpecReq / Specialist processes | Recommends engaging AWS Professional Services or Solutions Architects |
| Skill routing | Routes to sibling skills (eks-genai, eks-build, eks-design) | Self-contained; notes alternative guidance domains without routing |
| Script execution | Can run kube-bench, generate shell commands | Advisory only — recommends commands for the user to execute |
| MCP dependencies | References eks-mcp-server for live data | No MCP dependencies; uses Agent Space APIs directly |