The migration output MUST meet all of the following:
Works with
AI-first code editor with Composer
Before installing skills in Cursor, ensure your development environment meets these requirements:
node --versionpulumi-cdk-to-pulumiExecute the skills CLI command in your project's root directory to begin installation:
Fetches pulumi-cdk-to-pulumi from pulumi/agent-skills and configures it for Cursor.
The CLI shows a list of agents. Use arrow keys and space to select Cursor:
Confirm successful installation by checking the skill directory location:
Restart Cursor to activate pulumi-cdk-to-pulumi. Access via /pulumi-cdk-to-pulumi in your agent's command palette.
We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.
Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.
Submit your Claude Code skill and start earning
Create detailed user stories, acceptance criteria, and feature specs
Example
Generate user stories for 'password reset feature' with acceptance criteria, edge cases, and test scenarios
Reduce spec writing time by 50%, ensure comprehensive coverage
Research competitors, compare features, identify gaps
Example
Analyze 5 competitor products, create feature comparison matrix, suggest differentiation opportunities
Complete competitive research in 2 hours instead of 2 days
Evaluate features using frameworks (RICE, ICE, Kano) and create prioritized backlogs
Example
Score 20 feature ideas using RICE framework, generate prioritized roadmap with rationale
0
total installs
0
this week
34
GitHub stars
0
upvotes
Run in your terminal
0
installs
0
this week
34
stars
The migration output MUST meet all of the following:
Complete Resource Coverage
Successful Deployment
pulumi up (assuming proper config).Final Migration Report
If a user-provided CDK project is incomplete, ambiguous, or missing artifacts (such as cdk.out), ask targeted questions before generating Pulumi code.
Follow this workflow exactly and in this order:
Running AWS commands (e.g., aws cloudformation list-stack-resources) and CDK commands (e.g. cdk synth) requires credentials loaded via Pulumi ESC.
You MUST confirm the AWS region with the user. The cdk synth results may be incorrect if ran with the wrong AWS Region.
Run/inspect:
npx cdk synth --quiet
synth with --quiet to prevent the template from being output on stdout.If failing, inspect cdk.json or package.json for custom synth behavior.
Read cdk.out/manifest.json:
jq '.artifacts | to_entries | map(select(.value.type == "aws:cloudformation:stack") | {displayName: .key, environment: .value.environment}) | .[]' cdk.out/manifest.json
Example output:
{
"displayName": "DataStack-dev",
"environment": "aws://616138583583/us-east-2"
}
{
"displayName": "AppStack-dev",
"environment": "aws://616138583583/us-east-2"
}
In the Pulumi stack you create you MUST set both the aws:region and aws-native:region config variables. For example:
pulumi config set aws-native:region us-east-2 --stack dev
pulumi config set aws:region us-east-2 --stack dev
For each stack:
aws cloudformation list-stack-resources \
--region <region> \
--stack-name <stack> \
--output json
Extract:
cdk2pulumi tool. Follow cdk-convert.md to perform the conversion.CDK uses Lambda-backed Custom Resources for functionality not available in CloudFormation. In synthesized CloudFormation, these appear as:
AWS::CloudFormation::CustomResource or Custom::<name>aws:cdk:path with the handler name (e.g., aws-s3/auto-delete-objects-handler)Default behavior: cdk2pulumi rewrites custom resources to aws-native:cloudformation:CustomResourceEmulator, which invokes the original Lambda. This works but has tradeoffs (Lambda dependency, cold starts, eventual consistency).
Migration strategies by handler type:
| Handler | Strategy |
|---|---|
aws-certificatemanager/dns-validated-certificate-handler |
Replace with aws.acm.Certificate, aws.route53.Record, and aws.acm.CertificateValidation |
aws-ec2/restrict-default-security-group-handler |
Replace with aws.ec2.DefaultSecurityGroup resource with empty ingress/egress rules |
aws-ecr/auto-delete-images-handler |
Replace aws-native:ecr:Repository with aws.ecr.Repository with forceDelete: true |
aws-s3/auto-delete-objects-handler |
Replace aws-native:s3:Bucket with aws.s3.Bucket with forceDestroy: true |
aws-s3/notifications-resource-handler |
Replace with aws.s3.BucketNotification |
aws-logs/log-retention-handler |
Replace with aws.cloudwatch.LogGroup with explicit retentionInDays |
aws-iam/oidc-handler |
Replace with aws.iam.OpenIdConnectProvider |
aws-route53/delete-existing-record-set-handler |
Replace with aws.route53.Record with allowOverwrite: true |
aws-dynamodb/replica-handler |
Replace with aws.dynamodb.TableReplica |
Cross-account/region handlers:
aws-cloudfront/edge-function → Use aws.lambda.Function with region: "us-east-1"aws-route53/cross-account-zone-delegation-handler → Use separate aws provider with cross-account role assumptionGraceful degradation for unknown handlers:
CustomResourceEmulator (default behavior)aws-native whenever the resource type is available.aws when aws-native does not support equivalent features.CDK uses Assets and Bundling to handle deployment artifacts. These are processed by the CDK CLI before CloudFormation deployment and appear in the cdk.out directory alongside *.assets.json metadata files. CloudFormation templates contain hard-coded references to asset locations (S3 bucket/key or ECR repo/tag).
# Inspect asset definitions
jq '.files, .dockerImages' cdk.out/*.assets.json
Migration strategies by asset type:
| Asset Type | Detection | Pulumi Migration |
|---|---|---|
| Docker Image | dockerImages in assets.json |
Use docker-build.Image to build and push. Replace hard-coded ECR URI with image output. |
| File with build command | files with executable field |
Flag to user - build command needs setup in Pulumi |
| Static file | files without executable, no bundling in CDK source |
Use pulumi.FileArchive or pulumi.FileAsset |
| Bundled file | files without executable, but CDK source uses bundling |
Flag to user - bundling needs setup in Pulumi |
Detecting Bundling in CDK Source:
Check the CDK source code for bundling constructs (NodejsFunction, PythonFunction, GoFunction, or resources using the bundling option). If bundling is used, the build step needs to be replicated in Pulumi for ongoing development - otherwise source changes would require manually re-running cdk synth.
When bundling is detected, inform the user:
Build Step Detected: This CDK application uses <BUNDLING_TYPE> which builds deployable artifacts during synthesis. This build step needs to be replicated in Pulumi for ongoing development.
Options:
- CI/CD Pipeline (Recommended): Move the build step to your CI pipeline and reference the pre-built artifact in Pulumi
- Pulumi Command Provider: Use
command.local.Commandto run the build command duringpulumi up- Pre-build Script: Create a build script that runs before
pulumi upand outputs to a known locationEach option has tradeoffs around caching, reproducibility, and deployment speed. For production workloads, option 1 is typically preferred.
aws-native outputs often include undefined. Avoid ! non-null assertions. Always safely unwrap with .apply():
// ❌ WRONG - Will cause TypeScript errors
functionName: lambdaFunction.functionName!,
// ✅ CORRECT - Handle undefined safely
functionName: lambdaFunction.functionName.apply(name => name || ""),
Carry forward all conditional behaviors:
if (currentEnv.createVpc) {
// create resources
} else {
const vpcId = pulumi.output(currentEnv.vpcId);
}
After conversion you can optionally import the existing resources to now be managed by Pulumi. If the user does not request this you should suggest this as a follow up step to conversion.
cdk-importer tool. Follow cdk-importer.md to perform the automated import.If you need to manually import resources:
Follow cloudformation-id-lookup.md to look up CloudFormation import identifiers.
Use the web-fetch tool to get content from the official Pulumi documentation.
Finding AWS import IDs -> https://www.pulumi.com/docs/iac/guides/migration/aws-import-ids/
Manual migration approaches -> https://www.pulumi.com/docs/iac/guides/migration/migrating-to-pulumi/migrating-from-cdk/migrating-existing-cdk-app/#approach-b-manual-migration
After performing an import you need to run pulumi preview to ensure there are no changes. No changes means:
If there are changes you must investigate and update the program until there are no changes.
If the user asks for help planning or performing a CDK to Pulumi migration use the information above to guide the user towards the automated migration approach.
When the user wants to deviate from the recommended path detailed above, use the web-fetch tool to get content from the official Pulumi documentation -> https://www.pulumi.com/docs/iac/guides/migration/migrating-to-pulumi/migrating-from-cdk/migrating-existing-cdk-app
This documentation covers topics:
When performing a migration, always produce:
CustomResourceEmulator with rationaledocker-build.Image, static files → pulumi.FileArchive)Keep code syntactically valid and clearly separated by files.
Make data-driven prioritization decisions faster
Draft PRDs, status updates, and stakeholder presentations
Example
Create executive summary of Q3 roadmap, monthly progress report, feature launch announcement
Save 3-5 hours/week on communication overhead
Prerequisites
Time Estimate
30-60 minutes to see productivity improvements
Steps
Common Pitfalls
✓ Do
✗ Don't
💡 Pro Tips
✓ Use when
Use for user story writing, competitive research, roadmap prioritization, stakeholder communication, and PRD drafting. Best for reducing repetitive documentation and research work.
✗ Avoid when
Avoid for strategic product vision (requires deep customer empathy), pricing decisions (needs market and financial expertise), or when face-to-face customer discovery is more valuable than speed.
mattpocock/skills
parcadei/continuous-claude-v3
cursor/plugins
ailabs-393/ai-labs-claude-skills
pproenca/dot-skills
mattpocock/skills
I recommend pulumi-cdk-to-pulumi for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
Solid pick for teams standardizing on skills: pulumi-cdk-to-pulumi is focused, and the summary matches what you get after install.
Registry listing for pulumi-cdk-to-pulumi matched our evaluation — installs cleanly and behaves as described in the markdown.
pulumi-cdk-to-pulumi fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
pulumi-cdk-to-pulumi has been reliable in day-to-day use. Documentation quality is above average for community skills.
pulumi-cdk-to-pulumi is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Useful defaults in pulumi-cdk-to-pulumi — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
pulumi-cdk-to-pulumi fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
pulumi-cdk-to-pulumi is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Keeps context tight: pulumi-cdk-to-pulumi is the kind of skill you can hand to a new teammate without a long onboarding doc.
showing 1-10 of 28