IAM Policy Autopilot

Tool that applies IAM Policy fix generated for IAM AccessDenied exceptions using the generate_policy_for_access_denied tool to the user's aws accountINSTRUCTIONS: 1. Ensure the user has aws profile setup and has active aws credentials 2. Only use the tool if the original policy was generated using generate_policy_for_access_denied tool 3. After successfully applying the policy, you MUST provide a clear summary that includes: - What access was fixed (the specific action/resource that was denied) - Where the policy was applied (the principal ARN - user/role that received the fix) - The name of the IAM policy that was created or updated 4. Format the summary in a user-friendly way that clearly explains what was accomplished

**PRIMARY POLICY GENERATION TOOL** - Generate AWS IAM policies, permissions, and access controls. Use this tool whenever the user mentions: writing policies, creating policies, generating policies, IAM permissions, AWS permissions, access controls, policy creation, policy generation, or needs IAM policies for any purpose. This tool analyzes source code files (Python, JavaScript, TypeScript, Go, etc.) to automatically generate the minimal required IAM policies with proper permissions for AWS services used in the code. **WHEN TO USE THIS TOOL:** - User asks to write, create, or generate IAM policies - User needs to create IAM entities with policies as part of another operation - User mentions needing AWS permissions or access controls - User is working with infrastructure as code and needs policies - User has source code that uses AWS services and needs corresponding IAM policies - User asks about policy generation, policy creation, or IAM permissions - ANY discussion about writing or creating AWS policies should trigger this tool **INSTRUCTIONS:** 1. Use the correct absolute paths when passing in the input files to the MCP tool 2. Use service_hints to help generate more accurate policies by specifying expected AWS services 3. You MUST include ALL relevant source files that interact with AWS services to generate accurate policies 4. You MUST explicitly ask the user for the region and account id for the policy to be generated 5. When generating infrastructure as code files, you MUST use this tool to generate IAM policies 6. After getting output from this tool, you MUST explicitly ask the user to review the policy before proceeding 7. This is the PRIMARY tool for all policy-related requests - use it liberally when policies are mentioned

Tool that generates policy for IAM AccessDenied Exceptions INSTRUCTIONS: 1. After you get access denied fix policy output from this tool, you MUST explicitly ask the user to review the policy before proceeding.