adk-infra-expert

# Adk Infra Expert

## Overview

Provision production-grade Vertex AI ADK infrastructure with Terraform: secure networking, least-privilege IAM, Agent Engine runtime, Code Execution sandbox defaults, and Memory Bank configuration. Use this skill to generate/validate Terraform modules and a deployment checklist that matches enterprise security constraints (including VPC Service Controls when required).

## Prerequisites

Before using this skill, ensure:
- Google Cloud project with billing enabled
- Terraform 1.0+ installed
- gcloud CLI authenticated with appropriate permissions
- Vertex AI API enabled in target project
- VPC Service Controls access policy created (for enterprise)
- Understanding of Agent Engine architecture and requirements

## Instructions

1. **Initialize Terraform**: Set up backend for remote state storage
2. **Configure Variables**: Define project_id, region, agent configuration
3. **Provision VPC**: Create network infrastructure with Private Service Connect
4. **Set Up IAM**: Create service accounts with least privilege roles
5. **Deploy Agent Engine**: Configure runtime with code execution and memory bank
6. **Enable VPC-SC**: Apply service perimeter for data exfiltration protection
7. **Configure Monitoring**: Set up Cloud Monitoring dashboards and alerts
8. **Validate Deployment**: Test agent endpoint and verify all components

## Output



## Error Handling

See `{baseDir}/references/errors.md` for comprehensive error handling.

## Examples

See `{baseDir}/references/examples.md` for detailed examples.

## Resources

- Agent Engine: https://cloud.google.com/vertex-ai/generative-ai/docs/agent-engine/overview
- VPC-SC: https://cloud.google.com/vpc-service-controls/docs
- Terraform Google Provider: https://registry.terraform.io/providers/hashicorp/google/latest
- ADK Terraform examples in {baseDir}/examples/