By wshobson
Guides implementation of Kubernetes security policies including NetworkPolicy, PodSecurity, and RBAC for production-grade cluster security, network isolation, and pod security enforcement.
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
npx claudepluginhub p/wshobson-wshobson-k8s-security-policies-plugins-kubernetes-operations-skills-k8s-security-policiesDependency auditing, version management, and security vulnerability scanning
SAST analysis, dependency vulnerability scanning, OWASP Top 10 compliance, container security scanning, and automated security hardening
Database architecture, schema design, and SQL optimization for production systems
Comprehensive C4 architecture documentation workflow with bottom-up code analysis, component synthesis, container mapping, and context diagram generation
ML model training pipelines, hyperparameter tuning, model deployment automation, experiment tracking, and MLOps workflows
Kubernetes manifest generation, networking configuration, security policies, observability setup, GitOps workflows, and auto-scaling
Manage Kubernetes network policies and firewall rules
Kubernetes manifest validation and best practices
Generate Kubernetes manifests and debug pod issues with kubectl
Practical guidance for platform engineers across Claude, Codex, Cursor, and Copilot: Kubernetes (baseline, RBAC, workload hardening, debug), GitHub Actions (design, security, review, debug), Azure (Workload Identity, tagging, AKS, RBAC), OpenShift (SCC, Routes, GitOps, upgrades), Secrets (ESO, Sealed Secrets, rotation, audit), Kyverno, Helm, Terraform, Flux CD (Flux Operator, FluxInstance, OCI delivery), Argo CD, AWS (CloudFront, WAF, Lambda@Edge, IAM, IRSA), Linkerd, Linux, networking, MCP development, observability, SOC 2 compliance, PR review, PR triage, KEDA, Karpenter, supply chain security (Cosign, SBOM, SLSA), Falco runtime security, Chaos Engineering, DORA Metrics, LLM Observability (Datadog LLMObs), and animated docs. Every answer includes blast radius, validation steps, and rollback plan.
Cloud and infrastructure security including cloud posture assessment, network segmentation, container security, Kubernetes hardening, IAM policy design, and zero-trust architecture.