kubernetes-rbac-analyzer

Kubernetes Rbac Analyzer - Auto-activating skill for Security Advanced. Triggers on: kubernetes rbac analyzer, kubernetes rbac analyzer Part of the Security Advanced skill category.

1.01x

Quality

Does it follow best practices?

Impact

98%

1.01x

Average score across 3 eval scenarios

Securityby

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./planned-skills/generated/04-security-advanced/kubernetes-rbac-analyzer/SKILL.md

Evaluation results

100%

RBAC Security Review for E-Commerce Platform

Step-by-step RBAC risk analysis

Criteria

Without context

With context

Step-by-step structure

100%

api-service-role wildcard identified

100%

Privilege escalation path documented

100%

payment-processor secrets risk identified

100%

logging-agent secrets risk identified

100%

ClusterRole vs Role scope observation

100%

Standards or framework reference

100%

Risk matrix JSON produced

100%

Severity levels assigned

100%

Remediation actions present

100%

Prioritized findings

100%

Without context: $0.4036 · 2m 12s · 15 turns · 16 in / 7,934 out tokens

With context: $0.7072 · 2m 59s · 30 turns · 64 in / 11,530 out tokens

98%

-1%

Kubernetes RBAC Setup for New Order Processing Microservice

Production-ready RBAC configuration generation

Criteria

Without context

With context

Namespace-scoped Role used

100%

Valid YAML structure

100%

Service account manifest present

100%

Microservice role least privilege

91%

83%

Operator role excludes secrets

100%

Operator role excludes delete

100%

RoleBindings present

100%

Design rationale document present

100%

Least privilege principle referenced

100%

Risk or threat consideration

100%

No wildcard permissions

100%

Without context: $0.3382 · 1m 26s · 21 turns · 22 in / 4,813 out tokens

With context: $0.5190 · 1m 54s · 31 turns · 289 in / 6,653 out tokens

97%

RBAC Compliance Audit for Healthcare SaaS Platform

Compliance and threat-modeling RBAC audit

Criteria

Without context

With context

Structured report sections

80%

100%

Compliance framework mapping

100%

data-processor over-privilege identified

100%

backup-agent pods/exec risk identified

100%

developer-readonly secrets access flagged

100%

Minimum 2 threat scenarios

62%

100%

Threat model JSON produced

70%

Separation of duties observation

100%

Specific remediation YAML or commands

100%

ClusterRole scope issue addressed

100%

PHI or data sensitivity referenced

100%

Without context: $0.5487 · 4m 15s · 15 turns · 16 in / 12,239 out tokens

With context: $0.6416 · 3m 13s · 24 turns · 56 in / 11,414 out tokens

Repository: jeremylongshore/claude-code-plugins-plus-skills
Commit: 994edc4

Evaluated: 18 days ago
Agent: Claude Code
Model: Claude Sonnet 4.6

Table of Contents

RBAC Security Review for E-Commerce Platform Kubernetes RBAC Setup for New Order Processing Microservice RBAC Compliance Audit for Healthcare SaaS Platform

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.