auditing-gcp-iam-permissions
CommunityAuditing GCP IAM permissions for least privilege.
AuthorAxxxxxxaaann
Version1.0.0
Installs0
System Documentation
What problem does it solve?
GCP IAM configurations often contain overly permissive bindings, primitive roles, and unmanaged service account keys that lead to security risks and potential lateral movement. This skill helps security engineers systematically discover, analyze, and remediate IAM access issues at scale.
Core Features & Use Cases
- Enumerates IAM bindings across organizations and projects to reveal who has access to what.
- Flags primitive roles (Owner, Editor, Viewer) and broadly-shared bindings for remediation planning.
- Audits service accounts and user-managed keys to identify risky assets and key sprawl.
- Leverages Policy Analyzer and IAM Recommender outputs to guide least-privilege hardening.
Quick Start
Run the agent to scan your organization and generate a JSON report of IAM bindings and service accounts.
Dependency Matrix
Required Modules
google-cloud-assetgoogle-cloud-resource-managergoogle-cloud-iam
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: auditing-gcp-iam-permissions Download link: https://github.com/Axxxxxxaaann/KAIRI-Skills/archive/main.zip#auditing-gcp-iam-permissions Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.