competition-k8s-control-plane
CommunityTrace Kubernetes control-plane paths end-to-end.
Software Engineering#rbac#kubernetes#sandbox#security-analysis#evidence-packaging#apitrace#workload-drift
Authorxjtu-wang
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill helps security researchers and operators map how Kubernetes API actions translate into workload changes, revealing how permissions and controller logic enable or prevent secret exposure and drift between manifests and live state.
Core Features & Use Cases
- Map the API trust path: capture principal identity, RBAC edges, and admission/mutation steps that lead to a workload or secret.
- Trace mutations to workload state: compare intent vs live objects, trace controller outputs, and identify where drift originates.
- Reduce to decisive path: compress complex chains into the smallest chain from principal to effect, aiding rapid remediation and evidence collection.
- This skill is used when auditing Kubernetes security posture, debugging RBAC issues, or analyzing admission webhook and controller behavior in sandbox environments.
Quick Start
After $ctf-sandbox-orchestrator is active, tell this skill the Kubernetes control-plane path you want traced and let it map RBAC edges to workload effects.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: competition-k8s-control-plane Download link: https://github.com/xjtu-wang/DigAgent/archive/main.zip#competition-k8s-control-plane Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.