kube-audit-kit
CommunityRead-only Kubernetes security audits, end-to-end.
Authorcrazygit
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides a safe, read-only workflow to audit Kubernetes resources across contexts and namespaces, producing comprehensive security reports without impacting cluster state.
Core Features & Use Cases
- Read-only Export: gathers all namespaced resources using kubectl get/list without modifying cluster state.
- Automated Sanitization & Grouping: strips sensitive metadata, groups resources by workload topology, and links resources to applications.
- Comprehensive Security Audits: runs script-based checks aligned to Pod Security Standards, NSA guidance, and CIS benchmarks, plus AI deep analysis for risk discovery.
- Use Case: A security team audits prod and dev clusters to identify misconfigurations and policy gaps, generating a detailed audit report for compliance.
Quick Start
Set up the environment (uv sync), then run the four-step workflow: export, sanitize, group, and audit. The Agent will output results to a user-owned output directory (KUBE_AUDIT_OUTPUT) and generate an audit_report.md.
Dependency Matrix
Required Modules
pyyamlrich
Components
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: kube-audit-kit Download link: https://github.com/crazygit/kube-audit-kit/archive/main.zip#kube-audit-kit Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.