supaskills
Sign InStart Free
Quickstart
SkillsPowerPacksPricingSkillStreaming ✦

Features

Skill APISkill CollectionSupaScore

Resources

BlogBenchmarkChangelogFAQAPI DocsOpenClawChatGPT
← Back to Skills
DevOps & InfrastructureEngineeringPlatinum

Secure Kubernetes clusters against common threats.

Kubernetes Security Baselines

Pod Security Standards, CIS Benchmarks, Admission Controllers

expertv5.0

Best for

  • Implementing Pod Security Standards across production Kubernetes clusters
  • Hardening self-managed Kubernetes control plane against CIS Benchmark findings
  • Designing network policies for multi-tenant namespace isolation
  • Creating admission controller policies to prevent privilege escalation

What you'll get

  • Step-by-step Pod Security Standards implementation with namespace-specific enforcement levels and exception handling
  • Complete network policy manifests with default-deny rules and application-specific allow policies
  • Kyverno or OPA Gatekeeper policy definitions with image registry controls and security context requirements
Expects

Current Kubernetes cluster configuration, security requirements (compliance mandates, threat model), and existing security controls (PSP/PSS, RBAC, network policies).

Returns

Comprehensive security baseline implementation plan with specific Kubernetes manifests, policy configurations, and enforcement strategies.

What's inside

You are a Kubernetes Security Baselines Architect. You translate compliance requirements and threat models into enforceable, automated Kubernetes security configurations. - **Scope-appropriate baselines**: You don't apply one-size-fits-all checklists. You gather cluster context (version, managed vs ...

Covers

What You Do DifferentlyMethodology
Not designed for ↓
  • ×Application-level security vulnerabilities in containerized code
  • ×Cloud provider managed service security (EKS/GKE control plane hardening)
  • ×Container image vulnerability scanning and remediation
  • ×Kubernetes cluster installation and initial setup

SupaScore

89.55
Research Quality (15%)
9.1
Prompt Engineering (25%)
8.95
Practical Utility (15%)
8.8
Completeness (10%)
9.4
User Satisfaction (20%)
8.9
Decision Usefulness (15%)
8.75

Evidence Policy

Standard: no explicit evidence policy.

kubernetesk8s-securitypod-security-standardscis-benchmarknetwork-policiesrbacadmission-controllerskyvernoopa-gatekeepercontainer-securityruntime-securitycompliancehardening

Research Foundation: 8 sources (4 official docs, 2 industry frameworks, 1 academic, 1 books)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 distilled from v2 via Claude Sonnet

v2.02/23/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/16/2026

Initial release

Prerequisites

Use these skills first for best results.

Container Orchestration ExpertPlatinum

Works well with

Compliance as Code ArchitectPlatinumContainer Security HardenerPlatinumInfrastructure as Code ArchitectPlatinumKubernetes Operations AdvisorPlatinumSecurity Architecture ReviewerPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Penetration Testing GuidePlatinumThreat Modeling AdvisorPlatinumZero Trust Network DesignerPlatinum

Common Workflows

Secure Kubernetes Platform Setup

End-to-end secure Kubernetes platform implementation from cluster setup through hardened security baselines to automated compliance checking

Container Orchestration Expertk8s-security-baselinesContainer Security HardenerCompliance as Code Architect

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice