
from cybersecurity-skills-zh18
Implement Pod-level network segmentation in Kubernetes to enforce least-privilege communication and prevent lateral movement.
This skill provides a comprehensive framework for securing Kubernetes clusters using NetworkPolicies. It focuses on implementing zero-trust networking by controlling Ingress and Egress traffic at the Pod level, effectively reducing the blast radius of potential breaches.
Use this skill when hardening a Kubernetes cluster, setting up network segmentation between different application tiers (e.g., frontend, backend, database), or restricting access to sensitive cloud metadata endpoints.
Any agent capable of managing Kubernetes clusters via kubectl and modifying YAML configurations (e.g., Claude Code, OpenClaw, Codex).
This skill has not been reviewed by our automated audit pipeline yet.