k8s-security-hardening

This SKILL.md is a security guidance document for Kubernetes hardening and does not contain code that executes or exfiltrates data by itself. The primary security concerns are operational: several examples rely on applying remote manifests (download-and-apply), handling of sensitive keys/secrets without explicit secure workflows, and recommending powerful cluster-scoped operations that must be executed with care. There are no suspicious domains, obfuscated payloads, embedded credentials, or credential-harvesting network flows in the text provided. The main supply-chain risk is the typical danger of applying unreviewed remote manifests and relying on external tools; operators should pin URLs, review manifests before applying, store keys securely (use sealed secrets or external secret stores), and ensure human approval for cluster-scoped changes or automation running with high privileges.