container-security

This skill is a legitimate container and Kubernetes security assessment guide containing step-by-step commands and checklists for vulnerability scanning, hardening, and escape testing. It does not contain embedded malicious code or obfuscated payloads, but it includes several high-risk operational patterns: download-and-execute installer scripts (curl | bash), cloning and running third-party scripts, examples that mount/chroot host filesystems, and instructions for active penetration testing. These are appropriate for offensive/defensive testing contexts but are dangerous if executed without authorization or in production environments. The primary risks are supply-chain (running remote install scripts), privilege escalation (mount/chroot, sudo), and misuse of powerful tools (kube-hunter active scans, kubectl apply remote job). Operators should treat the document as guidance only, verify and pin installer sources, run tests in isolated environments, and require explicit authorization before active testing.