The Agent Skills Directory

[SAFE]: The skill's primary purpose is to enhance Kubernetes security through auditing and monitoring. All provided scripts and configuration templates align with this stated goal.\n- [COMMAND_EXECUTION]: The Python scripts scripts/agent.py and scripts/process.py use subprocess.run to execute kubectl commands. These calls use argument lists rather than shell strings, which is a security best practice that prevents command injection.\n- [DATA_EXPOSURE]: The audit scripts read pod metadata and security contexts from the cluster. This data is processed locally and printed to the standard output. There is no evidence of sensitive data like secrets or service account tokens being exfiltrated or stored insecurely.\n- [EXTERNAL_DOWNLOADS]: The skill does not define any external dependencies in standard package files and does not contain any code for downloading or executing remote scripts.

detecting-privilege-escalation-in-kubernetes-pods