skills/mukul975/anthropic-cybersecurity-skills/performing-kubernetes-penetration-testing/Gen Agent Trust Hub
performing-kubernetes-penetration-testing
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The provided Python scripts (
scripts/agent.pyandscripts/process.py) executekubectlcommands via thesubprocessmodule to gather cluster data, test RBAC permissions, and identify security findings. This is necessary for the skill's auditing and auditing purpose. - [EXTERNAL_DOWNLOADS]: The documentation includes commands to download and install security tools from external sources, specifically the Kubescape installation script and kube-bench manifests. These resources are hosted on the official GitHub repositories of well-known security vendors.
- [REMOTE_CODE_EXECUTION]: The skill provides instructions to run security benchmarks using
kubectl apply -fwith a remote URL pointing to a well-known security vendor's repository. This mechanism is used to deploy a scanning job within the cluster.
Audit Metadata