Implements the security trifecta for Kubernetes clusters: NetworkPolicies for network segmentation, RBAC for least-privilege access, and Pod Security Standards for container restrictions. Generates manifests for default-deny network policies, service account bindings, and OPA Gatekeeper constraints. Also covers Istio service mesh security with mTLS and authorization policies. Use this when you need to lock down a cluster for production, meet compliance requirements like CIS benchmarks, or implement multi-tenant security. The examples are comprehensive but you'll need to adapt the specific rules to your application architecture and security requirements.
npx skills add https://github.com/wshobson/agents --skill k8s-security-policies