secure-by-design-pattern-library

Description

Secure-by-design architecture patterns for Kubernetes. Zero trust, defense in depth, least privilege, and fail-secure patterns with implementation examples and threat models.

AI Summary

Provides secure-by-design Kubernetes patterns (zero trust, defense in depth, least privilege, fail-secure) with implementation examples and threat models. Use when building secure architectures from the ground up.

Install

Add the repository(one-time)

/plugin marketplace add adaptive-enforcement-lab/claude-skills

Install the plugin

/plugin install patterns@ael-skills

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Skill Content

Secure-by-Design Pattern Library

When to Use This Skill

Building security into architecture from the ground up, not bolting it on afterward. These patterns enforce security properties at the application, network, and admission control layers, making violations visible and costly.

Implementation

See the full implementation guide in the source documentation.

Techniques

Integration Patterns

End-to-End Deployment

Complete example combining all patterns:

Zero trust mTLS communication
Defense in depth pod hardening
Least privilege RBAC configuration
Fail secure admission controls

Security Audit Checklist

Verification checklist before deployment:

Zero Trust: mTLS policies in place
Defense in Depth: Pod security contexts enforced
Network Policies: Default-deny rules configured
Least Privilege: Minimal RBAC permissions
Fail Secure: Admission webhooks with failurePolicy: Fail

References

Links

GitHub Stats

0 forks

Updated 3 days ago

Similar Skills

claude-opus-4-5-migration

2 files

Migrate prompts and code from Claude Sonnet 4.0, Sonnet 4.5, or Opus 4.1 to Opus 4.5. Use when the user wants to update their codebase, prompts, or API calls to use Opus 4.5. Handles model string updates and prompt adjustments for known Opus 4.5 behavioral differences. Does NOT migrate Haiku 4.5.

claude-opus-4-5-migration

53.4k

Writing Hookify Rules

This skill should be used when the user asks to "create a hookify rule", "write a hook rule", "configure hookify", "add a hookify rule", or needs guidance on hookify rule syntax and patterns.

hookify

53.4k

frontend-design

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

frontend-design

53.4k