runtime-security | secure | ClaudePluginHub

Skill

Community

runtime-security

0

Description

Pod Security Standards and admission controllers for GKE. Runtime monitoring with Falco and behavioral analysis to detect anomalous workload activity.

AI Summary

Enforce GKE runtime security using Pod Security Standards and admission controllers. Use Falco for behavioral monitoring to detect anomalous workload activity during deployment and runtime.

Install

1

Add the repository(one-time)

$

/plugin marketplace add adaptive-enforcement-lab/claude-skills

2

Install the plugin

$

/plugin install secure@ael-skills

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Skill Content

Runtime Security

When to Use This Skill

This section covers runtime security for GKE clusters:

Pod Security Standards: Namespace-level security policies (baseline, restricted)
Admission Controllers: Pre-deployment validation and policy enforcement
Runtime Monitoring: Behavioral detection with Falco or GKE Cloud Logging

Prerequisites

GCP project with billing enabled
Terraform 1.0+
kubectl configured for cluster access

Implementation

Cluster Configuration - Private GKE, Workload Identity
Network Security - VPC networking, Network Policies
IAM Configuration - Least-privilege IAM

Key Principles

Defense in Depth

Multiple layers of runtime security controls:

Pod Security Standards enforce secure defaults
Admission controllers block invalid configurations
Runtime monitoring detects anomalous behavior
Audit logging captures all activity

Secure by Default

Production workloads must meet strict security requirements:

Run as non-root user
Read-only root filesystem
Drop all Linux capabilities
No privilege escalation
Resource limits defined

Continuous Monitoring

Runtime monitoring provides visibility into pod behavior:

Process execution tracking
File access monitoring
Network connection detection
System call auditing

Related Patterns

Cluster Configuration
Network Security
IAM Configuration

References

Links

GitHub Stats

0 forks

Updated 3 days ago

Similar Skills

auth-implementation-patterns

Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.

developer-essentials

24.7k

bazel-build-optimization

Optimize Bazel builds for large-scale monorepos. Use when configuring Bazel, implementing remote execution, or optimizing build performance for enterprise codebases.

developer-essentials

24.7k

code-review-excellence

Master effective code review practices to provide constructive feedback, catch bugs early, and foster knowledge sharing while maintaining team morale. Use when reviewing pull requests, establishing review standards, or mentoring developers.

developer-essentials

24.7k