Can it help with Pod Security Standards?

Yes, it identifies critical security risks such as containers running as root, privileged escalation, and writable root filesystems, providing 'Good' vs 'Bad' configuration examples.

How does it help with cluster performance?

It analyzes resource requests and limits to ensure containers are neither over-provisioned (wasting money) nor under-powered (causing OOM kills), promoting stability.

What files does the k8s-reviewer skill analyze?

It automatically detects and reviews YAML files within k8s/, manifests/, or deploy/ directories, as well as Chart.yaml, kustomization.yaml, and standard deployment or service files.

Does it support Helm charts?

Absolutely. It validates Helm chart structures, checks for hardcoded values that should be in values.yaml, and ensures proper templating for resources.

Does it review RBAC permissions?

Yes, it flags overly permissive ClusterRoles, wildcard permissions, and the use of default ServiceAccounts, recommending namespaced roles and explicit resource access.

Kubernetes Resource Reviewer

Name: Kubernetes Resource Reviewer
Author: physics91

byphysics91

0•

部署与 DevOps

Audits Kubernetes manifests and Helm charts to ensure optimal resource allocation, security posture, and production readiness.

The k8s-reviewer skill provides automated, high-fidelity audits for Kubernetes infrastructure code directly within your terminal. It identifies critical misconfigurations in resource limits, health probes (liveness, readiness, and startup), security contexts, and RBAC policies, offering actionable recommendations based on industry best practices. Whether you are managing raw YAML manifests or complex Helm charts, this skill helps prevent production outages and security vulnerabilities by ensuring your containers are properly constrained, monitored, and secured according to the principle of least privilege.

主要功能

01RBAC policy review to enforce the principle of least privilege and eliminate wildcard permissions

02Automated resource limit and request validation to prevent OOM kills and CPU throttling

03Helm chart best practices validation, including values.yaml structure and image tagging

04Security posture auditing, including non-root execution and read-only filesystem checks

050 GitHub stars

06Comprehensive health probe analysis for liveness, readiness, and startup configurations

使用场景

01Pre-deployment audit of Kubernetes manifests to catch configuration errors before they reach production

02Security hardening of existing clusters by reviewing RBAC roles and container security contexts

03Optimizing cloud costs and performance through resource limit right-sizing recommendations

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add physics91/claude-vibe k8s-reviewer

For use in Claude.ai and ChatGPT