Containers

from "github/awesome-copilot"

Create optimized multi-stage Dockerfiles for any language or framework

from "github/awesome-copilot"

Containerize an ASP.NET Core project by creating Dockerfile and .dockerfile files customized for the project.

from "alirezarezvani/claude-skills"

Use when building a Kubernetes Operator — custom controllers that reconcile CRD state. Triggers on "build an operator", "CRD design", "reconcile loop", "controller-runtime", "kubebuilder",...

from "alirezarezvani/claude-skills"

../../../engineering/kubernetes-operator/skills/kubernetes-operator/SKILL.md

from "alirezarezvani/claude-skills"

../../../engineering/skills/kubernetes-operator/SKILL.md

from "alirezarezvani/claude-skills"

../../../engineering/docker-development/skills/docker-development/SKILL.md

from "google/skills"

Plan, create, and configure production-ready Google Kubernetes Engine GKE clusters using the golden path Autopilot configuration. Covers Day-0 checklist, Autopilot vs Standard, networking...

from "mukul975/Anthropic-Cybersecurity-Skills"

Harbor is an open-source container registry that provides security features including vulnerability scanning

from "mukul975/Anthropic-Cybersecurity-Skills"

Scan container images for known vulnerabilities using Anchore Grype with SBOM-based matching and configurable

from "mukul975/Anthropic-Cybersecurity-Skills"

Audit Kubernetes cluster security posture against CIS benchmarks using kube-bench with automated checks for control

from "mukul975/Anthropic-Cybersecurity-Skills"

Kubernetes penetration testing systematically evaluates cluster security by simulating attacker techniques against

from "mukul975/Anthropic-Cybersecurity-Skills"

Detects container escape attempts by analyzing namespace configurations, privileged container checks, dangerous

from "mukul975/Anthropic-Cybersecurity-Skills"

This skill covers hardening container images by minimizing attack surface, removing unnecessary packages, implementing

from "mukul975/Anthropic-Cybersecurity-Skills"

Harden Kubernetes Role-Based Access Control by implementing least-privilege policies, auditing role bindings,

from "mukul975/Anthropic-Cybersecurity-Skills"

Enforce Kubernetes admission policies using OPA Gatekeeper with ConstraintTemplates, Rego rules, and the Gatekeeper

from "mukul975/Anthropic-Cybersecurity-Skills"

Kubernetes NetworkPolicies provide pod-level network segmentation by defining ingress and egress rules that control

from "mukul975/Anthropic-Cybersecurity-Skills"

Implement Kubernetes network segmentation using Calico NetworkPolicy and GlobalNetworkPolicy for zero-trust pod-to-pod

from "mukul975/Anthropic-Cybersecurity-Skills"

Sign and verify container image provenance using Sigstore Cosign with keyless OIDC-based signing, attestations,

from "mukul975/Anthropic-Cybersecurity-Skills"

Reduce container attack surface by building application images on Google distroless base images that contain

from "mukul975/Anthropic-Cybersecurity-Skills"

Enforce Kubernetes network segmentation using Calico CNI network policies and global network policies to control

from "mukul975/Anthropic-Cybersecurity-Skills"

Hardening Docker containers for production involves applying security best practices aligned with CIS Docker

from "mukul975/Anthropic-Cybersecurity-Skills"

Harden the Docker daemon by configuring daemon.json with user namespace remapping, TLS authentication, rootless

from "mukul975/Anthropic-Cybersecurity-Skills"

Detect container escape attempts in real-time using Falco runtime security rules that monitor syscalls, file

from "mukul975/Anthropic-Cybersecurity-Skills"

Container escape is a critical attack technique where an adversary breaks out of container isolation to access