gke-workload-security
OfficialAudit and harden GKE workloads securely.
Software Engineering#kubernetes#gke#network-policies#workload-security#shielded-nodes#workload-identity#gvisor
AuthorGoogleCloudPlatform
Version1.0.0
Installs0
System Documentation
What problem does it solve?
GKE workloads require robust security auditing and hardening to prevent misconfigurations and compliance gaps.
Core Features & Use Cases
- Security Audit: Assess and verify cluster security posture including identity and network configurations.
- Configure Workload Identity: Enable KSAs to access GSAs securely using Workload Identity.
- Implement Network Policies: Establish and enforce pod-to-pod network isolation.
- Enable Shielded Nodes: Ensure node integrity with Shielded Nodes.
- GKE Sandbox (gVisor): Run untrusted workloads in a sandbox for extra isolation.
- Best Practices: Follow recommended practices for least privilege and secure deployments.
Quick Start
Run the audit script against your cluster to begin evaluating workload security posture and applying recommended hardening steps.
Dependency Matrix
Required Modules
jqgcloud
Components
scriptsassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: gke-workload-security Download link: https://github.com/GoogleCloudPlatform/gke-mcp/archive/main.zip#gke-workload-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.