Stats
Actions
Tags
From cybersecurity-skills
Enforces Kubernetes network segmentation using Calico CNI network policies and global network policies to control pod-to-pod traffic, restrict egress, and implement zero-trust microsegmentation.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersecurity-skills:implementing-container-network-policies-with-calicoThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Calico provides Kubernetes-native and extended network policy enforcement through its CNI plugin. This skill covers creating and auditing Calico NetworkPolicy and GlobalNetworkPolicy resources to implement pod-to-pod traffic control, namespace isolation, egress restrictions, and DNS-based policy rules using calicoctl and the Kubernetes API.
Calico provides Kubernetes-native and extended network policy enforcement through its CNI plugin. This skill covers creating and auditing Calico NetworkPolicy and GlobalNetworkPolicy resources to implement pod-to-pod traffic control, namespace isolation, egress restrictions, and DNS-based policy rules using calicoctl and the Kubernetes API.
kubernetes client libraryUse calicoctl and kubectl to inventory current network policies and identify unprotected namespaces.
Create default-deny ingress and egress policies per namespace as a zero-trust baseline.
Define granular allow rules for legitimate pod-to-pod and pod-to-service communication.
Test connectivity between pods to verify policies are correctly enforced.
JSON audit report listing all network policies, unprotected namespaces, policy rule counts, and connectivity test results.
npx claudepluginhub costrict-plugins-repo/mukul975-anthropic-cybersecurity-skills-cybersecurity-skillsEnforces Kubernetes network segmentation with Calico CNI policies for pod-to-pod traffic control, egress restrictions, and zero-trust microsegmentation. Includes audit and validation steps.
Implements and audits Calico NetworkPolicy and GlobalNetworkPolicy resources in Kubernetes for pod-to-pod traffic control, namespace isolation, egress restrictions, and zero-trust microsegmentation. Use for security assessments and compliance.
Implements and audits Calico NetworkPolicy and GlobalNetworkPolicy in Kubernetes to control pod traffic, restrict egress, and enforce zero-trust microsegmentation using calicoctl and kubectl.