Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
opa-resource-governance-templates
OPA resource governance policies enforcing CPU/memory limits, ResourceQuota compliance, LimitRange validation, and storage constraints.
adaptive-enforcement-lab/claude-skills 1
-
sdlc-hardening-implementation-roadmap
Deploy defense-in-depth SDLC hardening across four phases: pre-commit hooks, CI/CD gates, runtime enforcement, and continuous audit evidence collection systems.
adaptive-enforcement-lab/claude-skills 1
-
policy-as-code-operations
Manage Kyverno policy lifecycle from creation to enforcement. Add policies safely, monitor compliance, handle exceptions, and maintain GitOps-driven operations.
adaptive-enforcement-lab/claude-skills 1
-
enforce
Make security mandatory through automation. Branch protection, pre-commit hooks, status checks, policy-as-code, and SLSA provenance for SOC 2 compliance.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-mutation-templates
Kyverno mutation policies that auto-inject labels, sidecars, and configuration into Kubernetes workloads at admission time.
adaptive-enforcement-lab/claude-skills 1
-
runtime-deployment-admission-control-with-kyverno
Deploy Kyverno admission control as final safety net before production. Install admission webhooks, policy reporters, and continuous compliance background scans.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-network-security-templates
Kyverno network security policies that enforce NetworkPolicy requirements, Ingress rules, and Service restrictions in Kubernetes.
adaptive-enforcement-lab/claude-skills 1
-
policy-as-code-template-library
Production-ready policy template library: 48 battle-tested policies (28 Kyverno + 20 OPA). Pod security, image validation, RBAC, resource governance, network security, and CI/CD integration.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-pod-security-templates
Kyverno pod security policies enforcing Pod Security Standards, privilege restrictions, and security profiles for Kubernetes workloads.
adaptive-enforcement-lab/claude-skills 1
-
phase-4-advanced-month-4
Audit evidence collection and compliance validation. Automated archival, OpenSSF Scorecard monitoring, SLSA verification, and continuous proof of controls.
adaptive-enforcement-lab/claude-skills 1
-
required-status-checks
CI/CD pipelines as merge gates. Tests, security scans, and linting must pass before code reaches production. Automated validation that satisfies auditors.
adaptive-enforcement-lab/claude-skills 1
-
multi-source-policy-aggregation
Aggregate Kyverno policies from security, DevOps, and application teams into unified enforcement. Build multi-stage containers using OCI repo dependencies.
adaptive-enforcement-lab/claude-skills 1
-
incident-response-playbook-templates
Incident response playbook templates for Kubernetes. Detection, containment, remediation, and post-incident procedures with decision trees and validation steps.
adaptive-enforcement-lab/claude-skills 1
-
phase-1-foundation-weeks-1-4
Deploy pre-commit hooks for secrets detection, branch protection with required reviews, commit signature verification, and org-wide distribution strategies.
adaptive-enforcement-lab/claude-skills 1
-
slsa-implementation-playbook
Complete SLSA implementation playbook: clarify SLSA vs SBOM confusion, classify runner configurations, implement verification workflows, and adopt incrementally from Level 1 to Level 3.
adaptive-enforcement-lab/claude-skills 1
-
slsa-provenance-toolchain-integration
SLSA provenance for Go, Node.js, and Python: binary builds, package publishing, container images, and dependency verification with cryptographic integrity proofs.
adaptive-enforcement-lab/claude-skills 1
-
opa-image-security-templates
OPA image security policies for container registry allowlisting, digest enforcement, and signature verification in Kubernetes.
adaptive-enforcement-lab/claude-skills 1
-
ci-integration-automated-policy-enforcement
Block non-compliant manifests at merge time using policy-platform container in CI. Automate Kyverno validation across environments with zero configuration drift.
adaptive-enforcement-lab/claude-skills 1
-
local-development-with-policy-as-code
Run Kyverno policy validation locally with policy-platform containers. Zero local setup, same tools as CI, instant feedback before committing code changes.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-resource-governance-templates
Kyverno resource governance policies enforcing CPU/memory limits, HPA requirements, and storage constraints for Kubernetes workloads.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-generation-templates
Kyverno generation policy templates that auto-create supporting resources like NetworkPolicies, ResourceQuotas, and PodDisruptionBudgets for new workloads and namespaces.
adaptive-enforcement-lab/claude-skills 1
-
opa-policy-templates
OPA Gatekeeper policy templates overview. 20 production-ready constraint templates for pod security, image validation, RBAC, and resource governance.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-policy-templates
Kyverno policy templates overview. 28 production-ready policies for pod security, image validation, resource limits, network security, mutation, and generation.
adaptive-enforcement-lab/claude-skills 1
-
packaging
Package Go CLIs as minimal secure containers with distroless base images. Static binaries, non-root users, read-only filesystems for production.
adaptive-enforcement-lab/claude-skills 1