k8s-security-posture-scorecardAssess Kubernetes cluster security posture across 30 controls covering RBAC, workload security, network policies, IaC, runtime monitoring, and secrets manage...
Install via ClawdBot CLI:
clawdbot install krishnakumarmahadevan-cmd/k8s-security-posture-scorecardGrade Limited — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Sends data to undocumented external endpoint (potential exfiltration)
POST → https://portal.toolweb.in/apis/security/k8scorecardCalls external URL not in known-safe list
https://portal.toolweb.inAudited Apr 17, 2026 · audit v1.0
Generated Apr 6, 2026
A financial services company migrating on-premise applications to AWS EKS needs to validate security compliance before go-live. This skill assesses RBAC, network policies, and secrets management to ensure alignment with PCI-DSS and internal audit requirements, providing a scorecard for stakeholder approval.
A tech startup implementing GitOps with ArgoCD wants to automate security checks in their CI/CD pipeline. The skill evaluates IaC scanning, runtime monitoring, and workload security controls, generating a score after each deployment to track hardening progress and prevent regressions.
A healthcare provider using Azure AKS must demonstrate HIPAA and SOC2 compliance for an upcoming audit. The skill reviews cluster configuration, audit logging, and encryption controls, producing a detailed report with critical findings and remediation steps to address gaps efficiently.
An e-commerce company managing production and staging GKE clusters across regions needs to compare security postures. The skill assesses all 30 controls consistently, highlighting differences in network security and runtime monitoring to prioritize improvements based on risk levels.
A consulting firm trains client teams on Kubernetes best practices and uses this skill to evaluate hands-on labs. It tests understanding of pod security policies, image scanning, and secrets management, providing scores to measure learning outcomes and identify knowledge gaps.
The skill operates via a proprietary API that charges per successful call, tracked through the TOOLWEB_API_KEY. This creates recurring revenue from users conducting regular security assessments, with pricing tiers potentially based on call volume or advanced features like compliance mapping.
Organizations can purchase annual subscriptions for unlimited API access, dedicated support, and custom compliance frameworks. This model targets large teams needing frequent audits, offering predictable billing and integration assistance for scalable security monitoring.
The skill identifies security gaps, enabling the creator to offer follow-on consulting for implementing fixes. Revenue comes from professional services like cluster hardening, training workshops, and managed security reviews, leveraging the scorecard as a lead generation tool.
💬 Integration Tip
Ensure curl and the API key are configured in the environment before use; automate input collection via scripts to streamline repeated assessments across multiple clusters.
Scored Apr 19, 2026
Full desktop computer use for headless Linux servers. Xvfb + XFCE virtual desktop with xdotool automation. 17 actions (click, type, scroll, screenshot, drag,...
Diagnoses common Linux service issues using logs, systemd/PM2, file permissions, Nginx reverse proxy checks, and DNS sanity checks. Use when a server app is failing, unreachable, or misconfigured.
Run a single command on a remote Tailscale node via SSH without opening an interactive session.
Debug DNS resolution and network connectivity. Use when troubleshooting DNS failures, testing port connectivity, diagnosing firewall rules, inspecting HTTP requests with curl verbose mode, configuring /etc/hosts, or debugging proxy and certificate issues.
主动监控系统状态。定期检查服务器健康,主动汇报,无需等待指令。
Manage Coolify deployments, applications, databases, and services via the Coolify API. Use when the user wants to deploy, start, stop, restart, or manage applications hosted on Coolify.