Kubernetes policy management with Kyverno and Gatekeeper. Use when enforcing security policies, validating resources, or auditing policy compliance.
Manage policies using kubectl-mcp-server's Kyverno and Gatekeeper tools.
Use this skill when:
| Priority | Rule | Impact | Tools |
|---|---|---|---|
| 1 | Detect policy engine first | CRITICAL | kyverno_detect_tool, gatekeeper_detect_tool |
| 2 | Use Audit mode before Enforce | HIGH | validationFailureAction |
| 3 | Check policy reports for violations | HIGH |
kyverno_clusterpolicyreports_list_tool |
| 4 | Review constraint templates | MEDIUM | gatekeeper_constrainttemplates_list_tool |
| Task | Tool | Example |
|---|---|---|
| List Kyverno cluster policies | kyverno_clusterpolicies_list_tool | kyverno_clusterpolicies_list_tool() |
| Get Kyverno policy | kyverno_clusterpolicy_get_tool | kyverno_clusterpolicy_get_tool(name) |
| List Gatekeeper constraints | gatekeeper_constraints_list_tool | gatekeeper_constraints_list_tool() |
| Get constraint | gatekeeper_constraint_get_tool | gatekeeper_constraint_get_tool(kind, name) |
kyverno_detect_tool()
kyverno_clusterpolicies_list_tool()
kyverno_policies_list_tool(namespace="default")
kyverno_clusterpolicy_get_tool(name="require-labels")
kyverno_policy_get_tool(name="require-resources", namespace="default")
kyverno_clusterpolicyreports_list_tool()
kyverno_policyreports_list_tool(namespace="default")
kubectl_apply(manifest="""
apiVersion: kyverno.io/v1