Inspect RBAC
inspect_rbacIdentify risky ClusterRole and Role rules including wildcards and escalate/bind/impersonate permissions, and view sample ClusterRoleBindings.
Instructions
Read-only RBAC review: heuristics for risky ClusterRole/Role rules (wildcards, escalate/bind/impersonate) and a sample of ClusterRoleBindings.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| namespace | No | If set, limit risky Role scanning to this namespace; ClusterRoles are always scanned cluster-wide |