CLI Overview

kubectl kguardian
Installation
Global Flags
Commands
Examples

kubectl kguardian

The kguardian CLI is a kubectl plugin that generates security policies from observed runtime behavior.

Installation

See the Installation Guide for detailed instructions.

Global Flags

Available for all commands:

Flag	Description	Default
`--kubeconfig`	Path to kubeconfig file	`$KUBECONFIG` or `~/.kube/config`
`--context`	Kubernetes context to use	Current context
`-n, --namespace`	Namespace scope	Current namespace
`--debug`	Enable debug logging	`false`

Commands

gen networkpolicy

Generate Network Policies from observed traffic

gen seccomp

Generate Seccomp profiles from syscall usage

Examples

# Generate network policy for a pod
kubectl kguardian gen networkpolicy my-app -n production

# Generate seccomp for all pods in namespace
kubectl kguardian gen seccomp --all -n staging

# Generate Cilium policies cluster-wide
kubectl kguardian gen netpol -A --type cilium

Go microservice (typical HTTP API)gen networkpolicy

Getting Started

Core Concepts

User Guides

Policy Gallery

CLI Reference

Advanced

Roadmap

kubectl kguardian

Installation

Global Flags

Commands

gen networkpolicy

gen seccomp

Examples

Getting Started

Core Concepts

User Guides

Policy Gallery

CLI Reference

Advanced

Roadmap

Documentation Index

​kubectl kguardian

​Installation

​Global Flags

​Commands

gen networkpolicy

gen seccomp

​Examples

kubectl kguardian

Installation

Global Flags

Commands

Examples