- Home
- Skills
- Jeremylongshore
- Claude Code Plugins Plus Skills
- Auditing Access Control
auditing-access-control_skill
- Python
1.4k
GitHub Stars
1
Bundled Files
2 months ago
Catalog Refreshed
4 months ago
First Indexed
Readme & install
Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.
Installation
Preview and clipboard use veilstrat where the catalogue uses aiagentskills.
npx veilstrat add skill jeremylongshore/claude-code-plugins-plus-skills --skill auditing-access-control- SKILL.md4.3 KB
Overview
This skill helps you audit access control implementations for security vulnerabilities and misconfigurations. It automates inspection of authentication and authorization artifacts to surface overly permissive rules, privilege escalation paths, and compliance gaps. Use it to produce prioritized findings and actionable remediation recommendations.
How this skill works
I analyze your intent and target scope, then invoke an access-control audit routine against specified artifacts such as IAM policies, ACLs, role bindings, or application permission stores. The audit runs checks for common misconfigurations, excessive privileges, and policy violations, and returns a structured report with severity, impact, and suggested fixes. Reports can include code snippets, remediation steps, and an executive summary for stakeholders.
When to use it
- Review cloud IAM policies (AWS, GCP, Azure) for overly broad permissions
- Inspect network ACLs, security groups, and VPC rules for exposure risks
- Assess application-level roles and permission assignments for privilege escalation
- Validate access control changes during deployments or audits
- Check compliance with access control policies and regulatory requirements
Best practices
- Define clear audit scope (specific accounts, roles, or resources) before scanning
- Provide contextual info: policy intent, compliance frameworks, and sensitive assets
- Run audits regularly and after any permission change or onboarding event
- Prioritize findings by severity and exploitability, not just count of issues
- Include remediation examples and test changes in a staging environment first
Example use cases
- Audit an AWS account to find IAM policies granting *:* or wildcard permissions
- Review VPC network ACLs and security groups to identify public access paths
- Analyze application RBAC configuration to detect conflicting or redundant roles
- Validate that newly provisioned service accounts follow least-privilege
- Combine with vulnerability scanners to see if misconfigurations expose exploitable services
FAQ
Provide the target artifacts (policy files, account identifiers, directory paths) and any contextual constraints such as allowed services or compliance standards.
Can the audit suggest automated remediations?
Yes. The report includes remediation recommendations and example fixes, but automated changes should be reviewed and tested in staging before production deployment.