access-review

Implement periodic access review processes.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "access-review" with this command: npx skills add bagelhole/devops-security-agent-skills/bagelhole-devops-security-agent-skills-access-review

Access Review

Implement periodic access review processes.

Review Process

access_review_workflow: 1_extract: - Pull access data from systems - Generate access report

2_review: - Manager certification - Risk-based prioritization - Decision documentation

3_action: - Revoke unnecessary access - Update exceptions - Document decisions

4_report: - Compliance metrics - Remediation tracking

AWS IAM Review

Generate credential report

aws iam generate-credential-report aws iam get-credential-report --output text --query Content | base64 -d

Find inactive users

aws iam list-users | jq -r '.Users[] | select(.PasswordLastUsed < "2024-01-01") | .UserName'

List unused access keys

aws iam get-access-key-last-used --access-key-id AKIAXXXXXXXX

Automation

def generate_access_report(): users = get_all_users() report = []

for user in users:
    report.append({
        'user': user.email,
        'roles': user.roles,
        'last_login': user.last_login,
        'manager': user.manager,
        'review_status': 'pending'
    })

return report

Best Practices

  • Quarterly reviews minimum

  • Risk-based frequency

  • Manager attestation

  • Automated revocation

  • Audit trail maintenance

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

sops-encryption

No summary provided by upstream source.

Repository SourceNeeds Review
-31
bagelhole
Security

linux-administration

No summary provided by upstream source.

Repository SourceNeeds Review
-29
bagelhole
Security

linux-hardening

No summary provided by upstream source.

Repository SourceNeeds Review
-26
bagelhole