service-mesh

Implement service-to-service communication management.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "service-mesh" with this command: npx skills add bagelhole/devops-security-agent-skills/bagelhole-devops-security-agent-skills-service-mesh

Service Mesh

Implement service-to-service communication management.

Istio Installation

istioctl install --set profile=demo

Enable sidecar injection

kubectl label namespace default istio-injection=enabled

Traffic Management

apiVersion: networking.istio.io/v1alpha3 kind: VirtualService metadata: name: myapp spec: hosts:

  • myapp http:
  • match:
    • headers: canary: exact: "true" route:
    • destination: host: myapp subset: canary
  • route:
    • destination: host: myapp subset: stable weight: 90
    • destination: host: myapp subset: canary weight: 10

mTLS

apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: default spec: mtls: mode: STRICT

Best Practices

  • Enable strict mTLS

  • Implement circuit breakers

  • Use traffic shifting for deployments

  • Monitor with Kiali and Jaeger

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

sops-encryption

No summary provided by upstream source.

Repository SourceNeeds Review
-31
bagelhole
Security

linux-administration

No summary provided by upstream source.

Repository SourceNeeds Review
-29
bagelhole
Security

linux-hardening

No summary provided by upstream source.

Repository SourceNeeds Review
-26
bagelhole