Access Analyzer

Access Analyzer focuses on who can do what in your cluster and highlights risky access patterns.

Typical Access Insights

RBAC permissions visibility (roles, rolebindings, clusterroles)
Over-permissive bindings and wildcard permissions
High-risk access paths (cluster-admin equivalents, privileged workload creation rights, secret read rights)

How Teams Use It

Reduce blast radius by tightening roles
Validate least privilege for service accounts
Track improvements as part of security posture and audits