FICHA · AUR

kubectl-who-can

Shows which subjects have RBAC permissions to VERB [TYPE | TYPE/NAME | NONRESOURCEURL] in Kubernetes

  • rbac-audit-plugin
  • CLI
  • Launchable
  • Runs in terminal
official+codex · reviewed · Jun 1, 2026 description in en

Description

RBAC permissions become easier to audit by showing which users, groups, or service accounts can perform a specific action. It helps administrators answer access questions without manually tracing every role binding.

Permission reports can expose security structure and account names. Use them on authorized clusters and protect the output when it includes sensitive identities or privileged access paths.

How to run

kubectl-who-can

Commands: kubectl-who-can

Permissions

Permissions not analysed for this source yet.