one liner to list all roles & clusterroles that have secret access

get-secret-access-roles.sh

kubectl get roles,clusterroles -o json | jq -c '
    .items[]
    | select(.rules != null)                                   # Exclude entries with null rules
    | select(.rules[].resources[] == "secrets")                # Only resources with "secrets" access
    | {name: .metadata.name, kind: .kind, namespace: .metadata.namespace, verbs: (.rules[].verbs | unique)}' \
    | jq -s 'unique_by(.name, .kind, .namespace)'              # Deduplicate based on name, kind, and namespace