yams
by Juniper
Overview
YAMS is a Model Context Protocol (MCP) server for comprehensive analysis and management of Kubernetes clusters, especially Juniper Cloud-Native Router (JCNR) deployments, providing deep visibility and troubleshooting capabilities through an AI-compatible interface.
Installation
./docker-run.shSecurity Notes
The server explicitly disables SSH host key verification (AutoAddPolicy) and Kubernetes API SSL certificate verification ('insecure-skip-tls-verify: true') for SSH tunneled clusters, which are critical security risks for Man-in-the-Middle (MiTM) attacks. While the README acknowledges these risks and advises trust in the network path, these defaults are highly insecure for general deployment. The system also supports storing SSH passwords directly in configuration files. Crucially, the server lacks built-in authentication/authorization for its MCP endpoints, meaning any client that can reach the server can execute arbitrary commands on connected Kubernetes pods, posing a significant risk if exposed publicly.
Similar Servers
spec-workflow-mcp
Facilitates structured, specification-driven software development by providing a workflow engine, real-time dashboards, and tools for task management, approvals, and detailed implementation logging, integrated with AI agents and VSCode.
mcp-server-kubernetes
This MCP server enables AI agents to connect to and manage Kubernetes clusters by executing kubectl and Helm commands.
mcp-k8s-go
This MCP server enables interaction with Kubernetes clusters to list, get, apply, and execute commands on various resources through a conversational interface.
mcp-k8s
Facilitates natural language interaction and automation for Kubernetes cluster management and Helm operations via the Model Control Protocol (MCP).