yams
by Juniper
Overview
YAMS is a Model Context Protocol (MCP) server for comprehensive analysis and management of Kubernetes clusters, especially Juniper Cloud-Native Router (JCNR) deployments, providing deep visibility and troubleshooting capabilities through an AI-compatible interface.
Installation
./docker-run.shSecurity Notes
The server explicitly disables SSH host key verification (AutoAddPolicy) and Kubernetes API SSL certificate verification ('insecure-skip-tls-verify: true') for SSH tunneled clusters, which are critical security risks for Man-in-the-Middle (MiTM) attacks. While the README acknowledges these risks and advises trust in the network path, these defaults are highly insecure for general deployment. The system also supports storing SSH passwords directly in configuration files. Crucially, the server lacks built-in authentication/authorization for its MCP endpoints, meaning any client that can reach the server can execute arbitrary commands on connected Kubernetes pods, posing a significant risk if exposed publicly.
Similar Servers
spec-workflow-mcp
Model Context Protocol (MCP) server for structured, spec-driven software development with real-time dashboard and VSCode extension integration.
mcp-server-kubernetes
Manages Kubernetes clusters by executing kubectl and Helm commands, facilitating automation and interaction through the Model Context Protocol.
mcp-k8s-go
An MCP server enabling AI assistants and users to interact with and manage Kubernetes clusters by listing, getting, applying, and executing commands on Kubernetes resources.
mcp-k8s
A Kubernetes MCP (Model Control Protocol) server that enables natural language interaction with Kubernetes clusters and Helm for resource and release management.