tempo-mcp-gateway
Verified Safeby andreasgerstmayr
Overview
The tempo-mcp-gateway acts as an instance-aware and tenant-aware gateway for Grafana Tempo's MCP (Management Control Plane) server, simplifying interaction with multiple Tempo instances within a Kubernetes cluster.
Installation
No command providedSecurity Notes
The server uses standard Kubernetes practices for secure communication, including in-cluster configuration for the Kubernetes API client and a service CA certificate for TLS. It properly forwards client authorization tokens to downstream Tempo instances, maintaining the client's original permissions. There are no observed hardcoded secrets, 'eval' usage, or other obvious malicious patterns. The RBAC rules are appropriately scoped to 'list' Tempo custom resources, limiting its own cluster permissions. The filtering of accessible tenants by probing readiness endpoints is a good practice to ensure the gateway only exposes what the client is authorized to access.
Similar Servers
mcp-context-forge
Converts web content (HTML, PDF, DOCX, etc.) and local files from a URL into high-quality Markdown format. It supports multiple conversion engines, content optimization, batch processing, and image handling.
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
shinzo
Shinzo is an open-source observability platform for monitoring and analyzing the performance, usage, and telemetry data of AI agents and Model Context Protocol (MCP) servers.
prometheus-mcp
A Model Context Protocol (MCP) server that enables AI agents and CLI users to query and discover metrics from Prometheus, with built-in features like retries, caching, and an optional metrics exporter.