k8s-mcp-server
Verified Safeby reza-gholizade
Overview
Interacting with Kubernetes clusters and Helm releases through a standardized Model Context Protocol (MCP) interface.
Installation
docker run -i --rm -p 8080:8080 -v ~/.kube/config:/home/appuser/.kube/config:ro ginnux/k8s-mcp-server:latest --mode stdioEnvironment Variables
- SERVER_PORT
- SERVER_MODE
- KUBECONFIG_DATA
- KUBERNETES_SERVER
- KUBERNETES_TOKEN
- KUBERNETES_CA_CERT
- KUBERNETES_CA_CERT_PATH
- KUBERNETES_INSECURE
- KUBECONFIG
- HELM_DRIVER
Security Notes
The server uses standard Go client libraries for Kubernetes and Helm, which are generally robust. Authentication methods leverage secure practices (env vars, in-cluster service accounts, kubeconfig files). A critical security feature is the '--read-only' flag, which disables all write operations. The primary security considerations are proper RBAC configuration for the server's Kubernetes identity and ensuring the server's HTTP/stdio endpoints are not exposed to untrusted sources, as the server can perform powerful cluster operations. There are no obvious signs of 'eval' or direct command injection of untrusted strings.
Similar Servers
mcp-server-kubernetes
This MCP server enables AI agents to connect to and manage Kubernetes clusters by executing kubectl and Helm commands.
kmcp
KMCP is a Kubernetes controller and CLI tool that provides a declarative way to deploy, manage, and scale Model Context Protocol (MCP) servers in Kubernetes environments.
mcp-k8s-go
This MCP server enables interaction with Kubernetes clusters to list, get, apply, and execute commands on various resources through a conversational interface.
mcp-k8s
Facilitates natural language interaction and automation for Kubernetes cluster management and Helm operations via the Model Control Protocol (MCP).