fleet-mcp
Verified Safeby rossella
Overview
Enables AI assistants to programmatically manage and monitor GitOps capabilities and resources within a Fleet-managed Kubernetes environment.
Installation
./fleet-mcpEnvironment Variables
- PORT
- HOST
- INSECURE_SKIP_TLS
- TLS_SECRET_NAME
- TLS_CA_SECRET_NAME
Security Notes
The server acts as a powerful gateway to Kubernetes, requiring a Rancher bearer token ('R_token' header) with potentially broad RBAC permissions for its operations. This means the server operates with the permissions of the provided token; therefore, securing the token and limiting its scope is critical. While TLS is supported, the local development setup allows 'INSECURE_SKIP_TLS=true', which should not be used in production. The Kubernetes deployment manifest includes extensive ClusterRole permissions (full CRUD for many Fleet resources), which should be reviewed and potentially restricted based on specific use cases. There are no obvious code execution vulnerabilities like 'eval' or hardcoded secrets.
Similar Servers
kubernetes-mcp-server
Facilitates AI agent interaction with Kubernetes and OpenShift clusters by exposing management and observability tools via the Model Context Protocol.
flux-operator
The Flux Operator MCP Server acts as a bridge for AI assistants, allowing them to manage and troubleshoot GitOps pipelines and Kubernetes resources controlled by FluxCD through natural language interactions.
mcp-k8s-go
This MCP server enables interaction with Kubernetes clusters to list, get, apply, and execute commands on various resources through a conversational interface.
mcp-for-argocd
Enables AI assistants to interact with Argo CD applications through natural language, streamlining DevOps tasks.