mcp-k8s
Verified Safeby silenceper
Overview
A Kubernetes MCP (Model Control Protocol) server that enables natural language interaction with Kubernetes clusters and Helm for resource and release management.
Installation
docker run -i -v ~/.kube/config:/root/.kube/config --rm ghcr.io/silenceper/mcp-k8s:latestEnvironment Variables
- HELM_DRIVER
Security Notes
The server leverages official Kubernetes client-go and Helm client libraries. Write operations (create, update, delete, Helm chart operations, Helm repository management) are disabled by default and require explicit command-line flags to enable, offering fine-grained control to the operator. User inputs for resource manifests and Helm values are parsed as structured data (JSON/YAML) rather than executed, mitigating common injection risks. The primary security consideration lies with the RBAC permissions granted to the kubeconfig file used by the server; appropriate least-privilege RBAC is critical to prevent unintended or malicious actions on the cluster, especially when integrated with an LLM.
Similar Servers
mcp-server-kubernetes
Manages Kubernetes clusters by executing kubectl and Helm commands, facilitating automation and interaction through the Model Context Protocol.
kubernetes-mcp-server
Provides a Model Context Protocol (MCP) server for AI agents to interact with Kubernetes and OpenShift clusters, enabling AI-driven cluster management and diagnosis.
mcp-k8s-go
An MCP server enabling AI assistants and users to interact with and manage Kubernetes clusters by listing, getting, applying, and executing commands on Kubernetes resources.
k8s-mcp-server
Provides a standardized interface (MCP) for interacting with Kubernetes clusters and managing Helm releases.