Kubescape Mcp Server

Name: Kubescape Mcp Server
Author: slashben

by slashben

1 0 tools GitHub

No known CVEs

Apache-2.0 license

Stale

Last commit 376d ago

Works with most clients

Transport: stdio, sse

0 tools

Grade F

Edit this pageView history

Security DevOps

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "kubescape-mcp-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/kubescape-mcp-server)](https://mcppedia.org/s/kubescape-mcp-server)

Read me

What Kubescape Mcp Server does

:exclamation: Warning: This is a playground project and most likely will be moved to Kubescape organization soon.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

25/100across 5 weighted dimensions

How we score →

0255075100

−75

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Kubescape Mcp Server safe to use?: Kubescape Mcp Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
How do I install Kubescape Mcp Server?: Kubescape Mcp Server can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with Kubescape Mcp Server?: Kubescape Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse transport.
Is Kubescape Mcp Server actively maintained?: Kubescape Mcp Server is not actively maintained — last commit was 376 days ago. It has 1 GitHub stars.

Similar servers

Others in security / devops

View all →

Mcp Gitlab94

MCP server for using the GitLab API

1.6k 12

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Alibabacloud Devops Mcp Server92

Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.

116 7

MCP Security Weekly

Get CVE alerts and security updates for Kubescape Mcp Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Kubescape MCP Server

:exclamation: Warning: This is a playground project and most likely will be moved to Kubescape organization soon.

Kubescape MCP Server is a middleware component that exposes Kubernetes vulnerability manifests and related tools via the Mark3 Labs MCP protocol. It enables discovery, listing, and querying of vulnerabilities at both image and workload levels in your Kubernetes cluster.

Usage

Build and Run

Ensure you have Go installed (1.18+ recommended).

Clone the repository and build the server:

go build -o ks-mcpserver ks-mcpserver.go
./ks-mcpserver

The server will start and listen for MCP protocol requests via stdio.

Kubernetes Access

The server requires access to your Kubernetes cluster and expects the appropriate kubeconfig/context.
It uses the Kubescape storage API to fetch vulnerability manifests.

MCP Tools

The following tools are available:
- list_vulnerability_manifests: Discover available vulnerability manifests at image and workload levels.
- list_vulnerabilities_in_manifest: List all vulnerabilities in a given manifest.
- list_vulnerability_matches_for_cve: List all vulnerability matches for a given CVE in a given manifest.

Resource Templates

Vulnerability manifests are exposed as MCP resources, e.g.:
- kubescape://vulnerability-manifests/{namespace}/{manifest_name}/cve_list
- kubescape://vulnerability-manifests/{namespace}/{manifest_name}/cve_details/{cve_id}

Frequently Asked Questions

Is Kubescape Mcp Server safe to use?

Kubescape Mcp Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.

How do I install Kubescape Mcp Server?

Kubescape Mcp Server can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with Kubescape Mcp Server?

Kubescape Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse transport.

Is Kubescape Mcp Server actively maintained?

Kubescape Mcp Server is not actively maintained — last commit was 376 days ago. It has 1 GitHub stars.

Kubescape MCP Server

:exclamation: Warning: This is a playground project and most likely will be moved to Kubescape organization soon.

Features

List available vulnerability manifests for images and workloads
Query all vulnerabilities in a given manifest
Query all matches for a specific CVE in a manifest
Expose vulnerability manifest resources via MCP resource templates

Usage

Build and Run
- Ensure you have Go installed (1.18+ recommended).
- Clone the repository and build the server:
```
go build -o ks-mcpserver ks-mcpserver.go
./ks-mcpserver
```
- The server will start and listen for MCP protocol requests via stdio.
Kubernetes Access
- The server requires access to your Kubernetes cluster and expects the appropriate kubeconfig/context.
- It uses the Kubescape storage API to fetch vulnerability manifests.
MCP Tools
- The following tools are available:
  - list_vulnerability_manifests: Discover available vulnerability manifests at image and workload levels.
  - list_vulnerabilities_in_manifest: List all vulnerabilities in a given manifest.
  - list_vulnerability_matches_for_cve: List all vulnerability matches for a given CVE in a given manifest.
Resource Templates
- Vulnerability manifests are exposed as MCP resources, e.g.:
  - kubescape://vulnerability-manifests/{namespace}/{manifest_name}/cve_list
  - kubescape://vulnerability-manifests/{namespace}/{manifest_name}/cve_details/{cve_id}

Development

Contributions are welcome! Please open issues or pull requests for bug fixes, features, or documentation improvements.
Ensure code is formatted with gofmt and passes linting.

License

This project is licensed under the Apache 2.0 or MIT License. See LICENSE for details.