Is Mcp Kubernetes Server safe to use?

Mcp Kubernetes Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "mcp-kubernetes-server". Review the Security section above for details before installing.

How do I install Mcp Kubernetes Server?

Mcp Kubernetes Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Mcp Kubernetes Server do?

Mcp Kubernetes Server provides 6 tools: kubectl, helm, k8s_get, k8s_describe, k8s_logs and 1 more. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Mcp Kubernetes Server?

Mcp Kubernetes Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Mcp Kubernetes Server actively maintained?

Mcp Kubernetes Server is less actively maintained — last commit was 114 days ago. It has 19 GitHub stars.

Mcp Kubernetes Server

Name: Mcp Kubernetes Server
Author: feiskyer

mcp-kubernetes-server · by feiskyer

A Model Context Protocol (MCP) server that enables AI assistants to interact with Kubernetes clusters. It serves as a bridge between AI tools (like Claude, Cursor, and GitHub Copilot) and Kubernetes, translating natural language requests into Kubernetes operations and returning the results in a format the AI tools can understand.

19 6 tools GitHub PyPI

2 open CVEs

Apache-2.0 license

Maintained

Last commit 114d ago

Works with most clients

Transport: stdio, sse, http

6 tools · ~817 tok

Grade B · 0.4% of 200K ctx

Edit this pageView history

DevOps Cloud

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "kubernetes": {
      "args": [
        "run",
        "-i",
        "--rm",
        "--mount",
        "type=bind,src=/home/username/.kube/config,dst=/home/mcp/.kube/config",
        "ghcr.io/feiskyer/mcp-kubernetes-server"
      ],
      "command": "docker"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-kubernetes-server)](https://mcppedia.org/s/mcp-kubernetes-server)

Read me

What Mcp Kubernetes Server does

The mcp-kubernetes-server is a server implementing the Model Context Protocol (MCP) to enable AI assistants (such as Claude, Cursor, and GitHub Copilot) to interact with Kubernetes clusters. It acts as a bridge, translating natural language requests from these assistants into Kubernetes operations and returning the results.

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

76/100across 5 weighted dimensions

How we score →

0255075100

−24

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

2 open

CVE-2025-59377lowCVSS 3.1

mcp-kubernetes-server has an OS Command Injection vulnerability

`feiskyer/mcp-kubernetes-server` through **0.1.11** allows **OS command injection** via the `/mcp/kubectl` endpoint. The handler constructs a shell command with user-supplied arguments and executes it with `subprocess` using `shell=True`, enabling injection through shell metacharacters (e.g., `;`, `&&`, `$()`), even when the server is running in **read-only** mode. A remote, unauthenticated attacker can execute arbitrary OS commands on the host, resulting in full compromise of confidentiality,

Affected: >= 0source →

CVE-2025-59376lowCVSS 3.1

mcp-kubernetes-server has a Command Injection vulnerability

`mcp-kubernetes-server` does not correctly enforce the `--disable-write` / `--disable-delete` protections when commands are chained. The server only inspects the first token to decide whether an operation is write/delete, which allows a read-like command to be followed by a write action using shell metacharacters (e.g., `kubectl version; kubectl delete pod <name>`). A remote attacker who can invoke the server may therefore bypass the intended write/delete restrictions and perform state-changing

Affected: >= 0source →

Inventory

Tools (6)

Click any tool to inspect its schema.

~817 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Mcp Kubernetes Server safe to use?: Mcp Kubernetes Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "mcp-kubernetes-server". Review the Security section above for details before installing.
How do I install Mcp Kubernetes Server?: Mcp Kubernetes Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Mcp Kubernetes Server do?: Mcp Kubernetes Server provides 6 tools: kubectl, helm, k8s_get, k8s_describe, k8s_logs and 1 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Mcp Kubernetes Server?: Mcp Kubernetes Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Mcp Kubernetes Server actively maintained?: Mcp Kubernetes Server is less actively maintained — last commit was 114 days ago. It has 19 GitHub stars.

Similar servers

Others in devops / cloud

View all →

Mcp Gitlab96

MCP server for using the GitLab API

1.6k 12

Observability Mcp95

MCP Server for GCP environment for interacting with various Observability APIs.

799 10

Sink95

⚡ A Simple / Speedy / Secure Link Shortener with Analytics, 100% run on Cloudflare.

6.7k 3

io.github.wyre-technology/datto-saas-protection-mcp92

MCP server for Datto SaaS Protection — M365/GWS backups, restores, seats.

MCP Security Weekly

Get CVE alerts and security updates for Mcp Kubernetes Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

DevOps Cloud

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "kubernetes": {
      "args": [
        "run",
        "-i",
        "--rm",
        "--mount",
        "type=bind,src=/home/username/.kube/config,dst=/home/mcp/.kube/config",
        "ghcr.io/feiskyer/mcp-kubernetes-server"
      ],
      "command": "docker"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-kubernetes-server)](https://mcppedia.org/s/mcp-kubernetes-server)

Read me

What Mcp Kubernetes Server does

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

README

mcp-kubernetes-server

The mcp-kubernetes-server is a server implementing the Model Context Protocol (MCP) to enable AI assistants (such as Claude, Cursor, and GitHub Copilot) to interact with Kubernetes clusters. It acts as a bridge, translating natural language requests from these assistants into Kubernetes operations and returning the results.

It allows AI assistants to:

Query Kubernetes resources
Execute kubectl commands
Manage Kubernetes clusters through natural language interactions
Diagnose and interpret the states of Kubernetes resources

How It Works

The mcp-kubernetes-server acts as an intermediary between AI assistants (that support the Model Context Protocol) and your Kubernetes cluster. It receives natural language requests from these assistants, translates them into kubectl commands or direct Kubernetes API calls, and executes them against the target cluster. The server then processes the results and returns a structured response, enabling seamless interaction with your Kubernetes environment via the AI assistant.

How To Install

Prerequisites

Before installing mcp-kubernetes-server, ensure you have the following:

A working Kubernetes cluster.
A kubeconfig file correctly configured to access your Kubernetes cluster (the server requires this file for interaction).
The kubectl command-line tool installed and in your system's PATH (used by the server to execute many Kubernetes commands).
The helm command-line tool installed and in your system's PATH (used by the server for Helm chart operations).
Python >= 3.11, if you plan to install and run the server directly using uvx (without Docker).

Docker

Get your kubeconfig file for your Kubernetes cluster and setup in the mcpServers (replace src path with your kubeconfig path):

{
  "mcpServers": {
    "kubernetes": {
      "command": "docker",
      "args": [
        "run",
        "-i",
        "--rm",
        "--mount", "type=bind,src=/home/username/.kube/config,dst=/home/mcp/.kube/config",
        "ghcr.io/feiskyer/mcp-kubernetes-server"
      ]
    }
  }
}

UVX

To run the server using uvx (a tool included with uv, the Python packager), first ensure uv is installed:

Install uv

Install uv if it's not installed yet and add it to your PATH, e.g. using curl:

# For Linux and MacOS
curl -LsSf https://astral.sh/uv/install.sh | sh

Install kubectl

Install kubectl if it's not installed yet and add it to your PATH, e.g.

# For Linux
curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"

# For MacOS
curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/arm64/kubectl"

Install helm

Install helm if it's not installed yet and add it to your PATH, e.g.

curl -sSL https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash

Config your MCP servers in Claude Desktop, Cursor, ChatGPT Copilot, [Github Copilot](https://github.com/fea

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

76/100across 5 weighted dimensions

How we score →

0255075100

−24

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

2 open

CVE-2025-59377lowCVSS 3.1

mcp-kubernetes-server has an OS Command Injection vulnerability

Affected: >= 0source →

CVE-2025-59376lowCVSS 3.1

mcp-kubernetes-server has a Command Injection vulnerability

Affected: >= 0source →

Inventory

Tools (6)

Click any tool to inspect its schema.

~817 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Mcp Kubernetes Server safe to use?: Mcp Kubernetes Server has 2 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "mcp-kubernetes-server". Review the Security section above for details before installing.
How do I install Mcp Kubernetes Server?: Mcp Kubernetes Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Mcp Kubernetes Server do?: Mcp Kubernetes Server provides 6 tools: kubectl, helm, k8s_get, k8s_describe, k8s_logs and 1 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Mcp Kubernetes Server?: Mcp Kubernetes Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Mcp Kubernetes Server actively maintained?: Mcp Kubernetes Server is less actively maintained — last commit was 114 days ago. It has 19 GitHub stars.