Mcp Server Kubernetes

MCP Server for kubernetes management commands

ActiveNot tested

★ 1.4k↓ 11.9k/wknpm GitHub

91No CVEsactive22 toolsMIT

Quick Install

{
  "mcpServers": {
    "kubernetes": {
      "args": [
        "mcp-server-kubernetes"
      ],
      "command": "npx"
    }
  }
}

Setup guide

Should you use this server?

MCP Server for kubernetes management commands

✓

Is it safe?

No known CVEs for mcp-server-kubernetes. 2 previously resolved.

No authentication — any process on your machine can connect.

MIT. View license →

✓

Is it maintained?

Last commit 6 days ago. 1,371 stars. 11,931 weekly downloads.

Will it work with my client?

Transport: stdio, sse, http. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Context cost

22 tools. ~900 tokens (0.5% of 200K). Consider loading selectively.

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

Tools (22)

kubectl_get

Get or list Kubernetes resources

kubectl_describe

Describe Kubernetes resources

kubectl_create

Create Kubernetes resources

kubectl_apply

Apply YAML manifests to Kubernetes

kubectl_delete

Delete Kubernetes resources

kubectl_logs

Get logs from Kubernetes pods

kubectl_context

Manage kubectl contexts

explain_resource

Explain Kubernetes resources

list_api_resources

List available Kubernetes API resources

kubectl_scale

Scale Kubernetes resources

Prompts (1)

k8s-diagnose

Troubleshooting prompt that guides through a systematic Kubernetes troubleshooting flow for pods based on a keyword and optional namespace

Help improve this page

This server is missing a description.If you've used it, help the community.

Add information

Score Breakdown

MCPpedia Score

Click each category to see evidence

91A

Scored 2h ago

How we score →

Security

30/30

Last scanned 2h ago

No open vulnerabilities. 2 fixed CVEs.

✓

CVEs — 2 fixed CVEs — update to 2.9.8+check OSV.dev \u2192

○

Authentication

Advisories (0 open, 2 fixed)

lowCVSS 3.1CVE-2025-66404Fixed

mcp-server-kubernetes has potential security issue in exec_in_pod tool

### Summary A security issue exists in the `exec_in_pod` tool of the `mcp-server-kubernetes` MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (`sh -c`) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without expl

Affected: >= 0Fixed in 2.9.8Published Dec 3, 2025source \u2192

lowCVSS 3.1CVE-2025-53355Fixed

MCP Server Kubernetes vulnerable to command injection in several tools

### Summary A command injection vulnerability exists in the `mcp-server-kubernetes` MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to `child_process.execSync`, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote code execution under the server process's privileges. The server constructs and executes shell commands using unvalidated user input directly within command-line strings. This introduces

Affected: >= 0Fixed in 2.5.0Published Jul 8, 2025source \u2192