Mcp Server Kubernetes

Name: Mcp Server Kubernetes
Author: Flux159

mcp-server-kubernetes · by Flux159

MCP Server for kubernetes management commands

1.4k 22 tools GitHub npm

No known CVEs

MIT license

Actively maintained

Last commit 4d ago

Works with most clients

Transport: stdio, sse, http

22 tools · ~914 tok

Grade B · 0.5% of 200K ctx

Edit this pageView history

DevOps Cloud

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "kubernetes": {
      "args": [
        "mcp-server-kubernetes"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-server-kubernetes)](https://mcppedia.org/s/mcp-server-kubernetes)

Read me

What Mcp Server Kubernetes does

MCP Server that can connect to a Kubernetes cluster and manage it. Supports loading kubeconfig from multiple sources in priority order.

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

87/100across 5 weighted dimensions

How we score →

0255075100

−13

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

3 fixed

CVE-2026-39884low · fixedCVSS 3.1

MCP Server Kubernetes has an Argument Injection in port_forward tool via space-splitting

## Summary The `port_forward` tool in `mcp-server-kubernetes` constructs a kubectl command as a string and splits it on spaces before passing to `spawn()`. Unlike all other tools in the codebase which correctly use `execFileSync("kubectl", argsArray)`, `port_forward` uses string concatenation with user-controlled input (`namespace`, `resourceType`, `resourceName`, `localPort`, `targetPort`) followed by naive `.split(" ")` parsing. This allows an attacker to inject arbitrary kubectl flags by emb

Affected: >= 0Fixed in 3.5.0source →

CVE-2025-66404low · fixedCVSS 3.1

mcp-server-kubernetes has potential security issue in exec_in_pod tool

### Summary A security issue exists in the `exec_in_pod` tool of the `mcp-server-kubernetes` MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (`sh -c`) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without expl

Affected: >= 0Fixed in 2.9.8source →

CVE-2025-53355low · fixedCVSS 3.1

MCP Server Kubernetes vulnerable to command injection in several tools

### Summary A command injection vulnerability exists in the `mcp-server-kubernetes` MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to `child_process.execSync`, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote code execution under the server process's privileges. The server constructs and executes shell commands using unvalidated user input directly within command-line strings. This introduces

Affected: >= 0Fixed in 2.5.0source →

Inventory

Tools (22)

Click any tool to inspect its schema.

~914 tokens total

Inventory

Prompts (1)

k8s-diagnose

Troubleshooting prompt that guides through a systematic Kubernetes troubleshooting flow for pods based on a keyword and optional namespace

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Mcp Server Kubernetes safe to use?: Mcp Server Kubernetes has no known CVEs as of the latest MCPpedia security scan. It requires authentication to connect, which limits unauthorized access. Licensed under MIT.
How do I install Mcp Server Kubernetes?: Mcp Server Kubernetes supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Mcp Server Kubernetes do?: Mcp Server Kubernetes provides 22 tools: kubectl_get, kubectl_describe, kubectl_create, kubectl_apply, kubectl_delete and 17 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Mcp Server Kubernetes?: Mcp Server Kubernetes is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Mcp Server Kubernetes actively maintained?: Mcp Server Kubernetes is actively maintained — last commit was 4 days ago. It has 1,392 GitHub stars.

Similar servers

Others in devops / cloud

View all →

Mcp Gitlab96

MCP server for using the GitLab API

1.5k 12

Observability Mcp95

MCP Server for GCP environment for interacting with various Observability APIs.

790 10

Alibabacloud Devops Mcp Server92

Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.

110 7

io.github.wyre-technology/datto-saas-protection-mcp92

MCP server for Datto SaaS Protection — M365/GWS backups, restores, seats.

MCP Security Weekly

Get CVE alerts and security updates for Mcp Server Kubernetes and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Frequently Asked Questions

Is Mcp Server Kubernetes safe to use?

Mcp Server Kubernetes has no known CVEs as of the latest MCPpedia security scan. It requires authentication to connect, which limits unauthorized access. Licensed under MIT.

How do I install Mcp Server Kubernetes?

Mcp Server Kubernetes supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Mcp Server Kubernetes do?

Mcp Server Kubernetes provides 22 tools: kubectl_get, kubectl_describe, kubectl_create, kubectl_apply, kubectl_delete and 17 more. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Mcp Server Kubernetes?

Mcp Server Kubernetes is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Mcp Server Kubernetes actively maintained?

Mcp Server Kubernetes is actively maintained — last commit was 4 days ago. It has 1,392 GitHub stars.