A Model Context Protocol (MCP) server that provides tools for interacting with Kubernetes clusters.
- Resource Management: Get, list, describe, create, apply, delete, and patch Kubernetes resources
- Pod Operations: Get logs, execute commands, and set up port forwarding
- Context Management: List, get, and switch between Kubernetes contexts
- Cluster Information: Get API resources and cluster health status
- Multiple Authentication Modes: Support for both kubeconfig and in-cluster authentication
- Multiple Transport Types: Support for stdio, SSE, and streamable HTTP
- Safety Features: Non-destructive mode, dry-run capability, and operation restrictions
go install github.com/giantswarm/mcp-kubernetes@latest# Start the MCP server with default settings (stdio transport, kubeconfig authentication)
mcp-kubernetes serve
# Start with debug logging
mcp-kubernetes serve --debug
# Start with in-cluster authentication (when running as a pod in Kubernetes)
mcp-kubernetes serve --in-clusterThe server supports two authentication modes:
Uses standard kubeconfig file authentication. The server will look for kubeconfig in the default locations (~/.kube/config) or use the KUBECONFIG environment variable.
# Use default kubeconfig
mcp-kubernetes serve
# Use specific kubeconfig (via environment variable)
KUBECONFIG=/path/to/kubeconfig mcp-kubernetes serveUses service account token when running inside a Kubernetes pod. This mode automatically uses the mounted service account credentials.
# Enable in-cluster authentication
mcp-kubernetes serve --in-clusterRequirements for in-cluster mode:
- Must be running inside a Kubernetes pod
- Service account token must be mounted at
/var/run/secrets/kubernetes.io/serviceaccount/token - CA certificate must be available at
/var/run/secrets/kubernetes.io/serviceaccount/ca.crt - Namespace must be available at
/var/run/secrets/kubernetes.io/serviceaccount/namespace
mcp-kubernetes serve --transport stdiomcp-kubernetes serve --transport sse --http-addr :8080mcp-kubernetes serve --transport streamable-http --http-addr :8080# Safety and operation modes
--non-destructive # Enable non-destructive mode (default: true)
--dry-run # Enable dry run mode (default: false)
# Performance tuning
--qps-limit 20.0 # QPS limit for Kubernetes API calls
--burst-limit 30 # Burst limit for Kubernetes API calls
# Authentication
--in-cluster # Use in-cluster authentication instead of kubeconfig
# Debugging
--debug # Enable debug logging
# Transport-specific options
--transport string # Transport type: stdio, sse, or streamable-http
--http-addr :8080 # HTTP server address (for sse and streamable-http)
--sse-endpoint /sse # SSE endpoint path
--message-endpoint /message # Message endpoint path
--http-endpoint /mcp # HTTP endpoint pathTo run mcp-kubernetes as a pod in your Kubernetes cluster:
apiVersion: v1
kind: ServiceAccount
metadata:
name: mcp-kubernetes
namespace: default
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: mcp-kubernetes
rules:
- apiGroups: [""]
resources: ["*"]
verbs: ["get", "list", "create", "update", "patch", "delete"]
- apiGroups: ["apps"]
resources: ["*"]
verbs: ["get", "list", "create", "update", "patch", "delete"]
- apiGroups: ["batch"]
resources: ["*"]
verbs: ["get", "list", "create", "update", "patch", "delete"]
# Add more API groups as needed
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: mcp-kubernetes
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: mcp-kubernetes
subjects:
- kind: ServiceAccount
name: mcp-kubernetes
namespace: defaultapiVersion: apps/v1
kind: Deployment
metadata:
name: mcp-kubernetes
namespace: default
spec:
replicas: 1
selector:
matchLabels:
app: mcp-kubernetes
template:
metadata:
labels:
app: mcp-kubernetes
spec:
serviceAccountName: mcp-kubernetes
containers:
- name: mcp-kubernetes
image: ghcr.io/giantswarm/mcp-kubernetes:latest
args:
- "serve"
- "--in-cluster"
- "--transport=sse"
- "--http-addr=:8080"
ports:
- containerPort: 8080
name: http
resources:
requests:
cpu: 100m
memory: 128Mi
limits:
cpu: 500m
memory: 512MiThe MCP server provides the following tools:
k8s_get_resource- Get a specific resourcek8s_list_resources- List resources with paginationk8s_describe_resource- Get detailed resource informationk8s_create_resource- Create a new resourcek8s_apply_resource- Apply resource configurationk8s_delete_resource- Delete a resourcek8s_patch_resource- Patch a resourcek8s_scale_resource- Scale deployments, replicasets, statefulsets
k8s_get_pod_logs- Get logs from pod containersk8s_exec_pod- Execute commands in pod containersk8s_port_forward_pod- Set up port forwarding to podsk8s_port_forward_service- Set up port forwarding to services
k8s_list_contexts- List available Kubernetes contextsk8s_get_current_context- Get the current contextk8s_switch_context- Switch to a different context
k8s_get_api_resources- Get available API resourcesk8s_get_cluster_health- Get cluster health information
make buildmake testmake lint- The server runs in non-destructive mode by default
- Supports dry-run mode for safe operation testing
- Allows restriction of operations and namespaces
- Follows Kubernetes RBAC when using in-cluster authentication
This project is licensed under the Apache License 2.0 - see the LICENSE file for details.