Kubernetes MCP Server
MCP server for interacting with Kubernetes clusters via kubectl
Critical Issues
Security ScoreF
Vulnerabilities Found
Quality ScoreB
Maintenance62
Popularity84
Documentation100
Available Documentation
Compatibility67
Features
Supported Transports
Agentic MCP Risk Intelligence
MCPSafe checks risks unique to AI-connected MCP servers — prompt surfaces, model-controlled tools, credentials, filesystems, and network reachability.
Multiple MCP-native exploit paths were detected. Review before connecting this server to an AI client.
Tool metadata can steer or hijack AI clients before a user invokes the tool.
Model-selected tool arguments can reach shell/process execution.
Tool context combines credential access with outbound network capability.
AI-controlled paths may access files outside the intended workspace.
AI-controlled URLs may reach local, metadata, or internal network services.
Vulnerabilities(586)
READMEKubernetes MCP Server
View sourceMCP Server Kubernetes
⚠️ SECURITY CONCERN: OVER-PERMISSIVE RBAC ⚠️
Issue
The default RBAC configuration grants cluster-admin level permissions, including:
- Full access to all secrets
- Ability to create/delete pods in any namespace
- Access to service accounts
Risk
If an AI assistant is compromised or manipulated, it could:
- Exfiltrate secrets (API keys, passwords)
- Deploy malicious containers
- Disrupt cluster operations
Recommendation
- Create a restricted ServiceAccount
- Use namespace-scoped roles
- Deny access to secrets by default
- Enable audit logging
Current Status
Maintainers have been notified but have not updated default configuration.
Embed Security Badge
Add this badge to your README or documentation
[](https://mcpsafe.org/registry/mcp-server-kubernetes-insecure)Server Information
- Source
- GITHUB
- Package
- mcp-server-kubernetes
- Version
- 3.9.3
- Language
- go
- License
- MIT
- Transport
- STDIO
- Added
- Jan 20, 2026
- Updated
- Jul 13, 2026