Registry/Kubernetes MCP Server

Kubernetes MCP Server

v3.9.3
Verified

MCP server for interacting with Kubernetes clusters via kubectl

By CommunityMIT
go
developer tools
1.6Kstars
38.0Kdownloads
210forks
Scanned Jul 13, 2026
WebsiteRepositoryGITHUB
F0%
Scanned 5d ago

Critical Issues

Vulnerabilities Found
67Crit
83High
434Med
2Low
0Info

Security ScoreF

0
out of 100

Vulnerabilities Found

67
Crit
83
High
434
Medi
2
Low
0
Info
Last scanned: 7/13/2026

Quality ScoreB

77
out of 100
62
Maint.
84
Popular
100
Docs
67
Compat
Maintenance62%
Popularity84%
Documentation100%
Compatibility67%

Maintenance62

Unknown
Commit Frequency65%
Release Frequency70%
Issue Response45%

Popularity84

1.6K
Stars
38.0K
Downloads
210
Forks
Stars Score89%
Downloads Score82%
Forks Score81%

Documentation100

README Quality100%

Available Documentation

API DocsExamplesChangelog

Compatibility67

MCP Spec Compliance80%
Transport Support50%

Features

TypeScript

Supported Transports

STDIO

Agentic MCP Risk Intelligence

MCPSafe checks risks unique to AI-connected MCP servers — prompt surfaces, model-controlled tools, credentials, filesystems, and network reachability.

12
agentic findings
Severe agentic exposure

Multiple MCP-native exploit paths were detected. Review before connecting this server to an AI client.

Prompt Injection Surface
1

Tool metadata can steer or hijack AI clients before a user invokes the tool.

AI → Command Execution
1

Model-selected tool arguments can reach shell/process execution.

Secret Exfiltration Path
0

Tool context combines credential access with outbound network capability.

Unbounded Filesystem
10

AI-controlled paths may access files outside the intended workspace.

Agent SSRF
0

AI-controlled URLs may reach local, metadata, or internal network services.

Vulnerabilities(586)

67Critical
83High
434Medium
2Low
Filter:

READMEKubernetes MCP Server

View source

MCP Server Kubernetes

⚠️ SECURITY CONCERN: OVER-PERMISSIVE RBAC ⚠️

Issue

The default RBAC configuration grants cluster-admin level permissions, including:

  • Full access to all secrets
  • Ability to create/delete pods in any namespace
  • Access to service accounts

Risk

If an AI assistant is compromised or manipulated, it could:

  1. Exfiltrate secrets (API keys, passwords)
  2. Deploy malicious containers
  3. Disrupt cluster operations

Recommendation

  1. Create a restricted ServiceAccount
  2. Use namespace-scoped roles
  3. Deny access to secrets by default
  4. Enable audit logging

Current Status

Maintainers have been notified but have not updated default configuration.

Embed Security Badge

Add this badge to your README or documentation

Kubernetes MCP Server MCPSafe Security
[![Kubernetes MCP Server MCPSafe Security](https://api.mcpsafe.org
/api/badge/mcp-server-kubernetes-insecure.svg)](https://mcpsafe.org/registry/mcp-server-kubernetes-insecure)
Need more customization options?Badge Documentation

Server Information

Source
GITHUB
Package
mcp-server-kubernetes
Version
3.9.3
Language
go
License
MIT
Transport
STDIO
Added
Jan 20, 2026
Updated
Jul 13, 2026