alexei-led/k8s-mcp-server
MCP server that securely runs kubectl, helm, istioctl, and argocd in a sandbox.
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for alexei-led/k8s-mcp-server, derived from its capabilities.
AIVSS 7.9 ยท High
View MAESTRO 7-layer threat model โOverview
This server empowers AI assistants to securely execute Kubernetes CLI commands (kubectl, helm, istioctl, argocd) using Unix pipes in a Docker environment. It gives agents cluster control through familiar CLIs. Arbitrary Kubernetes command execution and kubeconfig scope are the core security surfaces.
Key features
- kubectl/helm/istioctl/argocd
- Unix pipe support
- Dockerized sandbox
- Multi-arch support
Use cases
- Kubernetes ops via natural language
- Running cluster CLIs through agents