Skip to main content
mcpFirst-partyLow risk Safety Privacy
Kubernetes logo

Kubernetes MCP Server - MCP Servers

Kubernetes cluster management and container orchestration through MCP integration

HarnessClaude CodeCodexCursorClaude Desktop

Citation facts

Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.

Brand
Kubernetes
Brand domain
kubernetes.io
Brand asset source
brandfetch
Package URL
/downloads/mcp/kubernetes-mcp-server.mcpb
Package SHA256
5a0d7f95e5cc33b35b4d5e3a2f6d4d02c2e6d8bbe50ea6601ac7cb1f95ea1b94
Safety notes
Use a least-privilege kubeconfig and selected context because cluster operations can affect production workloads and infrastructure.
Privacy notes
Resource specs, pod logs, namespaces, environment variables, secret names or values, and cluster metadata may be exposed.
Author
feiskyer
Claim status
unclaimed
Last verified
2025-09-20

Decision playbook

Ready to evaluate for your workflow

Signals are comparatively strong, but you should still validate source, privacy posture, and package provenance for your environment.

Compare context
Selected

0

Current score

96

Baseline

Delta

No baseline selected

No major trust-signal divergence detected in the current selection.

Source and provenance checks

Complete

Confirm ownership and provenance before trusting install instructions.

  • Source link availableRequired

    Open the canonical repository and verify ownership.

    Done
  • Source provenance statusRequired

    Marked as first-party.

    Done
  • Metadata reviewed

    Registry metadata indicates a reviewed listing.

    Done

Safety and privacy checks

Complete

Validate risk disclosures before installation or API wiring.

  • Safety notes presentRequired

    Review the listed safety guidance before running commands.

    Done
  • Privacy notes presentRequired

    Review data handling notes before connecting accounts or secrets.

    Done
  • Trust level risk gateRequired

    Trust level does not block evaluation.

    Done

Package and install checks

Complete

Check package metadata and artifact integrity signals.

  • Install payload available

    Install or copy payload is available for review.

    Done
  • Package verification flag

    Package marked verified.

    Done
  • Checksum metadata

    SHA-256 hash is present.

    Done

Compare-driven decision checks

Needs review

Use compare context to validate trade-offs before adoption.

  • Compare tray has multiple entries

    Add at least one more entry to compare trust differences.

    Pending
  • Baseline comparison available

    No baseline peer selected yet.

    Pending
  • Diverging trust signals identified

    No major trust-signal divergence found.

    Pending

Setup at a glance

Package install

Copy-ready — paste the snippet to get started.

3 minutes

Install command

Provided

Config snippet

Provided

Copy snippet

Provided

Prerequisites

10 to clear

Platforms

4 listed

Difficulty

10/100

Adoption plan

Balanced adoption plan

Current risk score 0/100. Use staged verification before broader rollout.

Risk 0

Pre-adoption checks

Validate source and review signals before any execution.

  • Confirm source provenanceRequired

    Source URL/provenance metadata is present.

    Done
  • Confirm metadata review state

    Listing has review metadata.

    Done
  • Verify install payload

    Install/config payload exists and can be inspected.

    Done

Security checks

Confirm safety, privacy, and package integrity signals.

  • Review safety notesRequired

    Safety notes are present.

    Done
  • Review privacy notesRequired

    Privacy notes are present.

    Done
  • Verify package integrity metadata

    Package verification/checksum metadata is available.

    Done

Rollout

Adopt in controlled steps based on the selected plan.

  • Run in isolated sandbox firstRequired

    Use a constrained sandbox and observe behavior across multiple tasks.

    Pending
  • Roll out graduallyRequired

    Roll out to a small cohort before wider usage.

    Pending
  • Set monitoring and fallback

    Define rollback path and monitor errors after adoption.

    Pending

Evidence readiness

Evidence readiness matrix · balanced

Required evidence gates are covered (6/6 signals complete).

Risk 0

Source provenance

Present

Source repository/provenance is listed.

Required in this preset

Metadata review

Present

Review metadata is present.

Required in this preset

Safety notes

Present

Safety notes are present.

Required in this preset

Privacy notes

Present

Privacy notes are present.

Optional in this preset

Package integrity

Present

Package integrity metadata is present.

Optional in this preset

Install payload

Present

Install payload is available.

Required in this preset

Required evidence gates are covered for this preset.

Decision timeline

Decision timeline · balanced

6/6 steps complete with no blocking gaps for this preset.

Risk 0

triage

Confirm source provenanceRequired

Source/provenance metadata is available.

Done

triage

Check metadata review statusRequired

Review metadata is available.

Done

verify

Review safety notesRequired

Safety notes are available.

Done

verify

Review privacy notes

Privacy notes are available.

Done

verify

Validate package integrity metadata

Package integrity metadata is available.

Done

rollout

Verify install payload and commandsRequired

Install payload is available.

Done

No required blockers for this timeline preset.

Prerequisite readiness

Prerequisite readiness

10 prerequisites to line up before setup.

0/10 ready
Install & runtime6Configuration1Permissions & scopes1Network & hosting23 minutes

Safety & privacy surface

Safety & privacy surface

1 safety and 1 privacy notes across 2 risk areas. Review closely: credentials & tokens.

2 areas
  • SafetyGeneralUse a least-privilege kubeconfig and selected context because cluster operations can affect production workloads and infrastructure.
  • PrivacyCredentials & tokensResource specs, pod logs, namespaces, environment variables, secret names or values, and cluster metadata may be exposed.

Safety notes

  • Use a least-privilege kubeconfig and selected context because cluster operations can affect production workloads and infrastructure.

Privacy notes

  • Resource specs, pod logs, namespaces, environment variables, secret names or values, and cluster metadata may be exposed.

Prerequisites

  • Kubernetes cluster access (local, cloud, or remote cluster)
  • kubectl installed and configured (version within ±1 minor version of cluster)
  • kubeconfig file configured at ~/.kube/config (or custom path via KUBECONFIG environment variable)
  • uvx package manager installed (for uvx installation method) or Docker (for Docker installation method)
  • Appropriate RBAC permissions for desired operations (cluster-admin, view, edit, or custom roles)
  • Network access to Kubernetes API server endpoint
  • Understanding of Kubernetes concepts (pods, deployments, services, namespaces, ConfigMaps, Secrets)
  • Claude Desktop 0.7.0+ or Claude Code with MCP support
  • Understanding of container orchestration and cluster management concepts
  • Optional: Helm installed for Helm chart operations (can be disabled via --disable-helm flag)

Schema details

Install type
package
Reading time
1 min
Difficulty score
10
Troubleshooting
Yes
Breaking changes
No
Source repository stats
Scope
Source repo
Package metadata
Package verified
Yes
SHA-256
5a0d7f95e5cc33b35b4d5e3a2f6d4d02c2e6d8bbe50ea6601ac7cb1f95ea1b94
Skill and platform metadata
Retrieval sources
https://github.com/feiskyer/mcp-kubernetes-server
Collection metadata
Estimated setup
3 minutes
Difficulty
intermediate
Full copyable content
{
  "kubernetes": {
    "env": {
      "KUBECONFIG": "${KUBECONFIG:-~/.kube/config}"
    },
    "args": [
      "mcp-kubernetes-server"
    ],
    "command": "uvx"
  }
}

About this resource

Content

Streamline your Kubernetes cluster management by connecting Claude to your Kubernetes API. Deploy and manage applications, monitor cluster health, scale workloads, manage secrets and configurations, troubleshoot issues, and automate operations—all through natural language commands. Leverage kubectl and Helm operations seamlessly with RBAC-aware access control.

Features

  • Cluster resource management (pods, deployments, services, ingress)
  • Pod and deployment operations (create, update, scale, delete)
  • Service and ingress configuration (load balancing and routing)
  • Namespace management (create, list, switch contexts)
  • ConfigMap and Secret handling (secure configuration management)
  • Real-time cluster monitoring (resource usage, health checks, logs)
  • Helm chart operations (install, upgrade, uninstall charts - optional)
  • Advanced kubectl operations (port-forward, exec, logs, describe)
  • Advanced Kubernetes cluster and resource management with deployment orchestration, service configuration, and monitoring integration
  • Batch operations support for efficient bulk resource operations, namespace management, and deployment workflows with automatic retry logic
  • Real-time cluster monitoring capabilities with event streaming support for tracking resource lifecycle and triggering automated workflows

Use Cases

  • Deploy and manage containerized applications with natural language commands
  • Monitor cluster health and resource usage in real-time
  • Scale workloads based on demand (horizontal and vertical scaling)
  • Manage secrets and configuration data securely across namespaces
  • Troubleshoot deployment issues with automated log retrieval and diagnostics
  • Automate cluster operations and maintenance tasks
  • Perform advanced debugging with port-forwarding and exec commands
  • Manage Helm releases and chart deployments programmatically
  • Build automated infrastructure management workflows that sync external systems with Kubernetes for real-time cluster management and deployment automation

Installation

Claude Code

  1. Ensure kubectl is installed and kubeconfig is configured at ~/.kube/config
  2. claude mcp add kubernetes --env KUBECONFIG=/path/to/your/kubeconfig -- uvx mcp-kubernetes-server
  3. Verify installation: claude mcp list
  4. Test connection: claude mcp status kubernetes
  5. Verify cluster access: Ask Claude to list pods in default namespace

Claude Desktop

  1. Ensure kubectl is installed and kubeconfig is configured at ~/.kube/config
  2. Install via uvx: uvx mcp-kubernetes-server
  3. Set KUBECONFIG environment variable to your kubeconfig path
  4. Open your Claude Desktop configuration file (see configPath below)
  5. Add server configuration with KUBECONFIG environment variable
  6. Restart Claude Desktop
  7. Verify cluster access: Ask Claude to list pods in default namespace

Requirements

  • Kubernetes cluster access (local, cloud, or remote cluster)
  • kubectl installed and configured (version within ±1 minor version of cluster)
  • kubeconfig file configured at ~/.kube/config (or custom path via KUBECONFIG environment variable)
  • uvx package manager installed (for uvx installation method) or Docker (for Docker installation method)
  • Appropriate RBAC permissions for desired operations (cluster-admin, view, edit, or custom roles)
  • Network access to Kubernetes API server endpoint
  • Understanding of Kubernetes concepts (pods, deployments, services, namespaces, ConfigMaps, Secrets)
  • Claude Desktop 0.7.0+ or Claude Code with MCP support
  • Understanding of container orchestration and cluster management concepts
  • Optional: Helm installed for Helm chart operations (can be disabled via --disable-helm flag)

Configuration

{
  "kubernetes": {
    "env": {
      "KUBECONFIG": "${KUBECONFIG:-~/.kube/config}"
    },
    "args": ["mcp-kubernetes-server"],
    "command": "uvx"
  }
}

Examples

List all pods in the default namespace

Common usage pattern for this MCP server

Ask Claude: "List all pods in the default namespace"

Create a new deployment with specified image

Common usage pattern for this MCP server

Ask Claude: "Create a new deployment with specified image"

Scale a deployment to 5 replicas

Common usage pattern for this MCP server

Ask Claude: "Scale a deployment to 5 replicas"

Get cluster node information and status

Common usage pattern for this MCP server

Ask Claude: "Get cluster node information and status"

Deploy Application

Create a Kubernetes deployment with replica configuration

// Deploy application to Kubernetes
const deployment = await k8s.apps.v1.deployments.create({
  namespace: "default",
  body: {
    metadata: { name: "my-app" },
    spec: {
      replicas: 3,
      selector: { matchLabels: { app: "my-app" } },
      template: {
        metadata: { labels: { app: "my-app" } },
        spec: { containers: [{ name: "app", image: "nginx:latest" }] },
      },
    },
  },
});

Security

  • Uses kubeconfig for authentication (supports multiple authentication methods)
  • Respects existing RBAC permissions (cluster-scoped access controls)
  • Secure kubectl API integration (TLS-encrypted communication)
  • Cluster-scoped access controls (verify permissions before operations)
  • Monitor kubectl operations and review audit logs for security compliance
  • Kubernetes API access grants full cluster control - ensure kubeconfig credentials and service account tokens are securely stored and never exposed in client-side code or public repositories
  • Kubernetes service account tokens and kubeconfig files must be securely managed - use environment variables, secret management systems, and secure credential storage
  • Kubernetes namespace, pod, and deployment names may expose infrastructure architecture and application structure - ensure Kubernetes resource identifiers are kept private and not shared in public configurations
  • Rate limiting and API quota management are critical for Kubernetes MCP servers - implement proper rate limit handling, retry logic, and quota monitoring to prevent service disruption
  • Kubernetes webhook configurations and payloads may contain sensitive cluster and resource metadata - ensure webhook endpoints are properly secured with authentication and HTTPS encryption

Troubleshooting

Unauthorized: server has asked for client credentials

Verify kubeconfig file is correctly configured at ~/.kube/config. Check IAM entity is authenticated by cluster. Run kubectl config view to verify context and credentials are set properly. Ensure kubeconfig file has valid certificates and hasn't expired. For cloud providers (EKS, GKE, AKS), regenerate kubeconfig using provider-specific commands (e.g., aws eks update-kubeconfig --name cluster-name).

Connection refused: localhost:8080 error

Set KUBECONFIG environment variable to correct path. Export KUBECONFIG=~/.kube/config or specify in MCP server config. Verify kubeconfig file exists and has valid cluster endpoint, not localhost:8080. Check cluster API server URL in kubeconfig matches your actual cluster endpoint. For remote clusters, ensure network connectivity and firewall rules allow access.

RBAC permission denied for cluster operations

Verify your user has appropriate RBAC permissions. Check if IAM principal needs system:masters group for admin access. For EKS, use access entries with API or API_AND_CONFIG_MAP authentication mode. Review RoleBinding or ClusterRoleBinding to ensure your user/service account has required permissions. Use kubectl auth can-i <verb> <resource> to test permissions.

kubectl version incompatibility with cluster

Ensure kubectl version within ±1 minor version of cluster. For Kubernetes 1.29 cluster, use kubectl 1.28-1.30. Run kubectl version --client and kubectl version to check client and server versions. Update kubectl if needed using official installation methods. Version skew can cause unexpected behavior and API compatibility issues.

TLS certificate errors or chain of trust invalid

Check certificate hasn't expired: kubectl config view --raw. Verify CA certificate in kubeconfig matches cluster CA. For EKS, regenerate kubeconfig: aws eks update-kubeconfig --name cluster-name. For self-signed certificates, ensure CA certificate is properly included in kubeconfig. Check certificate validity dates and renew if expired.

Kubernetes MCP server authentication errors with kubeconfig

Verify kubeconfig file is valid and accessible. Check certificate expiration dates. Ensure service account token is valid. For remote clusters, verify network connectivity and TLS certificate configuration.

Kubernetes resource creation or update failures

Check resource quotas and limits in namespace. Verify RBAC permissions allow resource creation. Ensure resource specifications are valid. Check cluster capacity and node resources. Review Kubernetes API server logs for detailed errors.

Kubernetes MCP server connection timeouts or network errors

Check network connectivity to Kubernetes API server. Verify kubeconfig points to correct cluster endpoint. Increase request timeout values. Implement connection pooling and retry mechanisms with exponential backoff.

Kubernetes pod or deployment failures

Check pod logs for application errors. Verify image pull secrets are configured correctly. Check resource requests and limits. Ensure container images are accessible. Review events using kubectl get events for detailed error information.

Source citations

Add this badge to your README

Show that Kubernetes MCP Server - MCP Servers is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.

Listed on HeyClaude
[![Listed on HeyClaude](https://heyclau.de/badge/mcp/kubernetes-mcp-server.svg)](https://heyclau.de/entry/mcp/kubernetes-mcp-server)

How it compares

Kubernetes MCP Server - MCP Servers side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.

3 trust signals differ across this comparison (Package trust, Source provenance, Submitter).

Field

Kubernetes cluster management and container orchestration through MCP integration

Open dossier

Manage Docker containers, images, and services directly through Claude with comprehensive Docker API integration

Open dossier

Argo Project Labs MCP server for connecting Claude to Argo CD applications, clusters, managed resources, workload logs, events, sync operations, and resource actions through stdio or HTTP stream transports.

Open dossier

MIT-licensed Kubernetes gateway and management layer for MCP servers, with session-aware routing, adapter lifecycle APIs, tool registration, Entra ID role authorization, and optional agent/session preview resources.

Open dossier
Next steps
Trust
Review statusReviewedMaintainer reviewedReviewedMaintainer reviewedReviewedMaintainer reviewedReviewedMaintainer reviewed
Package trustDiffersPackage verifiedPackage verifiedPackage not verifiedPackage not verified
Source provenanceDiffersSource-backedNo submission linkSource-backedSource-backed
SubmitterDiffersoktofeesh1oktofeesh1
Install riskLow riskLow riskReview firstReview first
Notes Safety Privacy Safety Privacy Safety Privacy Safety Privacy
BrandKubernetes logoKubernetesDocker logoDockerArgo CD logoArgo CDMicrosoft MCP Gateway logoMicrosoft MCP Gateway
Categorymcpmcpmcpmcp
Sourcefirst-partyfirst-partysource-backedsource-backed
AuthorfeiskyerJSONboredArgo Project Labsmicrosoft
Added2025-09-202025-09-162026-06-062026-06-06
Platforms
Claude CodeCodexCursorClaude Desktop
Claude CodeClaude Desktop
Claude CodeClaude Desktop
Claude CodeClaude Desktop
Source repo
Safety notesUse a least-privilege kubeconfig and selected context because cluster operations can affect production workloads and infrastructure.Restrict Docker daemon access because container operations can start, stop, delete, or expose workloads and host-mounted paths.Argo CD MCP can inspect clusters, applications, resource trees, managed resources, workload logs, and resource events. By default all tools are available; setting MCP_READ_ONLY to true disables create_application, update_application, delete_application, sync_application, and run_resource_action. sync_application can apply changes to Kubernetes resources and may prune resources depending on options. delete_application can remove Argo CD applications and may cascade deletion to child resources depending on options. run_resource_action can trigger actions on resources managed by an application. Disabling TLS certificate validation with NODE_TLS_REJECT_UNAUTHORIZED weakens transport security and should be limited to reviewed development contexts.Microsoft MCP Gateway can deploy, update, delete, and route MCP server adapters in Kubernetes through its management API. The dynamic `/mcp` tool router can route tool calls to registered tool servers, so tool definitions and execution endpoints must be reviewed before registration. Adapter and tool write access is limited to the creator or `mcp.admin`, while read access depends on creator, admin, and configured required roles. The optional agents and sessions subsystem is documented as preview and single-replica; built-in bash and file tools run in the gateway pod and are not a production sandbox. Proxying local stdio servers into remotely accessible services can expose local tools and workload identity permissions if access controls are too broad.
Privacy notesResource specs, pod logs, namespaces, environment variables, secret names or values, and cluster metadata may be exposed.Image names, container logs, environment variables, volume paths, compose files, and registry metadata may be exposed through tool calls.Argo CD application specs, cluster names, repository URLs, revisions, namespaces, Kubernetes manifests, resource events, and workload logs can reveal secrets, internal topology, deployment history, incident details, or customer data. ARGOCD_BASE_URL, ARGOCD_API_TOKEN, stateless HTTP request headers, cluster names, namespace names, and application names should stay out of prompts, issues, logs, screenshots, and committed files. Workload logs and resource events may include credentials, tokens, environment variables, error traces, or production incident context. HTTP transport should be authenticated and network-restricted so Argo CD tools are not reachable by untrusted clients.The gateway may process bearer tokens, Entra ID role claims, adapter metadata, registered tool schemas, session IDs, MCP requests, tool arguments, tool results, logs, container image names, environment variables, and Kubernetes deployment status. Adapter logs and session streams can reveal prompts, tool inputs, tool outputs, upstream MCP responses, and internal service names. Workload identity, Azure resource access, Foundry settings, and MCP proxy environment variables can expose cloud permissions if logged or shared. Store tokens, role assignments, registry credentials, deployment payloads, and model provider settings in controlled secrets rather than committed examples.
Prerequisites
  • Kubernetes cluster access (local, cloud, or remote cluster)
  • kubectl installed and configured (version within ±1 minor version of cluster)
  • kubeconfig file configured at ~/.kube/config (or custom path via KUBECONFIG environment variable)
  • uvx package manager installed (for uvx installation method) or Docker (for Docker installation method)
  • Docker installed and running (Docker Desktop for Mac/Windows, Docker Engine for Linux)
  • Docker daemon accessible (via Unix socket /var/run/docker.sock or TCP connection)
  • User permissions to access Docker daemon socket (user in docker group on Linux: sudo usermod -aG docker $USER)
  • Docker MCP Toolkit enabled in Docker Desktop (Settings > Beta features > MCP Toolkit), which provides the `docker mcp` CLI plugin and the MCP Gateway
  • Node.js 18 or newer.
  • Argo CD instance with API access.
  • Argo CD API token scoped to the minimum applications, projects, clusters, and actions Claude should use.
  • Read-only mode enabled unless the workflow explicitly needs application or resource mutations.
  • Kubernetes cluster access with permission to deploy gateway, adapter, tool router, and sample MCP server workloads.
  • .NET 8 SDK, Docker Desktop, local registry, and Kubernetes enabled for the documented local deployment flow.
  • MCP server images built and pushed to the registry used by the gateway deployment.
  • Bearer authentication, Entra ID app roles, `mcp.admin`, and per-resource `requiredRoles` configured before exposing management APIs.
Install
claude mcp add kubernetes --env KUBECONFIG=/path/to/your/kubeconfig -- uvx mcp-kubernetes-server && claude mcp list
docker mcp client connect claude-code && claude mcp list
npx argocd-mcp@latest stdio
kubectl apply -f deployment/k8s/local-deployment.yml
Config
{
  "mcpServers": {
    "kubernetes": {
      "env": {
        "KUBECONFIG": "${KUBECONFIG:-~/.kube/config}"
      },
      "args": [
        "mcp-kubernetes-server"
      ],
      "command": "uvx",
      "type": "stdio"
    }
  }
}
{
  "mcpServers": {
    "MCP_DOCKER": {
      "command": "docker",
      "args": [
        "mcp",
        "gateway",
        "run"
      ],
      "type": "stdio"
    }
  }
}
{
  "mcpServers": {
    "argocd-mcp": {
      "command": "npx",
      "args": ["argocd-mcp@latest", "stdio"],
      "env": {
        "ARGOCD_BASE_URL": "<argocd-url>",
        "ARGOCD_API_TOKEN": "<argocd-token>",
        "MCP_READ_ONLY": "true"
      }
    }
  }
}
{
  "mcpServers": {
    "microsoft-mcp-gateway": {
      "url": "http://localhost:8000/mcp",
      "type": "http"
    }
  }
}
Citations
ClaimUnclaimedUnclaimedUnclaimedUnclaimed
Open 4 picks in the interactive comparison tool

Related guides

Signals

Loading live community signals…

More like this, weekly

A short, calm digest of reviewed Claude resources. Unsubscribe any time.