npm - kubectl-mcp-server - Versions diffs - 1.9.0 → 1.10.0 - Mend

kubectl-mcp-server 1.9.0 → 1.10.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +107 -2
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -9,7 +9,7 @@ A Model Context Protocol (MCP) server for Kubernetes that enables AI assistants
 [![PyPI](https://img.shields.io/pypi/v/kubectl-mcp-tool?color=blue&label=PyPI)](https://pypi.org/project/kubectl-mcp-tool/)
 [![npm](https://img.shields.io/npm/v/kubectl-mcp-server?color=green&label=npm)](https://www.npmjs.com/package/kubectl-mcp-server)
 [![Docker](https://img.shields.io/docker/pulls/rohitghumare64/kubectl-mcp-server.svg)](https://hub.docker.com/r/rohitghumare64/kubectl-mcp-server)
-[![Tests](https://img.shields.io/badge/tests-135%20passed-success)](https://github.com/rohitg00/kubectl-mcp-server)
+[![Tests](https://img.shields.io/badge/tests-167%20passed-success)](https://github.com/rohitg00/kubectl-mcp-server)
 ## MCP Client Compatibility
@@ -315,6 +315,29 @@ python -m kubectl_mcp_tool.mcp_server --transport http --port 8000
 | `MCP_DEBUG` | Set to `1` for verbose logging |
 | `MCP_LOG_FILE` | Path to log file |
+### Authentication (Enterprise)
+| Variable | Description |
+|----------|-------------|
+| `MCP_AUTH_ENABLED` | Enable OAuth 2.1 authentication (default: `false`) |
+| `MCP_AUTH_ISSUER` | OAuth 2.0 Authorization Server URL |
+| `MCP_AUTH_JWKS_URI` | JWKS endpoint (optional, derived from issuer) |
+| `MCP_AUTH_AUDIENCE` | Expected token audience (default: `kubectl-mcp-server`) |
+| `MCP_AUTH_REQUIRED_SCOPES` | Required scopes (default: `mcp:tools`) |
+## MCP Authorization (RFC 9728)
+For enterprise deployments, kubectl-mcp-server supports OAuth 2.1 authentication.
+```bash
+export MCP_AUTH_ENABLED=true
+export MCP_AUTH_ISSUER=https://your-idp.example.com
+export MCP_AUTH_AUDIENCE=kubectl-mcp-server
+kubectl-mcp-server --transport http --port 8000
+```
+Supported identity providers: **Okta**, **Auth0**, **Keycloak**, **Microsoft Entra ID**, **Google OAuth**, and any OIDC-compliant provider.
 ## Docker MCP Toolkit
 Compatible with [Docker MCP Toolkit](https://docs.docker.com/ai/mcp-catalog-and-toolkit/toolkit/):
@@ -331,6 +354,88 @@ docker mcp server enable kubectl-mcp-server
 docker mcp client connect claude
 ```
+## Kubernetes Deployment
+Deploy kubectl-mcp-server directly in your Kubernetes cluster for centralized access.
+### kMCP Deployment (Recommended)
+[kMCP](https://github.com/kagent-dev/kmcp) is a development platform and control plane for MCP servers. See [kMCP quickstart](https://kagent.dev/docs/kmcp/quickstart).
+```bash
+# Install kmcp CLI
+curl -fsSL https://raw.githubusercontent.com/kagent-dev/kmcp/refs/heads/main/scripts/get-kmcp.sh | bash
+# Install kmcp controller in your cluster
+helm install kmcp-crds oci://ghcr.io/kagent-dev/kmcp/helm/kmcp-crds \
+     --namespace kmcp-system --create-namespace
+kmcp install
+# Deploy kubectl-mcp-server using npx (easiest)
+kmcp deploy package --deployment-name kubectl-mcp-server \
+   --manager npx --args kubectl-mcp-server
+# Or deploy using our Docker image with the MCPServer manifest
+kmcp deploy --file deploy/kmcp/kmcp.yaml --image rohitghumare64/kubectl-mcp-server:latest
+```
+### Standard Kubernetes Deployment
+Deploy using kubectl/kustomize without kMCP:
+```bash
+# Using kustomize (recommended)
+kubectl apply -k deploy/kubernetes/
+# Or apply individual manifests
+kubectl apply -f deploy/kubernetes/namespace.yaml
+kubectl apply -f deploy/kubernetes/rbac.yaml
+kubectl apply -f deploy/kubernetes/deployment.yaml
+kubectl apply -f deploy/kubernetes/service.yaml
+# Access via port-forward
+kubectl port-forward -n kubectl-mcp svc/kubectl-mcp-server 8000:8000
+```
+### MCPServer Custom Resource
+For kMCP deployments, apply this MCPServer resource:
+```yaml
+apiVersion: kagent.dev/v1alpha1
+kind: MCPServer
+metadata:
+  name: kubectl-mcp-server
+spec:
+  deployment:
+    image: "rohitghumare64/kubectl-mcp-server:latest"
+    port: 8000
+  transportType: http
+  httpTransport:
+    targetPort: 8000
+    path: /mcp
+```
+See [deploy/](deploy/) for full manifests and configuration options.
+### kagent Integration (AI Agents)
+[kagent](https://github.com/kagent-dev/kagent) is a Kubernetes-native AI agent framework (CNCF project). Register kubectl-mcp-server as a ToolServer to give your agents 121 K8s management tools.
+```bash
+# Install kagent
+brew install kagent
+kagent install --profile demo
+# Register kubectl-mcp-server as a ToolServer
+kubectl apply -f deploy/kagent/toolserver-stdio.yaml
+# Open kagent dashboard and chat with your K8s agent
+kagent dashboard
+```
+See [kagent quickstart](https://kagent.dev/docs/kagent/getting-started/quickstart) for full documentation.
 ## Architecture
 ```
@@ -422,7 +527,7 @@ tests/
 └── test_server.py       # Server initialization tests
 ```
-**135 tests covering**: tool registration, resource exposure, prompt generation, server initialization, non-destructive mode, secret masking, error handling, and transport methods.
+**138 tests covering**: tool registration, resource exposure, prompt generation, server initialization, non-destructive mode, secret masking, error handling, and transport methods.
 ### Code Quality

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "kubectl-mcp-server",
-  "version": "1.9.0",
+  "version": "1.10.0",
   "description": "A Model Context Protocol (MCP) server for Kubernetes that enables AI assistants like Claude, Cursor, and others to interact with Kubernetes clusters through natural language",
   "keywords": [
     "kubernetes",