npm - mcp-server-kubernetes - Versions diffs - 2.0.0 → 2.1.1 - Mend

mcp-server-kubernetes 2.0.0 → 2.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/README.md +42 -6
package/dist/index.js +2 -1
package/dist/tools/kubectl-generic.js +1 -1
package/dist/utils/kubernetes-manager.d.ts +4 -0
package/dist/utils/kubernetes-manager.js +21 -3
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -175,6 +175,25 @@ For Claude Desktop configuration with non-destructive mode:
 }
 ```
+### Commands Available in Non-Destructive Mode
+All read-only and resource creation/update operations remain available:
+- Resource Information: `kubectl_get`, `kubectl_describe`, `kubectl_list`, `kubectl_logs`, `explain_resource`, `list_api_resources`
+- Resource Creation/Modification: `kubectl_apply`, `kubectl_create`, `kubectl_scale`, `kubectl_patch`, `kubectl_rollout`
+- Helm Operations: `install_helm_chart`, `upgrade_helm_chart`
+- Connectivity: `port_forward`, `stop_port_forward`
+- Context Management: `kubectl_context`
+### Commands Disabled in Non-Destructive Mode
+The following destructive operations are disabled:
+- `kubectl_delete`: Deleting any Kubernetes resources
+- `uninstall_helm_chart`: Uninstalling Helm charts
+- `cleanup`: Cleanup of managed resources
+- `kubectl_generic`: General kubectl command access (may include destructive operations)
 For additional advanced features, see the [ADVANCED_README.md](ADVANCED_README.md).
 ## Architecture
@@ -190,19 +209,34 @@ The sequence diagram below illustrates how requests flow through the system:
 ```mermaid
 sequenceDiagram
     participant Client
-    participant Transport as StdioTransport
+    participant Transport as Transport Layer
     participant Server as MCP Server
+    participant Filter as Tool Filter
     participant Handler as Request Handler
     participant K8sManager as KubernetesManager
     participant K8s as Kubernetes API
-    Client->>Transport: Send Request via STDIO
+    Note over Transport: StdioTransport or<br>SSE Transport
+    Client->>Transport: Send Request
     Transport->>Server: Forward Request
     alt Tools Request
-        Server->>Handler: Route to tools handler
-        Handler->>K8sManager: Execute kubectl operation
-        K8sManager->>K8s: Make API call
+        Server->>Filter: Filter available tools
+        Note over Filter: Remove destructive tools<br>if in non-destructive mode
+        Filter->>Handler: Route to tools handler
+        alt kubectl operations
+            Handler->>K8sManager: Execute kubectl operation
+            K8sManager->>K8s: Make API call
+        else Helm operations
+            Handler->>K8sManager: Execute Helm operation
+            K8sManager->>K8s: Make API call
+        else Port Forward operations
+            Handler->>K8sManager: Set up port forwarding
+            K8sManager->>K8s: Make API call
+        end
         K8s-->>K8sManager: Return result
         K8sManager-->>Handler: Process response
         Handler-->>Server: Return tool result
@@ -219,6 +253,8 @@ sequenceDiagram
     Transport-->>Client: Return Final Response
 ```
+See this [DeepWiki link](https://deepwiki.com/Flux159/mcp-server-kubernetes) for a more indepth architecture overview created by Devin.
 ## Publishing new release
 Go to the [releases page](https://github.com/Flux159/mcp-server-kubernetes/releases), click on "Draft New Release", click "Choose a tag" and create a new tag by typing out a new version number using "v{major}.{minor}.{patch}" semver format. Then, write a release title "Release v{major}.{minor}.{patch}" and description / changelog if necessary and click "Publish Release".
@@ -227,4 +263,4 @@ This will create a new tag which will trigger a new release build via the cd.yml
 ## Not planned
-Authentication / adding clusters to kubectx.
+Adding clusters to kubectx.

package/dist/index.js CHANGED Viewed

@@ -29,6 +29,7 @@ const destructiveTools = [
     kubectlDeleteSchema, // This replaces all individual delete operations
     uninstallHelmChartSchema,
     cleanupSchema, // Cleanup is also destructive as it deletes resources
+    kubectlGenericSchema, // Generic kubectl command can perform destructive operations
 ];
 // Get all available tools
 const allTools = [
@@ -181,7 +182,7 @@ if (process.env.ENABLE_UNSAFE_SSE_TRANSPORT) {
 }
 else {
     const transport = new StdioServerTransport();
-    console.log(`Starting Kubernetes MCP server v${serverConfig.version}, handling commands...`);
+    console.error(`Starting Kubernetes MCP server v${serverConfig.version}, handling commands...`);
     server.connect(transport);
 }
 ["SIGINT", "SIGTERM"].forEach((signal) => {

package/dist/tools/kubectl-generic.js CHANGED Viewed

@@ -97,7 +97,7 @@ export async function kubectlGeneric(k8sManager, input) {
         // Execute the command (join all args except the first "kubectl" which is used in execSync)
         const command = cmdArgs.slice(1).join(' ');
         try {
-            console.log(`Executing: kubectl ${command}`);
+            console.error(`Executing: kubectl ${command}`);
             const result = execSync(`kubectl ${command}`, { encoding: "utf8" });
             return {
                 content: [

package/dist/utils/kubernetes-manager.d.ts CHANGED Viewed

@@ -9,6 +9,10 @@ export declare class KubernetesManager {
     private k8sAppsApi;
     private k8sBatchApi;
     constructor();
+    /**
+     * A very simple test to check if the application is running inside a Kubernetes cluster
+     */
+    private isRunningInCluster;
     /**
      * Set the current context to the desired context name.
      *

package/dist/utils/kubernetes-manager.js CHANGED Viewed

@@ -1,4 +1,5 @@
 import * as k8s from "@kubernetes/client-node";
+import * as fs from "fs";
 export class KubernetesManager {
     resources = [];
     portForwards = [];
@@ -9,11 +10,28 @@ export class KubernetesManager {
     k8sBatchApi;
     constructor() {
         this.kc = new k8s.KubeConfig();
-        this.kc.loadFromDefault();
+        if (this.isRunningInCluster()) {
+            this.kc.loadFromCluster();
+        }
+        else {
+            this.kc.loadFromDefault();
+        }
         this.k8sApi = this.kc.makeApiClient(k8s.CoreV1Api);
         this.k8sAppsApi = this.kc.makeApiClient(k8s.AppsV1Api);
         this.k8sBatchApi = this.kc.makeApiClient(k8s.BatchV1Api);
     }
+    /**
+     * A very simple test to check if the application is running inside a Kubernetes cluster
+     */
+    isRunningInCluster() {
+        const serviceAccountPath = "/var/run/secrets/kubernetes.io/serviceaccount/token";
+        try {
+            return fs.existsSync(serviceAccountPath);
+        }
+        catch {
+            return false;
+        }
+    }
     /**
      * Set the current context to the desired context name.
      *
@@ -22,10 +40,10 @@ export class KubernetesManager {
     setCurrentContext(contextName) {
         // Get all available contexts
         const contexts = this.kc.getContexts();
-        const contextNames = contexts.map(context => context.name);
+        const contextNames = contexts.map((context) => context.name);
         // Check if the requested context exists
         if (!contextNames.includes(contextName)) {
-            throw new Error(`Context '${contextName}' not found. Available contexts: ${contextNames.join(', ')}`);
+            throw new Error(`Context '${contextName}' not found. Available contexts: ${contextNames.join(", ")}`);
         }
         // Set the current context
         this.kc.setCurrentContext(contextName);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "mcp-server-kubernetes",
-  "version": "2.0.0",
+  "version": "2.1.1",
   "description": "MCP server for interacting with Kubernetes clusters via kubectl",
   "license": "MIT",
   "type": "module",