logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

cert-mgr-k8s-interface-srv

A dedicated MCP intermediary for administering and diagnosing Certificate Authority resources managed by the cert-manager system within Kubernetes.

Author

MCP Server

pibblokto

Apache License 2.0

Quick Info

GitHub GitHub Stars 16
NPM Weekly Downloads 0
Tools 1
Last Updated 2026-02-19

Actions

GitHub View on GitHub

Tags

certcloudpibbloktocert managercloud platformscloud platform

cert-mgr-k8s-interface-srv

This is the backend server component for the MCP interface, specifically designed to facilitate the management and deep inspection of certificate objects and related resources governed by the cert-manager project running inside a Kubernetes cluster.

Configuration for Desktop Environment

Use the following snippet in your local Claude Desktop configuration file to establish connectivity:

{
  "mcpServers": {
    "cert-manager-mcp-server": {
      "command": "sh",
      "args": [
        "-c",
        "docker run -i --rm -v ~/.kube:/home/app/.kube:ro -v ~/.config/gcloud:/home/app/.config/gcloud piblokto/cert-manager-mcp-server:v0.0.5"
      ]
    }
  }
}

Configuration for GKE Clusters

For environments leveraging Google Kubernetes Engine (GKE), the server configuration requires environment variable injection for project and region context:

{
  "mcpServers": {
    "cert-manager-mcp-server": {
      "command": "sh",
      "args": [
        "-c",
        "docker run -i --rm -v ~/.kube:/home/app/.kube:ro -v ~/.config/gcloud:/home/app/.config/gcloud -e CLOUDSDK_CORE_PROJECT=<DEFAULT_PROJECT_ID> -e CLOUDSDK_COMPUTE_REGION=<DEFAULT_COMPUTE_REGION> piblokto/cert-manager-mcp-server:v0.0.5"
      ]
    }
  }
}

Available Functionality

This service exposes a set of powerful functions tailored for interacting with cert-manager resources and general cluster context introspection.

Certificate Lifecycle Operations

  • list_certificates: Provides a comprehensive roster of certificates, optionally scoped to a specific namespace or the entire cluster. Supports filtering for lapsed certificates and includes domain details upon request (default behavior omits domains for conciseness).
  • get_certificate: Retrieves granular, detailed status information for an individual certificate entity.
  • renew_certificate: Triggers an immediate, forceful reconciliation cycle to prompt the issuance of a new certificate.

Certificate Authority (Issuer) Administration

  • list_issuers: Displays configuration and current operational status for both namespaced Issuers and ClusterIssuers. Filtering is restricted to namespace selection or explicit cluster-level listing.

Cluster Environment Probing

  • list_namespaces: Enumerates all active Kubernetes namespaces.
  • list_contexts: Reports the full set of configuration contexts available in the loaded kubeconfig file.
  • get_current_context: Identifies the context currently in use.
  • switch_context: Modifies the active kubeconfig context setting within the session's memory space.

Function Inventory

Tool Name Purpose Summary Access Mode Input Arguments
list_certificates Retrieve certificate listings with filtering capabilities. Read Only namespace_name, all_namespaces, include_domains, list_expired, cursor, page_size
get_certificate Fetch detailed attributes of a specific certificate. Read Only namespace_name, certificate_name
renew_certificate Initiate an expedited certificate renewal process. Write namespace_name, certificate_name
list_issuers Display status and definition of Issuers/ClusterIssuers. Read Only list_cluster_issuers, all_namespaces, namespace_name
list_namespaces Show all namespaces within the target cluster. Read Only None
list_contexts Report available kubeconfig contexts. Read Only None
get_current_context Determine the currently active context name. Read Only None
switch_context Alter the active kubeconfig context setting. Read Only ctx

Contextual Note on GCP

Google Cloud Platform (GCP) encompasses a comprehensive portfolio of cloud computing amenities provided by Google, offering modular services across computation, data persistence, advanced analytics, and machine learning. This infrastructure mirrors the same backbone utilized for Google's core consumer services (Search, Gmail, etc.). Access typically necessitates identity verification via banking details. GCP furnishes IaaS, PaaS, and serverless execution models. Google's initial foray into cloud computing was App Engine in 2008. The overarching brand is now 'Google Cloud', which integrates the public infrastructure with Google Workspace and specialized enterprise APIs. Key compute offerings include Compute Engine (VMs), GKE (Kubernetes), and various Function/Run services.

See Also

Certificate
Certificate PNG Icons
Man Pages
cert Man Pages
List
List PNG Icons
Man Pages
globus_net_manager_context Man Pages
Man Pages
eg25 Man Pages
Man Pages
names Man Pages
Cluster
Cluster PNG Icons
Google
Google PNG Icons
☁️
Cloud Emojis
← Back to Cloud Platforms🙏  Credits & Acknowledgments
`