{"id":"slashben-kubescape-mcp-server","name":"kubescape-mcp-server","af_score":36.2,"security_score":29.8,"reliability_score":20.0,"what_it_does":"Kubescape MCP Server is a middleware that exposes Kubescape Kubernetes vulnerability manifests and related querying capabilities via the Mark3 Labs MCP protocol over stdio. It supports listing vulnerability manifests for image/workload levels, listing vulnerabilities in a manifest, and listing vulnerability matches for a specific CVE, also exposing manifest data through MCP resource templates.","best_when":"Used in controlled environments where an MCP-capable agent runs with access to a Kubernetes cluster (via kubeconfig) and Kubescape storage APIs to retrieve vulnerability manifests.","avoid_when":"Avoid deploying as-is in untrusted or multi-tenant settings where tool inputs could be abused, since the README does not describe authZ/authN controls, input validation, or output filtering.","last_evaluated":"2026-04-04T21:21:39.342966+00:00","has_mcp":true,"has_api":false,"auth_methods":["Implicit Kubernetes credentials via kubeconfig/context (as described)"],"has_free_tier":false,"known_gotchas":["Server communicates via stdio MCP; agents must be able to spawn and interact with the process correctly.","Tool behavior depends on accessible kubeconfig/context and availability of Kubescape storage API; failures may appear as tool errors but are not documented.","No documented pagination/limits for listing tools; agents may need to handle large manifest/vulnerability result sets."],"error_quality":0.0}