// MCP TOOL REFERENCE

MCP TOOLS

23 tools from the Mcp MCP Server, categorised by risk level.

View the Mcp policy →
// ALL 23 MCP TOOLS
READ 15 tools
Read check_k8s_auth Checks whether an action is allowed on a Kubernetes resource. This is similar to running `kubectl auth can-i`. Read describe_k8s_resource Shows the details of a specific Kubernetes resource. This is similar to running `kubectl describe`. Read get_cluster Gets the details of a specific GKE cluster. Read get_k8s_cluster_info Gets cluster endpoint information. This is similar to running `kubectl cluster-info`. Read get_k8s_logs Gets logs from a Kubernetes container in a pod. This is similar to running `kubectl logs`. Read get_k8s_resource Gets one or more Kubernetes resources from a cluster. Resources can be filtered by type, name, namespace, a... Read get_k8s_rollout_status Checks the current rollout status of a Kubernetes resource. This is similar to running `kubectl rollout sta... Read get_k8s_version Retrieves Kubernetes client and server versions for a given cluster. This is similar to running `kubectl ve... Read get_node_pool Gets the details of a specific node pool within a GKE cluster. Read get_operation Gets the details of a specific GKE operation. Read list_clusters Lists GKE clusters in a given project and location. Location can be a region, zone, or '-' for all locations. Read list_k8s_api_resources Retrieves the available API groups and resources from a Kubernetes cluster. This is similar to running `kub... Read list_k8s_events Retrieves events from a Kubernetes cluster. This is similar to running `kubectl events`. Read list_node_pools Lists the node pools for a specific GKE cluster. Read list_operations Lists GKE operations in a given project and location. Location can be a region, zone, or '-' for all locati...
WRITE 6 tools
Write apply_k8s_manifest Applies a Kubernetes manifest to a cluster using server-side apply. This is similar to running `kubectl app... Write create_cluster Creates a new GKE cluster in a given project and location. It's recommended to read the [GKE documentation]... Write create_node_pool Creates a node pool for a specific GKE cluster. Write patch_k8s_resource Patches a Kubernetes resource. This is similar to running `kubectl patch`. Write update_cluster Updates a specific GKE cluster. Write update_node_pool Updates a specific node pool within a GKE cluster.
DESTRUCTIVE 2 tools
Destructive cancel_operation Cancels a specific GKE operation. Destructive delete_k8s_resource Deletes a Kubernetes resource from a cluster. This is similar to running `kubectl delete`.
// FAQ
How many tools does the Mcp MCP server have? +

The Mcp MCP server exposes 23 tools across 3 categories: Read, Write, Destructive.

How do I enforce policies on Mcp tools? +

Route the Mcp server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do Mcp tools fall into? +

Mcp tools are categorised as Read (15), Write (6), Destructive (2). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.