// MCP TOOL REFERENCE

DOCKER TOOLS

56 tools from the Docker MCP Server, categorised by risk level.

View the Docker policy →
// ALL 56 DOCKER TOOLS
READ 29 tools
Read docker_compose_config Parse and validate docker-compose.yml file Read docker_compose_logs View output from Docker Compose services Read docker_compose_ps List Docker Compose services Read docker_container_health_check Check the health status of a container. Returns health check status (healthy, unhealthy, starting, none), h... Read docker_container_logs Get logs from a container Read docker_container_stats Get real-time statistics from a container Read docker_image_history Get the history of an image Read docker_inspect_container Get detailed information about a container Read docker_inspect_exec Get information about an exec instance Read docker_inspect_image Get detailed information about an image Read docker_inspect_network Get detailed information about a network Read docker_inspect_volume Get detailed information about a volume Read docker_kill_container Kill a running container. Requires confirmation for safety. First call without confirm to see container det... Read docker_list_containers List Docker containers. Returns all containers including stopped ones if all=true. Read docker_list_images List Docker images Read docker_list_networks List Docker networks Read docker_list_volumes List Docker volumes Read docker_pause_container Pause a running container Read docker_pull_image Pull an image from a registry Read docker_system_info Get Docker system information Read docker_tag_image Tag an image Read docker_unpause_container Unpause a paused container Read docker_version Get Docker version information Read dockerhub_authenticate Authenticate with Docker Hub Read dockerhub_get_tags Get tags for a Docker Hub repository Read dockerhub_pull Pull an image from Docker Hub Read dockerhub_search Search Docker Hub for images Read ghcr_authenticate Authenticate with GitHub Container Registry Read ghcr_pull Pull an image from GitHub Container Registry
WRITE 8 tools
Write docker_connect_container Connect a container to a network Write docker_create_container Create a new Docker container from an image Write docker_create_network Create a Docker network Write docker_create_volume Create a Docker volume Write docker_disconnect_container Disconnect a container from a network Write docker_push_image Push an image to a registry Write dockerhub_push Push an image to Docker Hub Write ghcr_push Push an image to GitHub Container Registry
DESTRUCTIVE 10 tools
Destructive docker_compose_down Stop and remove Docker Compose services Destructive docker_prune_containers Remove stopped containers. Requires confirmation for safety. First call without confirm to see what will be... Destructive docker_prune_images Remove unused images. Requires confirmation for safety. First call without confirm to see what will be remo... Destructive docker_prune_networks Remove unused networks. Requires confirmation for safety. First call without confirm to see what will be re... Destructive docker_prune_system Remove unused data (containers, networks, images, build cache). Requires confirmation for safety. First cal... Destructive docker_prune_volumes Remove unused volumes. Requires confirmation for safety. First call without confirm to see what will be rem... Destructive docker_remove_container Remove a container. Requires confirmation for safety. First call without confirm to see container details, ... Destructive docker_remove_image Remove an image. Requires confirmation for safety. First call without confirm to see image details, then ca... Destructive docker_remove_network Remove a Docker network. Requires confirmation for safety. First call without confirm to see network detail... Destructive docker_remove_volume Remove a Docker volume. Requires confirmation for safety. First call without confirm to see volume details,...
EXECUTE 9 tools
Execute docker_compose_build Build Docker Compose services Execute docker_compose_restart Restart Docker Compose services Execute docker_compose_start Start Docker Compose services Execute docker_compose_stop Stop Docker Compose services Execute docker_compose_up Start Docker Compose services Execute docker_exec Execute a command in a running container Execute docker_restart_container Restart a container Execute docker_start_container Start a stopped container Execute docker_stop_container Stop a running container
// RUNNING THIS SERVER

The managed route: connect Docker through the PolicyLayer gateway — every tool call above is checked against your policy before it runs, with a full audit log.

DIRECT INSTALL (UNMANAGED) npx -y @alisaitteke/docker-mcp
// FAQ
How many tools does the Docker MCP server have? +

The Docker MCP server exposes 56 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Docker tools? +

Route the Docker server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do Docker tools fall into? +

Docker tools are categorised as Read (29), Write (8), Destructive (10), Execute (9). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.