37 tools from the Spinnaker MCP Server, categorised by risk level.
View the Spinnaker policy →evaluate_expression Evaluate a Spring Expression Language (SpEL) expression against a pipeline execution context. Use this to inspect pipeline variables, stage outputs... find_images Search for machine images (AMIs, GCE images, Docker images) available in Spinnaker for a given cloud provider. Use this to find images for a deploy... get_account Get details for a specific Spinnaker account by name, including its cloud provider type, permissions, and regions. Use this to verify account confi... get_application Get detailed information about a single Spinnaker application including its accounts, clusters, and custom attributes. Use this to inspect an appli... get_cluster Get details for a specific cluster in a Spinnaker application by account and cluster name. Use this to inspect server groups, load balancers, and i... get_console_output Get the console output (boot log) for a specific compute instance. Use this to debug instance startup failures or inspect early boot messages. Requ... get_execution Get the full details of a single pipeline execution by its ID, including all stage statuses, outputs, variables, and timing. Use this to debug a fa... get_firewall Get details for a specific firewall rule (security group) by account, region, and name. Use this to inspect inbound/outbound rules and associated r... get_image_tags Get available tags for a Docker image repository registered in Spinnaker. Use this to list version tags before triggering a pipeline with a specifi... get_instance Get details for a specific compute instance by account, region, and instance ID. Use this to inspect instance health, metadata, launch time, and cl... get_pipeline Get the full configuration of a specific pipeline by application and pipeline name. Use this to inspect pipeline stages, triggers, and parameters b... get_pipeline_history Get the version history of a pipeline configuration showing past revisions. Use this to audit changes to a pipeline or compare previous configurati... get_scaling_activities Get scaling activities for a server group in a Spinnaker cluster. Use this to audit recent auto-scaling events (scale-up, scale-down) and diagnose ... get_target_server_group Get a specific server group in a Spinnaker cluster using a target selection strategy (e.g., newest, oldest, largest, smallest, fail). Use this when... get_task Get the status and details of a Spinnaker orchestration task (e.g., deploy, resize, rollback, delete). Use this to monitor the progress of a long-r... list_accounts List all configured Spinnaker accounts (cloud provider integrations). Use this to discover available cloud accounts before querying infrastructure ... list_applications List all Spinnaker applications with their metadata. Use this as a starting point to discover available applications before querying pipelines or i... list_clusters List all cluster names for a Spinnaker application, grouped by account. Use this to discover clusters before drilling into a specific one with get_... list_executions List recent pipeline executions for a Spinnaker application, optionally filtered by status. Use this to monitor deployment activity or find a speci... list_firewalls List all firewall rules (security groups) across all Spinnaker accounts and regions. Use this to audit network security posture or find a specific ... list_load_balancers List all load balancers for a Spinnaker application across all accounts and regions. Use this to inspect network routing and health check configura... list_networks List all networks (VPCs) across all Spinnaker accounts and cloud providers. Use this to discover available networks when configuring deployment tar... list_pipelines List all pipeline configurations for a Spinnaker application. Use this to discover available pipelines before triggering or inspecting a specific o... list_server_groups List all server groups (ASGs, instance groups, replica sets) for a Spinnaker application. Use this to view active deployment targets and their inst... list_strategies List all deployment strategy configurations for a Spinnaker application. Use this to discover available strategies (e.g., red/black, rolling, canar... list_subnets List all subnets for a given cloud provider across Spinnaker accounts. Use this to discover available subnets when configuring server groups or dep... pause_execution Pause a running pipeline execution at the current stage boundary. Use this to temporarily halt a deployment for manual review before it continues t... search_executions Search pipeline executions across an application with rich filters such as status, trigger type, and time range. Use this instead of list_execution... resume_execution Resume a previously paused pipeline execution, continuing from where it was halted. Use this after pause_execution once the manual review or interv... save_pipeline Save a new pipeline configuration to Spinnaker. Use this to create a brand-new pipeline definition — use update_pipeline instead to modify an exist... save_strategy Save a new deployment strategy configuration to Spinnaker. Use this to create a reusable deployment strategy (e.g., red/black, rolling push, canary... update_pipeline Update an existing pipeline configuration in Spinnaker. Use this to modify stages, triggers, or parameters of a pipeline that already exists — use ... cancel_execution Cancel a running pipeline execution by its ID, optionally providing a reason. Use this to stop a deployment in progress — for example, when a bad b... delete_pipeline Permanently delete a pipeline configuration from Spinnaker. Use this only when a pipeline is no longer needed — this action cannot be undone. Does ... delete_strategy Permanently delete a deployment strategy configuration from Spinnaker. Use this only when a strategy is no longer needed — this action cannot be un... restart_stage Restart a specific failed or completed stage within a pipeline execution. Use this to retry a stage that failed due to a transient error without re... trigger_pipeline Trigger a new pipeline execution with optional parameters. Use this to start a deployment, build, or any configured pipeline workflow. Returns the ... The Spinnaker MCP server exposes 37 tools across 4 categories: Read, Write, Destructive, Execute.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Spinnaker server.
Spinnaker tools are categorised as Read (28), Write (4), Destructive (3), Execute (2). Each category has a recommended default policy.
Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.