MCPs
RAD Security MCP Server

RAD Security MCP Server

AI-powered security insights for Kubernetes and cloud environments via the Model Context Protocol.

Stars

Forks

Watchers

Issues

RAD Security MCP Server is an implementation of the Model Context Protocol designed to deliver AI-powered security insights and operations for Kubernetes and cloud platforms. It serves as an MCP server for RAD Security, providing a range of toolkits for container, cluster, identity, audit, and threat management. The server is easily configurable via environment variables, allowing for flexible toolkit activation and authentication options. Multiple deployment options are supported, including Node.js, Docker, and integration with development environments like Cursor IDE and Claude Desktop.

Key Features

Implements Model Context Protocol (MCP) server functionality

Provides AI-powered security insights for Kubernetes and cloud environments

Support for multiple security toolkits (containers, clusters, audit, threats, CVEs, etc.)

Environment variable-based configuration for authentication and toolkit selection

Ability to operate without authentication for limited operations (e.g., CVE listing)

Supports Docker and native Node.js deployments

Fine-grained inclusion/exclusion of individual security toolkits

Compatible with development environments like Cursor IDE and Claude Desktop

Streamable HTTP transport support

Detects Kubernetes resource misconfigurations and cloud inventory issues

Use Cases

Monitor and detect threats in Kubernetes clusters

Audit security events and cluster activities

Manage and analyze container images and runtime behaviors

Inventory and evaluate cloud resources for security posture

Identify and resolve security misconfigurations in cloud-native environments

Integrate security insights into continuous development workflows

Fetch and review up-to-date CVE data relevant to infrastructure

Support security operations in both authenticated and partially open-access contexts

Implement tailored security workflows by enabling or disabling specific toolkits

Run scalable, protocol-compliant security operations using Docker or direct Node.js execution

README

RAD Security MCP Server

A Model Context Protocol (MCP) server for RAD Security, providing AI-powered security insights for Kubernetes and cloud environments.

Installation

bash

npm install @rad-security/mcp-server

Usage

Prerequisites

Node.js 20.x or higher

Environment Variables

The following environment are required required to use the MCP server with Rad Security:

bash

RAD_SECURITY_ACCESS_KEY_ID="your_access_key"
RAD_SECURITY_SECRET_KEY="your_secret_key"
RAD_SECURITY_ACCOUNT_ID="your_account_id"

Optional: Filter Toolkits

You can control which toolkits are exposed by the MCP server using these environment variables:

INCLUDE_TOOLKITS: Comma-separated list of toolkits to include (only these will be enabled)
EXCLUDE_TOOLKITS: Comma-separated list of toolkits to exclude (all except these will be enabled)

Available toolkits:

containers - Container inventory operations
clusters - Kubernetes cluster operations
identities - Identity management operations
audit - Audit log operations
cloud_inventory - Cloud resource inventory
images - Container image operations
kubeobject - Kubernetes resource operations
misconfigs - Misconfiguration detection
runtime - Runtime analysis operations
runtime_network - Network traffic analysis
threats - Threat vector operations
findings - Security findings operations
cves - CVE database operations
inbox - Inbox item operations
workflows - Workflow execution operations

Examples:

bash

# Only enable workflow toolkit
INCLUDE_TOOLKITS="workflows"

# Enable only containers and images toolkits
INCLUDE_TOOLKITS="containers,images"

# Exclude workflow toolkit (enable all others)
EXCLUDE_TOOLKITS="workflows"

# Exclude runtime and threat toolkits
EXCLUDE_TOOLKITS="runtime,threats"

Note: If INCLUDE_TOOLKITS is set, EXCLUDE_TOOLKITS is ignored.

Operations Without Authentication

You can also use few operations without authentication:

List CVEs
Get details of a specific CVE
Get latest 30 CVEs
List Kubernetes resource misconfiguration policies

In cursor IDE

It's quite problematic to set ENV variables in cursor IDE.

So, you can use the following start.sh script to start the server.

bash

./start.sh

Please set the ENV variables in the start.sh script first!

In Claude Desktop

You can use the following config to start the server in Claude Desktop.

json

{
  "mcpServers": {
    "rad-security": {
      "command": "npx",
      "args": ["-y", "@rad-security/mcp-server"],
      "env": {
        "RAD_SECURITY_ACCESS_KEY_ID": "<your-access-key-id>",
        "RAD_SECURITY_SECRET_KEY": "<your-secret-key>",
        "RAD_SECURITY_ACCOUNT_ID": "<your-account-id>"
      }
    }
  }
}

To filter toolkits, add INCLUDE_TOOLKITS or EXCLUDE_TOOLKITS to the env:

json

{
  "mcpServers": {
    "rad-security": {
      "command": "npx",
      "args": ["-y", "@rad-security/mcp-server"],
      "env": {
        "RAD_SECURITY_ACCESS_KEY_ID": "<your-access-key-id>",
        "RAD_SECURITY_SECRET_KEY": "<your-secret-key>",
        "RAD_SECURITY_ACCOUNT_ID": "<your-account-id>",
        "EXCLUDE_TOOLKITS": "workflows"
      }
    }
  }

As a Docker Container - with Streamable HTTP

bash

docker build -t rad-security/mcp-server .
docker run \
  -e TRANSPORT_TYPE=streamable \
  -e RAD_SECURITY_ACCESS_KEY_ID=your_access_key \
  -e RAD_SECURITY_SECRET_KEY=your_secret_key \
  -e RAD_SECURITY_ACCOUNT_ID=your_account_id \
  -p 3000:3000 \
  rad-security/mcp-server

With toolkit filters:

bash

docker run \
  -e TRANSPORT_TYPE=streamable \
  -e RAD_SECURITY_ACCESS_KEY_ID=your_access_key \
  -e RAD_SECURITY_SECRET_KEY=your_secret_key \
  -e RAD_SECURITY_ACCOUNT_ID=your_account_id \
  -e INCLUDE_TOOLKITS=workflows,containers \
  -p 3000:3000 \
  rad-security/mcp-server

As a Docker Container - with SSE (deprecated)

Note: The SSE transport is now deprecated in favor of Streamable HTTP. It's still supported for backward compatibility, but it's recommended to use Streamable HTTP instead.

bash

docker build -t rad-security/mcp-server .
docker run \
  -e TRANSPORT_TYPE=sse \
  -e RAD_SECURITY_ACCESS_KEY_ID=your_access_key \
  -e RAD_SECURITY_SECRET_KEY=your_secret_key \
  -e RAD_SECURITY_ACCOUNT_ID=your_account_id \
  -p 3000:3000 \
  rad-security/mcp-server

Features

Account Inventory
- List clusters and their details*
Containers Inventory
- List containers and their details*
Security Findings
- List and analyze security findings*
Runtime Security
- Get process trees of running containers*
- Get runtime baselines of running containers*
- Analyze process behavior of running containers*
Network Security
- Monitor HTTP requests*
- Track network connections*
- Analyze network patterns*
Identity and Access
- List identities*
- Get identity details*
Audit
- List who shelled into a pod*
Cloud Security
- List and monitor cloud resources*
- Get resource details and compliance status*
Images
- Get SBOMs*
- List images and their vulnerabilities*
- Get top vulnerable images*
Kubernetes Objects
- Get details of a specific Kubernetes resource*
- List Kubernetes resources*
- List Kubernetes resource misconfiguration policies*
Threat Vector
- List threat vectors*
- Get details of a specific threat vector*
CVEs
- List CVEs
- Get details of a specific CVE
- Get latest 30 CVEs

* - requires authentication and account in Rad Security.

Development

bash

# Install dependencies
npm install

# Run type checking
npm run type-check

# Run linter
npm run lint

# Build
npm run build

License

MIT License - see the LICENSE file for details

Star History

Repository Owner

rad-security

Organization

Repository Details

Language TypeScript

Default Branch main

Size 163 KB

Contributors 3

License MIT License

MCP Verified Nov 12, 2025

Programming Languages

TypeScript

64.62%

JavaScript

34.5%

Dockerfile

0.73%

Shell

0.15%

Join Our Newsletter

Stay updated with the latest AI tools, news, and offers by subscribing to our weekly newsletter.

Related MCPs

Discover similar Model Context Protocol servers

CipherTrust Manager MCP Server

Enables AI assistants to access CipherTrust Manager securely via the Model Context Protocol.

CipherTrust Manager MCP Server provides an implementation of the Model Context Protocol (MCP), offering AI assistants such as Claude and Cursor a unified interface to interact with CipherTrust Manager resources. Communication is facilitated through JSON-RPC over stdin/stdout, enabling key management, CTE client management, user management, and connection management functionalities. The tool is configurable via environment variables and integrates with existing CipherTrust Manager instances using the ksctl CLI for secure resource access.

⭐ 7
MCP
sanyambassi/ciphertrust-manager-mcp-server

Azure DevOps MCP Server

Standardized AI access to Azure DevOps via Model Context Protocol.

Implements the Model Context Protocol (MCP) to enable AI assistants to securely and efficiently interact with Azure DevOps resources. Provides a standardized bridge for managing projects, work items, repositories, pull requests, and pipelines through natural language interfaces. Supports modular authentication and a feature-based architecture for scalability and integration. Facilitates seamless integration with AI tools such as Claude Desktop and Cursor AI.

⭐ 306
MCP
Tiberriver256/mcp-server-azure-devops

Azure MCP Server

Connect AI agents with Azure services through Model Context Protocol.

Azure MCP Server provides a seamless interface between AI agents and Azure services by implementing the Model Context Protocol (MCP) specification. It enables integration with tools like GitHub Copilot for Azure and supports a wide range of Azure resource management tasks directly via conversational AI interfaces. Designed for extensibility and compatibility, it offers enhanced contextual capabilities for agents working with Azure environments.

⭐ 1,178
MCP
Azure/azure-mcp

CVE-Search MCP Server

MCP server for querying and managing CVE-Search vulnerability data.

CVE-Search MCP Server implements the Model Context Protocol to provide structured access to the CVE-Search API. It enables querying vendors, products, and vulnerabilities, as well as retrieving detailed information for specific CVEs. The server facilitates model context integration via MCP client tools, supporting seamless interactions for vulnerability data management.

⭐ 67
MCP
roadwy/cve-search_mcp

Thales CDSP CRDP MCP Server

MCP server enabling secure data protection and revelation with Thales CipherTrust CRDP

Thales CDSP CRDP MCP Server implements the Model Context Protocol (MCP) to allow AI applications and LLMs to securely protect and reveal sensitive data via Thales CipherTrust RestFul Data Protection (CRDP) service. The server supports both stdio and HTTP transports, individual and bulk data operations, and robust versioning support. Features include health checks, metrics collection, and integration with protection policies and JWT-based authorization.

⭐ 2
MCP
sanyambassi/thales-cdsp-crdp-mcp-server

Semgrep MCP Server

A Model Context Protocol server powered by Semgrep for seamless code analysis integration.

Semgrep MCP Server implements the Model Context Protocol (MCP) to enable efficient and standardized communication for code analysis tasks. It facilitates integration with platforms like LM Studio, Cursor, and Visual Studio Code, providing both Docker and Python (PyPI) deployment options. The tool is now maintained in the main Semgrep repository with continued updates, enhancing compatibility and support across developer tools.

⭐ 611
MCP
semgrep/mcp

View all Alternatives

Didn't find tool you were looking for?

Search AI Tools

RAD Security MCP Server

Key Features

Use Cases

README

RAD Security MCP Server

Installation

Usage

Prerequisites

Environment Variables

Optional: Filter Toolkits

Operations Without Authentication

In cursor IDE

In Claude Desktop

As a Docker Container - with Streamable HTTP

As a Docker Container - with SSE (deprecated)

Features

Development

License

Star History

Repository Owner

Repository Details

Programming Languages

Related MCPs