Getting Started

Quick start guide for Kyverno MCP

Quick Start

This guide will help you get started with Kyverno MCP in minutes.

Prerequisites

Before you begin, ensure you have:

Access to a Kubernetes cluster
A valid kubeconfig file
Kyverno installed in your cluster (optional, but recommended)

Step 1: Install Kyverno MCP

Choose your preferred installation method:

Using Homebrew (macOS/Linux)

brew tap nirmata/tap
brew install kyverno-mcp

Download Binary

Download the appropriate binary for your platform from the Nirmata downloads page.

Step 2: Configure Your MCP Client

Add Kyverno MCP to your MCP client configuration. For example, in Claude Desktop:

Open your Claude Desktop configuration file:
- macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
- Windows: %APPDATA%\Claude\claude_desktop_config.json
Add the Kyverno MCP server:

{
  "mcpServers": {
    "kyverno": {
      "command": "/path/to/kyverno-mcp",
      "args": [
        "--kubeconfig=/path/to/your/kubeconfig"
      ]
    }
  }
}

Step 3: Test the Connection

Start your MCP client (e.g., Claude Desktop)
Ask about your Kubernetes contexts:

Can you list my available Kubernetes contexts?

The assistant should be able to list your contexts using the list_contexts tool

Step 4: Apply Your First Policy

Try scanning your cluster with recommended policy sets for pod security, RBAC and Kubernetes best practices:

Scan my cluster for policy violations

The assistant will use the apply_policies tool to apply curated pod security policies.

Step 5: Check for Violations

Monitor policy violations:

Show me any policy violations in my cluster

The assistant will use the show_violations tool to display any policy violations.

What’s Next?

Explore usage for detailed real-world examples
Learn about available tools and commands
Explore advanced configuration options
Check out troubleshooting tips