← Back to Skills Marketplace

Kubernetes Skills

Name: Kubernetes Skills
Author: rohitg00

by Rohit Ghumare · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

2357

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install k8-multicluster

Description

Manage multiple Kubernetes clusters, switch contexts, and perform cross-cluster operations. Use when working with multiple clusters, comparing environments, or managing cluster lifecycle.

README (SKILL.md)

Multi-Cluster Kubernetes Management

Cross-cluster operations and context management using kubectl-mcp-server's multi-cluster support.

Context Management

List Available Contexts

list_contexts_tool()

View Current Context

kubeconfig_view()  # Shows sanitized kubeconfig

Switch Context

CLI: kubectl-mcp-server context \x3Ccontext-name>

Cross-Cluster Operations

All kubectl-mcp-server tools support the context parameter:

# Get pods from production cluster
get_pods(namespace="default", context="production-cluster")

# Get pods from staging cluster
get_pods(namespace="default", context="staging-cluster")

Common Multi-Cluster Patterns

Compare Environments

# Compare deployment across clusters
compare_namespaces(
    namespace1="production",
    namespace2="staging",
    resource_type="deployment",
    context="production-cluster"
)

Parallel Queries

Query multiple clusters simultaneously:

# Production cluster
get_pods(namespace="app", context="prod-us-east")
get_pods(namespace="app", context="prod-eu-west")

# Development cluster
get_pods(namespace="app", context="development")

Cross-Cluster Health Check

# Check all clusters
for context in ["prod-1", "prod-2", "staging"]:
    get_nodes(context=context)
    get_pods(namespace="kube-system", context=context)

Cluster API (CAPI) Management

For managing cluster lifecycle:

List Managed Clusters

capi_clusters_list_tool(namespace="capi-system")

Get Cluster Details

capi_cluster_get_tool(name="prod-cluster", namespace="capi-system")

Get Workload Cluster Kubeconfig

capi_cluster_kubeconfig_tool(name="prod-cluster", namespace="capi-system")

Machine Management

capi_machines_list_tool(namespace="capi-system")
capi_machinedeployments_list_tool(namespace="capi-system")

Scale Cluster

capi_machinedeployment_scale_tool(
    name="prod-cluster-md-0",
    namespace="capi-system",
    replicas=5
)

See CONTEXT-SWITCHING.md for detailed patterns.

Multi-Cluster Helm

Deploy charts to specific clusters:

install_helm_chart(
    name="nginx",
    chart="bitnami/nginx",
    namespace="web",
    context="production-cluster"
)

list_helm_releases(
    namespace="web",
    context="staging-cluster"
)

Multi-Cluster GitOps

Flux Across Clusters

flux_kustomizations_list_tool(
    namespace="flux-system",
    context="cluster-1"
)

flux_reconcile_tool(
    kind="kustomization",
    name="apps",
    namespace="flux-system",
    context="cluster-2"
)

ArgoCD Across Clusters

argocd_apps_list_tool(namespace="argocd", context="management-cluster")

Federation Patterns

Secret Synchronization

# Read from source cluster
get_secrets(namespace="app", context="source-cluster")

# Apply to target cluster (via manifest)
apply_manifest(secret_manifest, namespace="app", context="target-cluster")

Cross-Cluster Service Discovery

With Cilium ClusterMesh or Istio multi-cluster:

cilium_nodes_list_tool(context="cluster-1")
istio_proxy_status_tool(context="cluster-2")

Best Practices

Naming Convention: Use descriptive context names
- prod-us-east-1, staging-eu-west-1
Access Control: Different kubeconfigs per environment
- Prod: Read-only for most users
- Dev: Full access for developers

Always Specify Context: Avoid accidental cross-cluster operations

# Explicit is better
get_pods(namespace="app", context="production")

Cluster Groups: Organize by purpose
- Production: prod-*
- Staging: staging-*
- Development: dev-*

Related Skills

k8s-troubleshoot - Debug across clusters
k8s-gitops - GitOps multi-cluster

Usage Guidance

This skill appears to be a legitimate multi-cluster Kubernetes helper, but take these precautions before installing or using it: - Verify provenance: the skill's source and homepage are unknown; prefer skills from trusted publishers. - Expect it needs access to kubeconfig files or cluster credentials even though it doesn't declare them. Do not expose production kubeconfigs or long-lived admin tokens to untrusted skills or agents. - Secret-sync examples show the agent reading secrets in one cluster and applying them to another — this is sensitive. Confirm how kubeconfig_view() sanitizes secrets and audit any secret exports before allowing the skill to run. - Limit permissions: use short-lived, least-privilege service accounts and separate kubeconfig files for non-prod testing before running in production. - Ask the publisher or maintainer for clarification: which platform tools back get_pods(), apply_manifest(), and kubeconfig_view(), and how is sensitive data handled/transmitted? If you cannot verify those answers, avoid granting access to real kubeconfigs or prod clusters. If you want, I can list specific questions to ask the skill author or suggest a safe test plan (isolated dev cluster and restricted kubeconfig) to evaluate the skill's behavior.

Capability Analysis

Type: OpenClaw Skill Name: k8-multicluster Version: 1.0.0 The skill bundle is classified as suspicious due to its broad and high-risk capabilities, despite lacking explicit instructions for malicious intent. It provides tools like `get_secrets()`, `capi_cluster_kubeconfig_tool()`, and `apply_manifest()` across multiple Kubernetes clusters, as detailed in `SKILL.md` and `CONTEXT-SWITCHING.md`. These functions allow the agent to read sensitive data (secrets, kubeconfigs) and apply arbitrary manifests, which could be leveraged by a malicious user for data exfiltration, privilege escalation, or deploying backdoors, even though the skill itself does not instruct such actions.

Capability Assessment

ℹ Purpose & Capability

The skill's name, description, and runtime instructions consistently target multi-cluster Kubernetes management (context switching, CAPI, Helm, GitOps, secret sync). That capability set is coherent with the stated purpose.

⚠ Instruction Scope

SKILL.md instructs the agent to view/sanitize kubeconfigs (kubeconfig_view()), list contexts, read secrets from a source cluster and apply them to targets, and to obtain workload kubeconfigs via CAPI tools. Those instructions implicitly require access to kubeconfig files and cluster credentials and perform sensitive actions (secret synchronization, cross-cluster writes). The skill does not constrain or document how sensitive data will be handled or where it may be transmitted.

✓ Install Mechanism

Instruction-only skill with no install spec and no code files — nothing will be downloaded or written by the skill itself. This minimizes supply-chain/installation risk.

⚠ Credentials

The skill declares no required env vars, credentials, or config paths, yet the instructions rely on kubeconfigs (examples use export KUBECONFIG and kubeconfig_view()) and service-account patterns. There is a mismatch between declared requirements (none) and the obvious need for cluster credentials and kubeconfig files to perform the described operations.

✓ Persistence & Privilege

The skill is not always-enabled and is user-invocable. It does not request persistent presence or modify other skills. Autonomous invocation is enabled (default) but not, by itself, a red flag here.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install k8-multicluster
After installation, invoke the skill by name or use /k8-multicluster
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

- Initial release of k8s-multicluster skill for managing multiple Kubernetes clusters. - Provides context management: list, view, and switch between cluster contexts. - Supports cross-cluster operations for resources, comparisons, and parallel queries. - Includes Cluster API (CAPI) management: list clusters, get details, manage machines, and scale deployments. - Enables multi-cluster Helm and GitOps workflows with Flux and ArgoCD. - Documents federation and cross-cluster patterns (e.g., secret sync, service discovery). - Shares best practices and links to related skills for cluster troubleshooting and GitOps.

Metadata

Slug k8-multicluster

Version 1.0.0

License —

All-time Installs 9

Active Installs 9

Total Versions 1

Frequently Asked Questions

What is Kubernetes Skills?

Manage multiple Kubernetes clusters, switch contexts, and perform cross-cluster operations. Use when working with multiple clusters, comparing environments, or managing cluster lifecycle. It is an AI Agent Skill for Claude Code / OpenClaw, with 2357 downloads so far.

How do I install Kubernetes Skills?

Run "/install k8-multicluster" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Kubernetes Skills free?

Yes, Kubernetes Skills is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Kubernetes Skills support?

Kubernetes Skills is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Kubernetes Skills?

It is built and maintained by Rohit Ghumare (@rohitg00); the current version is v1.0.0.

More Skills