← Back to Skills Marketplace

oVirt MCP Server

Name: oVirt MCP Server
Author: imjoey

by Joey · GitHub ↗ · v0.1.0 · MIT-0

cross-platform ⚠ suspicious

100

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install ovirt-mcp

Description

Manage oVirt/RHV virtualization infrastructure via MCP. Provides 186 tools for VMs, hosts, clusters, networks, storage, templates, snapshots, disks, events,...

Usage Guidance

This skill is documentation for an oVirt MCP server and is not itself code, but the SKILL.md instructs installing and running external software that requires oVirt credentials. Before installing or running: 1) Verify the upstream package/repository (PyPI package and GitHub repo) and review its source; 2) Treat OVIRT_ENGINE_PASSWORD as a secret — use environment variables or a secrets manager, do not embed passwords in JSON config files; 3) Run the MCP server in an isolated environment (sandbox/container) if you don't fully trust the package; 4) Prefer least-privilege oVirt account for automation (avoid full admin credentials where possible); 5) If you expect automated agent invocation, confirm that exposing a local MCP server and its RPC interface is acceptable in your environment; 6) Ask the skill author or registry maintainer why required env vars and install steps were omitted from the declared metadata — this mismatch is the primary reason for caution.

Capability Analysis

Type: OpenClaw Skill Name: ovirt-mcp Version: 0.1.0 The ovirt-mcp skill bundle provides 186 tools for comprehensive management of oVirt/RHV virtualization infrastructure, including VM lifecycles, host fencing, and RBAC configuration. While the tools are clearly aligned with the stated purpose and no evidence of intentional malice was found, the bundle contains 'meaningful high-risk behaviors' and 'broad permissions' (e.g., host_install accepting root passwords in host.md, and tools for deleting VMs or modifying permissions in vm.md and rbac.md). According to the provided criteria, these risky capabilities—even when plausibly needed for the stated purpose—warrant a suspicious classification due to the potential for significant impact if the agent is misused.

Capability Assessment

⚠ Purpose & Capability

The skill's name/description match its documented capabilities (managing oVirt/RHV via MCP). However the registry metadata declares no required environment variables or credentials while the SKILL.md clearly instructs setting OVIRT_ENGINE_URL, OVIRT_ENGINE_USER, and OVIRT_ENGINE_PASSWORD to operate — a mismatch between declared requirements and actual needed capabilities.

ℹ Instruction Scope

SKILL.md is focused on oVirt operations (VMs, hosts, storage, RBAC, etc.) and does not ask the agent to read unrelated host files. It does, however, instruct installing and running an external MCP server process (ovirt-engine-mcp) and shows embedding credentials in JSON config examples — both of which expand runtime scope and raise operational/credential-handling concerns.

⚠ Install Mechanism

The registry lists no install spec, but SKILL.md tells users/agents to pip install a package (ovirt-engine-mcp-server) or clone a GitHub repo. That means the skill relies on third-party code fetched at install/run time even though no install mechanism was declared in metadata — this discrepancy increases risk because the runtime will depend on external packages and source code that the registry metadata did not surface.

⚠ Credentials

No required env vars are declared in the registry, yet SKILL.md requires OVIRT_ENGINE_URL, OVIRT_ENGINE_USER, and OVIRT_ENGINE_PASSWORD (and provides examples). Requesting an admin password is reasonable for managing oVirt, but omitting these from declared requirements is an incoherence and means users might not realize they must supply sensitive credentials. The examples also show putting passwords in JSON configs — avoid embedding secrets in config files.

ℹ Persistence & Privilege

always:false (good). The instructions run a long-lived MCP server (ovirt-engine-mcp) that receives JSON-RPC over stdio; this is expected for MCP integration but does create a persistent local process that will hold credentials and network access. That persistent presence is not declared in metadata and could expose credentials if the service is misconfigured or run in an untrusted environment.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install ovirt-mcp
After installation, invoke the skill by name or use /ovirt-mcp
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.1.0

Initial release: 186 tools for oVirt/RHV virtualization management

Metadata

Slug ovirt-mcp

Version 0.1.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is oVirt MCP Server?

Manage oVirt/RHV virtualization infrastructure via MCP. Provides 186 tools for VMs, hosts, clusters, networks, storage, templates, snapshots, disks, events,... It is an AI Agent Skill for Claude Code / OpenClaw, with 100 downloads so far.

How do I install oVirt MCP Server?

Run "/install ovirt-mcp" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is oVirt MCP Server free?

Yes, oVirt MCP Server is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does oVirt MCP Server support?

oVirt MCP Server is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created oVirt MCP Server?

It is built and maintained by Joey (@imjoey); the current version is v0.1.0.

More Skills