← 返回 Skills 市场
rohitg00

Kubernetes Skills

作者 Rohit Ghumare · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
2357
总下载
3
收藏
9
当前安装
1
版本数
在 OpenClaw 中安装
/install k8-multicluster
功能描述
Manage multiple Kubernetes clusters, switch contexts, and perform cross-cluster operations. Use when working with multiple clusters, comparing environments, or managing cluster lifecycle.
使用说明 (SKILL.md)

Multi-Cluster Kubernetes Management

Cross-cluster operations and context management using kubectl-mcp-server's multi-cluster support.

Context Management

List Available Contexts

list_contexts_tool()

View Current Context

kubeconfig_view()  # Shows sanitized kubeconfig

Switch Context

CLI: kubectl-mcp-server context \x3Ccontext-name>

Cross-Cluster Operations

All kubectl-mcp-server tools support the context parameter:

# Get pods from production cluster
get_pods(namespace="default", context="production-cluster")

# Get pods from staging cluster
get_pods(namespace="default", context="staging-cluster")

Common Multi-Cluster Patterns

Compare Environments

# Compare deployment across clusters
compare_namespaces(
    namespace1="production",
    namespace2="staging",
    resource_type="deployment",
    context="production-cluster"
)

Parallel Queries

Query multiple clusters simultaneously:

# Production cluster
get_pods(namespace="app", context="prod-us-east")
get_pods(namespace="app", context="prod-eu-west")

# Development cluster
get_pods(namespace="app", context="development")

Cross-Cluster Health Check

# Check all clusters
for context in ["prod-1", "prod-2", "staging"]:
    get_nodes(context=context)
    get_pods(namespace="kube-system", context=context)

Cluster API (CAPI) Management

For managing cluster lifecycle:

List Managed Clusters

capi_clusters_list_tool(namespace="capi-system")

Get Cluster Details

capi_cluster_get_tool(name="prod-cluster", namespace="capi-system")

Get Workload Cluster Kubeconfig

capi_cluster_kubeconfig_tool(name="prod-cluster", namespace="capi-system")

Machine Management

capi_machines_list_tool(namespace="capi-system")
capi_machinedeployments_list_tool(namespace="capi-system")

Scale Cluster

capi_machinedeployment_scale_tool(
    name="prod-cluster-md-0",
    namespace="capi-system",
    replicas=5
)

See CONTEXT-SWITCHING.md for detailed patterns.

Multi-Cluster Helm

Deploy charts to specific clusters:

install_helm_chart(
    name="nginx",
    chart="bitnami/nginx",
    namespace="web",
    context="production-cluster"
)

list_helm_releases(
    namespace="web",
    context="staging-cluster"
)

Multi-Cluster GitOps

Flux Across Clusters

flux_kustomizations_list_tool(
    namespace="flux-system",
    context="cluster-1"
)

flux_reconcile_tool(
    kind="kustomization",
    name="apps",
    namespace="flux-system",
    context="cluster-2"
)

ArgoCD Across Clusters

argocd_apps_list_tool(namespace="argocd", context="management-cluster")

Federation Patterns

Secret Synchronization

# Read from source cluster
get_secrets(namespace="app", context="source-cluster")

# Apply to target cluster (via manifest)
apply_manifest(secret_manifest, namespace="app", context="target-cluster")

Cross-Cluster Service Discovery

With Cilium ClusterMesh or Istio multi-cluster:

cilium_nodes_list_tool(context="cluster-1")
istio_proxy_status_tool(context="cluster-2")

Best Practices

  1. Naming Convention: Use descriptive context names

    • prod-us-east-1, staging-eu-west-1

  2. Access Control: Different kubeconfigs per environment

    • Prod: Read-only for most users
    • Dev: Full access for developers

  3. Always Specify Context: Avoid accidental cross-cluster operations

    # Explicit is better
get_pods(namespace="app", context="production")

  4. Cluster Groups: Organize by purpose

    • Production: prod-*
    • Staging: staging-*
    • Development: dev-*

Related Skills

安全使用建议
This skill appears to be a legitimate multi-cluster Kubernetes helper, but take these precautions before installing or using it: - Verify provenance: the skill's source and homepage are unknown; prefer skills from trusted publishers. - Expect it needs access to kubeconfig files or cluster credentials even though it doesn't declare them. Do not expose production kubeconfigs or long-lived admin tokens to untrusted skills or agents. - Secret-sync examples show the agent reading secrets in one cluster and applying them to another — this is sensitive. Confirm how kubeconfig_view() sanitizes secrets and audit any secret exports before allowing the skill to run. - Limit permissions: use short-lived, least-privilege service accounts and separate kubeconfig files for non-prod testing before running in production. - Ask the publisher or maintainer for clarification: which platform tools back get_pods(), apply_manifest(), and kubeconfig_view(), and how is sensitive data handled/transmitted? If you cannot verify those answers, avoid granting access to real kubeconfigs or prod clusters. If you want, I can list specific questions to ask the skill author or suggest a safe test plan (isolated dev cluster and restricted kubeconfig) to evaluate the skill's behavior.
功能分析
Type: OpenClaw Skill Name: k8-multicluster Version: 1.0.0 The skill bundle is classified as suspicious due to its broad and high-risk capabilities, despite lacking explicit instructions for malicious intent. It provides tools like `get_secrets()`, `capi_cluster_kubeconfig_tool()`, and `apply_manifest()` across multiple Kubernetes clusters, as detailed in `SKILL.md` and `CONTEXT-SWITCHING.md`. These functions allow the agent to read sensitive data (secrets, kubeconfigs) and apply arbitrary manifests, which could be leveraged by a malicious user for data exfiltration, privilege escalation, or deploying backdoors, even though the skill itself does not instruct such actions.
能力评估
Purpose & Capability
The skill's name, description, and runtime instructions consistently target multi-cluster Kubernetes management (context switching, CAPI, Helm, GitOps, secret sync). That capability set is coherent with the stated purpose.
Instruction Scope
SKILL.md instructs the agent to view/sanitize kubeconfigs (kubeconfig_view()), list contexts, read secrets from a source cluster and apply them to targets, and to obtain workload kubeconfigs via CAPI tools. Those instructions implicitly require access to kubeconfig files and cluster credentials and perform sensitive actions (secret synchronization, cross-cluster writes). The skill does not constrain or document how sensitive data will be handled or where it may be transmitted.
Install Mechanism
Instruction-only skill with no install spec and no code files — nothing will be downloaded or written by the skill itself. This minimizes supply-chain/installation risk.
Credentials
The skill declares no required env vars, credentials, or config paths, yet the instructions rely on kubeconfigs (examples use export KUBECONFIG and kubeconfig_view()) and service-account patterns. There is a mismatch between declared requirements (none) and the obvious need for cluster credentials and kubeconfig files to perform the described operations.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. It does not request persistent presence or modify other skills. Autonomous invocation is enabled (default) but not, by itself, a red flag here.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install k8-multicluster
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /k8-multicluster 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of k8s-multicluster skill for managing multiple Kubernetes clusters. - Provides context management: list, view, and switch between cluster contexts. - Supports cross-cluster operations for resources, comparisons, and parallel queries. - Includes Cluster API (CAPI) management: list clusters, get details, manage machines, and scale deployments. - Enables multi-cluster Helm and GitOps workflows with Flux and ArgoCD. - Documents federation and cross-cluster patterns (e.g., secret sync, service discovery). - Shares best practices and links to related skills for cluster troubleshooting and GitOps.
元数据
Slug k8-multicluster
版本 1.0.0
许可证
累计安装 9
当前安装数 9
历史版本数 1
常见问题

Kubernetes Skills 是什么?

Manage multiple Kubernetes clusters, switch contexts, and perform cross-cluster operations. Use when working with multiple clusters, comparing environments, or managing cluster lifecycle. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 2357 次。

如何安装 Kubernetes Skills?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install k8-multicluster」即可一键安装,无需额外配置。

Kubernetes Skills 是免费的吗?

是的,Kubernetes Skills 完全免费(开源免费),可自由下载、安装和使用。

Kubernetes Skills 支持哪些平台?

Kubernetes Skills 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Kubernetes Skills?

由 Rohit Ghumare(@rohitg00)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论