Detected control flow, data flow and side channel threats
Visualize complete attack chains and understand how to mitigate them
K8s MCP multi tool injection vulnerability
k8s MCP
Affected Tools:
- namespaces_list
- pods_exec
- pods_get
- pods_list
- pods_list_in_namespace
- pods_log
- pods_run
Guardrails
Configure the following guardrails on the rules page
- Enforce single-namespace access per agent session to prevent cross-namespace data leakage.
- Block exec, get, and log actions on pods outside the active namespace context.