Shell Command MCP Server

Integrations

  • Runs commands within an isolated Docker container environment without giving access to the host Docker daemon.

  • Provides the Helm package manager for Kubernetes, enabling installation and management of Kubernetes applications.

  • Includes Kubernetes tools (kubectl, k9s) for managing Kubernetes clusters and resources.

Shell Command MCP Server

This is an MCP (Model Context Protocol) server that allows executing shell commands within a Docker container. It provides a secure and isolated workspace for running commands without giving access to the host Docker daemon.

Features

  • Run shell scripts through a simple MCP interface
    • synchronous execution
    • asynchronous execution with 4 different modes
      • complete: notify when the command is completed
      • line: notify on each line of output
      • chunk: notify on each chunk of output
      • character: notify on each character of output
  • Kubernetes tools included: kubectl, helm, kustomize, hemfile
  • Isolated Docker container environment with non-root user
    • host-container userid/groupid mapping implemented. this allows the container to run as the same user as the host, ensuring that files created by the container have the same ownership and permissions as those created by the host.
    • mount a host directory to the container /home/mcp directory for persistence. it become the home directory the AI works in.
    • if the host directory is empty, the initial files will be copied form the backup in the container.

Design Philosophy

This MCP server provides AI with a workspace similar to that of a human. Authorization is limited not by MCP functions, but by container isolation and external authorization restrictions.

It provides more general tools such as shell script execution, so that they can be used without specialized knowledge of tool use.

The server implementation is kept as simple as possible to facilitate code auditing.

Getting Started

Prerequisites

  • Docker

Usage with Claude for Desktop

Add the following configuration to your Claude for Desktop configuration file.

MacOS:

"shell-command": { "command": "docker", "args": [ "run", "--rm", "-i", "--mount", "type=bind,src=/Users/user-name/MCPHome,dst=/home/mcp", "ghcr.io/kaznak/shell-command-mcp:latest" ] }

Replace /Users/user-name/ClaudeWorks with the directory you want to make available to the container.

Windows:

"shell-command": { "command": "docker", "args": [ "run", "--rm", "-i", "--mount", "type=bind,src=\\\\wsl.localhost\\Ubuntu\\home\\user-name\\MCPHome,dst=/home/mcp", "ghcr.io/kaznak/shell-command-mcp:latest" ] }

Feed some prompts

To Operate the files in the mounted directory.

Available MCP Tools

Security Considerations

  • The MCP server runs as a non-root user within the container
  • The container does not have access to the host Docker daemon
  • User workspace is mounted from the host for persistence

License

MIT

You must be authenticated.

A
security – no known vulnerabilities
A
license - permissive license
A
quality - confirmed to work

local-only server

The server can only run on the client's local machine because it depends on local resources.

Allows executing shell commands within a secure Docker container through Claude's MCP interface, providing Kubernetes tools and isolated environment without host Docker daemon access.

  1. Features
    1. Design Philosophy
      1. Getting Started
        1. Prerequisites
        2. Usage with Claude for Desktop
        3. Feed some prompts
      2. Available MCP Tools
        1. Security Considerations
          1. License

            Related MCP Servers

            • A
              security
              F
              license
              A
              quality
              A MCP server that can run Kubernetes commands with a given kubeconfig path and provide interpretation of the commands.
              Last updated -
              1
              2
              JavaScript
              • Apple
            • -
              security
              F
              license
              -
              quality
              Provides isolated Docker environments for code execution, enabling users to create and manage containers, execute multi-language code, save and reproduce development environments, ensuring security and isolation.
              Last updated -
              6
              Python
              • Apple
            • A
              security
              A
              license
              A
              quality
              A secure shell command execution server implementing the Model Context Protocol (MCP). This server allows remote execution of whitelisted shell commands with support for stdin input.
              Last updated -
              1
              68
              Python
              MIT License
              • Apple
            • -
              security
              F
              license
              -
              quality
              Allows Claude and other AI assistants to interact with Docker through the MCP protocol, enabling container and image management including listing, running, stopping, and pulling Docker resources.
              Last updated -
              2
              JavaScript
              • Apple

            View all related MCP servers

            ID: hnmi19f32s