Built-in MCP Server
infrastrActure exposes its own management MCP server at /mcp.
This is the control-plane MCP surface for containers, installs, sandboxes, shared tools, and infra SSH.
Tool Families
Current Tool Count
The built-in MCP server currently exposes 27 tools.
| Family | Count |
|---|---|
| containers | 3 |
| marketplace | 2 |
| installations | 3 |
| shared tools | 1 |
| sandboxes | 4 |
| service status | 1 |
| infra SSH | 13 |
Important Security Rule
The built-in MCP server should only be exposed to admin-tier integration clients.
That is why the standard-vs-admin key split matters.
Example Tools
| Tool | Purpose |
|---|---|
list_containers | inspect managed containers |
search_marketplace | browse installable runtimes |
install_tool | initiate installation |
list_shared_tools | inspect shared tool inventory |
create_sandbox | create a sandbox |
service_status | overall service health |
infra_ssh_list_hosts | inspect infra host inventory |
infra_ssh_begin_admin_session | begin infra SSH approval lease |
Infra SSH Family
The infra SSH tools are the most privileged family and are documented separately under Infra SSH.
They are:
- audited
- admin-tier only
- approval-gated for elevated actions
- template/action based rather than raw arbitrary SSH execution