π
Production Incident Pilot
No description available
0 installs
Trust: 30 β Low
Security
Ask AI about Production Incident Pilot
Powered by Claude Β· Grounded in docs
I know everything about Production Incident Pilot. Ask me about installation, configuration, usage, or troubleshooting.
0/500
Loading tools...
Reviews
Documentation
MCP Production Incident Root Cause Analyzer
An AI-powered incident analysis tool that uses MCP to automatically investigate production incidents by correlating logs, metrics, and git history.
π― What Is This?
When production incidents occur (like "500 errors on checkout API"), this tool:
- Automatically searches application logs for errors
- Queries metrics to detect anomalies and spikes
- Checks recent git deployments and commits
- Correlates all data to identify the root cause
- Provides timeline, evidence, and recommendations
Key Technology: Uses MCP (Model Context Protocol) to connect AI (Ollama) to multiple specialized data sources.
ποΈ Architecture
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β β
β MCP Client (mcp_analyze_multi.py) β
β β
β ββββββββββββββββββββββββββββββββββββββββββββββββββββ β
β β 1. Starts 3 MCP servers as subprocesses β β
β β 2. Connects to each via stdio β β
β β 3. Collects tools from all servers (8 tools) β β
β β 4. Sends tools to Ollama AI β β
β β 5. Routes tool calls to appropriate server β β
β ββββββββββββββββββββββββββββββββββββββββββββββββββββ β
β β
ββββββββββ¬βββββββββββββββ¬βββββββββββββββ¬ββββββββββββββββββ
β β β
βΌ βΌ βΌ
ββββββββββ ββββββββββ ββββββββββββ
β LOGS β β GIT β β DATADOG β
β SERVER β β SERVER β β SERVER β
ββββββββββ ββββββββββ ββββββββββββ
(Python) (Python) (Python)
β β β
βΌ βΌ βΌ
ββββββββββ ββββββββββ ββββββββββββ
β Tools: β β Tools: β β Tools: β
β β β β β β
β β’ read β β β’ get β β β’ get β
β _logs β β _recenβ β _metric β
β β β t_comβ β s β
β β’ sear β β mits β β β
β ch_lo β β β β β’ get β
β gs β β β’ get β β _anomal β
β β β _deploβ β ies β
β β β ymentβ β β
β β β s β β β’ get β
β β β β β _error β
β β β β’ sear β β _rates β
β β β ch_comβ β β
β β β mits β β β
ββββββββββ ββββββββββ ββββββββββββ
β β β
βΌ βΌ βΌ
ββββββββββ ββββββββββ ββββββββββββ
β Data β β Data β β Data β
β app.logβ β commitsβ β metrics β
β β β .json β β .json β
ββββββββββ ββββββββββ ββββββββββββ
See ARCHITECTURE.md for detailed architecture diagrams.
π Project Structure
mcp-production-incident-pilot/
β
βββ mcp_analyze_multi.py # MCP Client - connects to all 3 servers
β
βββ mcp-servers/ # Custom MCP Servers
β β
β βββ logs-server/
β β βββ server.py # Logs MCP Server
β β βββ data/
β β βββ app.log # Application logs
β β
β βββ git-server/
β β βββ server.py # Git MCP Server
β β βββ data/
β β βββ recent_commits.json
β β
β βββ datadog-server/
β βββ server.py # Datadog MCP Server
β βββ data/
β βββ metrics.json
β
βββ .env # Ollama API configuration
βββ .gitignore # Git ignore rules
βββ requirements.txt # Python dependencies
β
βββ README.md # This file
βββ ARCHITECTURE.md # Detailed architecture docs
βββ MULTI_SERVER_SETUP.md # Multi-server setup guide
π Quick Start
Prerequisites
- Python 3.8+
- Ollama Cloud API key (get one at https://ollama.com/)
Installation
Step 1: Install Python dependencies
pip install -r requirements.txt
Step 2: Configure environment variables
Create a .env file in the project root:
OLLAMA_HOST=https://ollama.com
OLLAMA_MODEL=qwen3-coder-next
OLLAMA_API_KEY=your_api_key_here
Step 3: Run the analyzer
python mcp_analyze_multi.py "500 errors on checkout API"
π Usage
Basic Usage
python mcp_analyze_multi.py "500 errors on checkout API"
What You'll See
======================================================================
MULTI-SERVER MCP INCIDENT ANALYZER
======================================================================
Configuration:
Host: https://ollama.com
Model: qwen3-coder-next
API Key: be000b51...
Incident: 500 errors on checkout API
======================================================================
[1/6] Starting 3 MCP servers...
- Logs Server
- Git Server
- Datadog Server
[2/6] Initializing MCP sessions...
[3/6] Getting tools from all servers...
- Logs Server: 2 tools
- Git Server: 3 tools
- Datadog Server: 3 tools
[4/6] Available tools:
- read_logs (Logs Server)
- search_logs (Logs Server)
- get_recent_commits (Git Server)
- get_deployments (Git Server)
- search_commits (Git Server)
- get_metrics (Datadog Server)
- get_anomalies (Datadog Server)
- get_error_rates (Datadog Server)
[5/6] Ollama analyzing with MCP tools...
[Tool #1] search_logs (LOGS server)
Arguments: {'pattern': '500'}
Result: Found 5 matches...
[Tool #2] get_metrics (DATADOG server)
Arguments: {}
Result: Error rate spike detected...
[Tool #3] get_deployments (GIT server)
Arguments: {}
Result: Recent deployment v2.4.1...
======================================================================
[6/6] ANALYSIS COMPLETE
======================================================================
Total MCP tool calls: 8
- Logs Server: 3 calls
- Git Server: 2 calls
- Datadog Server: 3 calls
======================================================================
ROOT CAUSE ANALYSIS
======================================================================
Timeline:
- 14:25: Deployment v2.4.1 deployed
- 14:45: Error rate spike (0.1% β 15.5%)
- 14:46: Connection pool exhausted
Root Cause:
Database connection pool exhaustion after deployment v2.4.1
Evidence:
- Logs: "Connection pool exhausted"
- Metrics: Error spike, response time 180ms β 4500ms
- Git: HOTFIX increased pool 30 β 35 (insufficient)
Recommendations:
1. Increase connection pool to 50+
2. Add connection pool monitoring
3. Implement circuit breakers
======================================================================
π§ How It Works
1. MCP Servers (Custom Built)
Each MCP server is a Python process that provides domain-specific tools:
Logs Server (mcp-servers/logs-server/server.py)
- Tools:
read_logs(),search_logs() - Data: Application log files in
data/app.log
Git Server (mcp-servers/git-server/server.py)
- Tools:
get_recent_commits(),get_deployments(),search_commits() - Data: Git commit history in
data/recent_commits.json
Datadog Server (mcp-servers/datadog-server/server.py)
- Tools:
get_metrics(),get_anomalies(),get_error_rates() - Data: System metrics in
data/metrics.json
2. MCP Client (You Built This)
The client (mcp_analyze_multi.py):
- Starts all 3 MCP servers as subprocesses
- Connects to each via stdio (standard input/output)
- Collects available tools from each server
- Sends incident description + all tools to Ollama AI
- Routes Ollama's tool calls to the correct server
- Returns results back to Ollama
- Displays final root cause analysis
3. Ollama AI (Cloud Service)
Ollama AI:
- Receives the incident description
- Decides which MCP tools to call (autonomous)
- Analyzes data from all sources
- Correlates logs, metrics, and git history
- Identifies root cause
- Provides recommendations
π Example Scenarios
Scenario 1: Database Issues
python mcp_analyze_multi.py "database timeout errors"
AI will:
- Search logs for "timeout"
- Check metrics for database connection pool
- Look for recent database-related commits
Scenario 2: Memory Leak
python mcp_analyze_multi.py "out of memory errors"
AI will:
- Search logs for OOM errors
- Check memory usage metrics
- Find deployments that might have introduced the leak
Scenario 3: API Performance
python mcp_analyze_multi.py "slow API response times"
AI will:
- Check response time metrics
- Look for performance-related commits
- Identify when the slowdown started
π― Key Features
β Multi-Server MCP Architecture
- 3 specialized MCP servers (not one generic server)
- Domain-specific tools for logs, git, and metrics
β Autonomous AI Analysis
- AI decides which tools to call
- Correlates data from multiple sources
- No manual investigation needed
β Real MCP Implementation
- Uses MCP Python SDK (
pip install mcp) - Proper stdio communication
- Tool routing and session management
β Production-Ready Design
- Easy to extend with more servers
- Replace dummy data with real APIs
- Modular and maintainable
π Extending the System
Add a New MCP Server
Step 1: Create the server directory
mkdir -p mcp-servers/kubernetes-server/data
Step 2: Create the server (mcp-servers/kubernetes-server/server.py)
#!/usr/bin/env python3
import os
import json
import asyncio
from mcp.server import Server
from mcp.types import Tool, TextContent
from mcp.server.stdio import stdio_server
DATA_DIR = os.path.join(os.path.dirname(__file__), "data")
app = Server("kubernetes-server")
@app.list_tools()
async def list_tools() -> list[Tool]:
return [
Tool(
name="get_pods",
description="Get pod status and information",
inputSchema={
"type": "object",
"properties": {
"namespace": {
"type": "string",
"description": "Kubernetes namespace",
"default": "default"
}
}
}
)
]
@app.call_tool()
async def call_tool(name: str, arguments: dict) -> list[TextContent]:
if name == "get_pods":
# Implement your logic here
pods_file = os.path.join(DATA_DIR, "pods.json")
with open(pods_file, 'r') as f:
data = json.load(f)
return [TextContent(type="text", text=str(data))]
async def main():
async with stdio_server() as (read_stream, write_stream):
await app.run(read_stream, write_stream, app.create_initialization_options())
if __name__ == "__main__":
asyncio.run(main())
Step 3: Update the client (mcp_analyze_multi.py)
Add to server configuration section:
k8s_server_params = StdioServerParameters(
command="python",
args=[os.path.join(SERVERS_DIR, "kubernetes-server", "server.py")]
)
Add to connection section:
async with stdio_client(logs_server_params) as (logs_read, logs_write), \
stdio_client(git_server_params) as (git_read, git_write), \
stdio_client(datadog_server_params) as (datadog_read, datadog_write), \
stdio_client(k8s_server_params) as (k8s_read, k8s_write):
async with ClientSession(logs_read, logs_write) as logs_session, \
ClientSession(git_read, git_write) as git_session, \
ClientSession(datadog_read, datadog_write) as datadog_session, \
ClientSession(k8s_read, k8s_write) as k8s_session:
# Get tools from new server
k8s_tools = await k8s_session.list_tools()
# Add to tool mapping
for tool in k8s_tools.tools:
tool_to_session[tool.name] = ("kubernetes", k8s_session)
Connect to Real APIs
Replace dummy data files with real API calls:
Logs Server β Connect to:
- Elasticsearch
- Splunk
- CloudWatch Logs
- Datadog Logs API
Git Server β Connect to:
- GitHub API (
https://api.github.com) - GitLab API
- Bitbucket API
Datadog Server β Connect to:
- Datadog API (
https://api.datadoghq.com) - Prometheus
- Grafana
Example: Connecting Logs Server to Elasticsearch
from elasticsearch import Elasticsearch
es = Elasticsearch(['http://localhost:9200'])
@app.call_tool()
async def call_tool(name: str, arguments: dict):
if name == "search_logs":
pattern = arguments.get("pattern")
result = es.search(
index="application-logs",
body={"query": {"match": {"message": pattern}}}
)
return [TextContent(type="text", text=str(result))]
π Troubleshooting
Error: "OLLAMA_API_KEY not found"
Solution: Create .env file with your API key
OLLAMA_HOST=https://ollama.com
OLLAMA_MODEL=qwen3-coder-next
OLLAMA_API_KEY=your_api_key_here
Error: "Connection timeout"
Solutions:
- Check your internet connection
- Verify Ollama API key is valid at https://ollama.com/
- Check firewall settings
Error: "MCP server failed to start"
Solutions:
- Install dependencies:
pip install -r requirements.txt - Verify Python version:
python --version(need 3.8+) - Check server files exist in
mcp-servers/directory - Run server directly to see errors:
python mcp-servers/logs-server/server.py
Error: "ModuleNotFoundError: No module named 'mcp'"
Solution: Install MCP SDK
pip install mcp>=1.0.0
Unicode Error in Terminal (Windows)
Issue: Unicode characters (β) can't be displayed Solution: This is a known Windows terminal limitation
- The analysis still completes successfully
- You can ignore the warning
- Or use Windows Terminal with UTF-8 support
No Tool Calls / Analysis Incomplete
Solutions:
- Check Ollama API key is valid
- Verify model name is correct (default:
qwen3-coder-next) - Try with a simpler incident description
- Check data files exist and have content
π Learn More
- ARCHITECTURE.md - Detailed technical architecture
- MULTI_SERVER_SETUP.md - Multi-server setup guide
- MCP Protocol: https://modelcontextprotocol.io/
- MCP Python SDK: https://github.com/modelcontextprotocol/python-sdk
- Ollama Cloud: https://ollama.com/
π License
MIT License - Feel free to use and modify
π Summary
- Multi-Server Architecture: 3 specialized servers, not 1 generic server
- Autonomous AI: Ollama decides which tools to call and when
- Data Correlation: Automatically connects logs, metrics, and git history
- Root Cause Analysis: Identifies incidents and provides recommendations
- Production-Ready: Modular design, easy to extend, ready for real APIs