22 tools from the CloudWatch Application Signals MCP Server MCP Server, categorised by risk level.
View the CloudWatch Application Signals MCP Server policy →analyze_canary_failures Comprehensive canary failure analysis with deep dive into issues.
Use this tool to:
- Deep dive into canary failures with root cause identificatio... audit_group_health HEALTH AUDIT TOOL - Detect anomalies and unhealthy services in a group.
Use this tool when users ask:
- "Is the Payment application healthy?"
- "A... audit_service_operations 🥇 PRIMARY OPERATION AUDIT TOOL - The #1 RECOMMENDED tool for operation-specific analysis and performance investigation.
**⭐ USE THIS AS THE PRIMA... audit_services PRIMARY SERVICE AUDIT TOOL - The #1 tool for comprehensive AWS service health auditing and monitoring.
**IMPORTANT: For operation-specific auditin... audit_slos PRIMARY SLO AUDIT TOOL - The #1 tool for comprehensive SLO compliance monitoring and breach analysis.
**PREFERRED TOOL FOR SLO ROOT CAUSE ANALYSIS... get_enablement_guide Get enablement guide for AWS Application Signals.
Use this tool when the user wants to:
- Enable observability, monitoring, or Application Signals... get_group_changes CHANGE TRACKING TOOL - Monitor deployments in a group.
Use this tool when users ask:
- "What deployments happened in the Payment group today?"
- "... get_group_dependencies DEPENDENCY MAPPING TOOL - Analyze dependencies within and across groups.
Use this tool when users ask:
- "What are the dependencies of the Payment... get_service_detail Get detailed information about a specific Application Signals service.
**IMPORTANT: For operation auditing, use audit_services() as the PRIMARY to... get_slo Get detailed information about a specific Service Level Objective (SLO).
**RECOMMENDED WORKFLOW AFTER USING THIS TOOL:**
After getting SLO configu... list_canaries List all CloudWatch Synthetics canaries in the account.
Use this tool to discover canaries before analyzing them with analyze_canary_failures().
R... list_change_events Query AWS Application Signals change events to correlate infrastructure and application changes with service performance issues.
This tool provide... list_group_services SERVICE DISCOVERY TOOL - Find all services belonging to a group.
Use this tool when users ask:
- "What services belong to the Payment group?"
- "L... list_grouping_attribute_definitions GROUPING CONFIGURATION TOOL - List all custom grouping attribute definitions.
Use this tool when users ask:
- "What grouping attributes are config... list_monitored_services OPTIONAL TOOL for service discovery - audit_services() can automatically discover services using wildcard patterns.
**IMPORTANT: For service audit... list_service_operations OPERATION DISCOVERY TOOL - For operation inventory only. Use audit_services() as PRIMARY tool for operation auditing.
**IMPORTANT: For operation a... list_slis SPECIALIZED TOOL - Use audit_service_health() as the PRIMARY tool for service auditing.
**IMPORTANT: audit_service_health() is the PRIMARY and PRE... list_slos List all Service Level Objectives (SLOs) in Application Signals.
Use this tool to:
- Get a complete list of all SLOs in your account
- Discover SL... query_rum_events CloudWatch RUM – monitor real user experience across web and mobile apps.
Use the ``action`` parameter to select an operation. All other paramete... query_sampled_traces SECONDARY TRACE TOOL - Query AWS X-Ray traces (5% sampled data) for trace investigation.
⚠️ **IMPORTANT: Consider using audit_slos() with auditors... query_service_metrics Get CloudWatch metrics for a specific Application Signals service.
Use this tool to:
- Analyze service performance (latency, throughput)
- Check e... search_transaction_spans Executes a CloudWatch Logs Insights query against trace span records stored in CloudWatch Logs with the OpenTelemetry semantic-convention schema (@... The CloudWatch Application Signals MCP Server MCP server exposes 22 tools across 1 categories: Read.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the CloudWatch Application Signals MCP Server server.
CloudWatch Application Signals MCP Server tools are categorised as Read (22). Each category has a recommended default policy.
Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.