get-alerts

Get information about alerts

Server Prometheus mateusdata/prometheus-mcp-server
Category Read
Risk class Low
Parameters 00 required

What get-alerts does on Prometheus

AI agents call get-alerts to retrieve information from Prometheus without modifying anything — typically the context-gathering step in research, monitoring, and reporting workflows, before the agent takes action elsewhere.

Why get-alerts needs a policy

This tool queries alert information from Prometheus—a read-only retrieval operation. It has no side effects, cannot modify data, and poses minimal risk. The low severity reflects that exposure of alert metadata alone does not enable destructive or financial harm. Confidence is high because the name and description are explicit about data retrieval.

From the tool's definition Tool name 'get-alerts' and description 'Get information about alerts' indicate a retrieval operation. The verb 'get' and broader server context (Prometheus metrics, PromQL queries, discovery tools) confirm this retrieves existing alert state and metadata…

Questions about get-alerts

What does the get-alerts tool do? +

Get information about alerts. It is categorised as a Read tool in the Prometheus MCP Server, which means it retrieves data without modifying state.

How do I enforce a policy on get-alerts? +

Register the Prometheus MCP server in PolicyLayer and add a rule for get-alerts: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Prometheus. Nothing to install.

What risk level is get-alerts? +

get-alerts is a Read tool with low risk. Read-only tools are generally safe to allow by default.

Can I rate-limit get-alerts? +

Yes. Add a rate_limit block to the get-alerts rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block get-alerts completely? +

Set action: deny in the PolicyLayer policy for get-alerts. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides get-alerts? +

get-alerts is provided by the Prometheus MCP server (mateusdata/prometheus-mcp-server). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

// LOOK UP ANOTHER SERVER

Every MCP server has a record like this.

Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.