원클릭으로 Manus에서 모든 스킬 실행

$pwd:

mcp-app-dev-setup

Name: Mcp App Dev Setup
Author: elastic

// Bootstrap or repair a development environment for the Elastic Observability MCP App with Forge as the data driver. Use when the user says "set up Forge for me", "get me ready to work on this MCP app", "run the validation suite", "I just cloned this repo, what now", or wants the dev environment refreshed after a long gap. Verifies sibling Forge clone, Python venv, cluster credentials, MCP harness, and runs a smoke test against the canonical validation suite.

Manus에서 실행

$ git log --oneline --stat

stars:7

forks:6

updated:2026년 5월 1일 21:53

SKILL.md

readonly

name

mcp-app-dev-setup

description

Bootstrap or repair a development environment for the Elastic Observability MCP App with Forge as the data driver. Use when the user says "set up Forge for me", "get me ready to work on this MCP app", "run the validation suite", "I just cloned this repo, what now", or wants the dev environment refreshed after a long gap. Verifies sibling Forge clone, Python venv, cluster credentials, MCP harness, and runs a smoke test against the canonical validation suite.

MCP App Dev Setup

Bootstraps the development loop documented in docs/development-with-forge.md. The user is an L6/L7 engineer who knows their way around but hasn't worked with Forge before. Bias toward doing the work and reporting back, not asking each step.

What you set up

The dev loop has four pieces, all of which must be working:

Forge clone at ../forge/ (sibling of elastic-o11y-mcp/)
Forge Python venv with the package installed in editable mode (pip install -e ".[dev]")
MCP App build — npm install && npm run build in elastic-o11y-mcp/
Cluster access — oteldemo-esyox GKE cluster credentials in .env, validated by a Forge live status check

If any piece is missing or broken, repair it. If the user has a clear preference (different cluster, different repo location), defer to it.

Sequence

Step 1 — Locate or clone Forge

# If sibling exists:
ls -d ../forge

# If not, clone it
git clone https://github.com/elastic/forge.git ../forge

If the user has Forge in a non-sibling location, accept their path and adjust subsequent commands.

Step 2 — Forge Python environment

cd ../forge
# Create venv if missing
python3 -m venv .venv 2>/dev/null || true
source .venv/bin/activate
pip install -e ".[dev]"

# Confirm
python3 -c "from forge.cli import main; print('forge cli ok')"

Step 3 — MCP App build

cd ../elastic-o11y-mcp
npm install
npm run build

If npm run build fails on type errors, surface them — the user may have intentional in-progress changes.

Step 4 — Cluster credentials

The canonical dev cluster is oteldemo-esyox. Credentials are in .env:

ELASTICSEARCH_URL=...
ELASTICSEARCH_API_KEY=...
KIBANA_URL=...
KIBANA_API_KEY=...

If .env is missing or fields are empty:

Check if .env.example is present — copy it to .env and prompt the user for the credentials. The credentials live in 1Password (Forge — oteldemo-esyox); the user can fetch them.
Once .env is populated, validate by running a basic Forge query:

cd ../forge
source .venv/bin/activate
python3 -c "
from forge.elastic.client import ElasticsearchClient
import os
c = ElasticsearchClient(url=os.environ['ELASTICSEARCH_URL'], api_key=os.environ['ELASTICSEARCH_API_KEY'])
print(c.info())
"

Step 5 — Smoke test the validation suite

Confirm the bench manifest validates:

cd ../forge
source .venv/bin/activate
python3 -m forge.cli mcp-app-bench

Expected output: 6 entries, 4 with ✓ (eval pack present), 2 with ○ (eval pack missing — known gap).

If the manifest fails to validate, the genome library may be inconsistent with what the bench references — surface the error and stop.

Daily workflow you can suggest

After setup, the user is ready to:

# Terminal 1 — Forge live session
cd ../forge && source .venv/bin/activate
python3 -m forge.cli  # explore commands; live session start needs a connected cluster

# Terminal 2 — MCP App harness
cd elastic-o11y-mcp
npm run dev          # builds the server in watch mode
npm run harness      # opens inline view harness at localhost:5371

For the actual incident-injection workflow, point the user at docs/development-with-forge.md — particularly the Pattern: validating an existing tool and Pattern: enhancing a tool for a new failure mode sections.

Things to surface

When you finish setup, report:

Whether each of the four pieces is working
The dev cluster connection status (real cluster name + index count if reachable)
Which validation suite entries have eval packs and which don't
Any version drift detected (Node version, Python version, Forge head commit)

If something is broken in a way you can't fix without user input (missing credentials, ambiguous repo location), ask once with the specific question — don't guess.

What you do NOT do

Do not check in .env or any credential.
Do not modify Forge's library/ or forge/ directories — that's the engineer's territory, not setup territory.
Do not run forge mcp-app-bench --run against a cluster without explicit user approval — it consumes real cluster resources for ~25-35 minutes.

related-skills.json

같은 저장소

observe.md

from "elastic/example-mcp-app-observability"

The agent's Elastic-access primitive. Four modes: wait for an ML anomaly to fire, poll an ES|QL metric (live-sample or wait for a threshold), read a single-instance scalar value, or return a full ES|QL table. Use when the user says "tell me when...", "let me know if...", "wait until X drops below Y", "watch for anything unusual", "monitor for the next N minutes", "poll until stable", "what is X right now", "list …", "which … are …", or wants transient (session-scoped) monitoring or ad-hoc querying without creating a persistent Kibana rule. Also trigger for "keep an eye on" and post-remediation validation.

2026-05-077

apm-health-summary.md

from "elastic/example-mcp-app-observability"

Get a cluster-level rollup of service health from APM telemetry — the "how's my environment right now?" entry point for observability investigations. Use whenever the user asks about HEALTH, STATUS, or general wellbeing of an environment / cluster / namespace ("how's my cluster", "status of the X env", "what's broken", "any issues", "show me the health of …", "give me a status report", "what should I look at", "things feel slow"). This applies regardless of any time qualifier — "show me the health of X over the past hour" still routes here (with lookback="1h"), NOT to observe. observe is for raw-metric queries; this tool is for the rollup. Gracefully degrades: layers in Kubernetes pod data and ML anomaly context when those backends are present, but still returns useful APM-only output if they aren't. Do not use for log-only or metrics-only customers — this tool requires Elastic APM.

2026-05-017

apm-service-dependencies.md

from "elastic/example-mcp-app-observability"

Map the application topology from APM telemetry — which services call which, over what protocols, with what call volume and latency. Use when the user asks "what calls X", "what depends on X", "show me the topology", "what are the upstream/downstream services", "where does this service fit", or is doing root-cause investigation and needs to trace how a problem propagates through the call graph. Also trigger for "service map", "dependency graph", "blast radius of service X", or "who's the dependency of Y". Requires Elastic APM — do not trigger for log-only or metrics-only customers.

2026-05-017

ml-anomalies.md

from "elastic/example-mcp-app-observability"

Query Elastic ML anomaly detection results to understand what's behaving unusually, why, and how badly. Use when the user asks "what's anomalous", "is anything unusual happening", "why is X slow/spiking", "show me the weirdness", or mentions memory growth, CPU spikes, restart patterns, unusual latency, unexpected error rates, or drift from typical behavior. Also trigger for "ML anomalies", "anomaly detection", "Elastic ML", "what does ML think", or when the user wants to understand behavior that deviates from baseline. The tool opens an inline explainer view with a severity gauge, plain-English narrative, and per-entity deviation breakdown — so the agent should USE the visualization, not just dump JSON.

2026-05-017

manage-alerts.md

from "elastic/example-mcp-app-observability"

CRUD for Kibana alerting rules — create, list, get, or delete custom-threshold rules. Use when the user says "alert me when", "create a rule for", "page me if", "set up an alert", "show me my rules", "what alerts do I have", "delete that alert", "remove the rule". Backend-agnostic — works on any metric field in any index pattern (metrics-*, logs-*, traces-apm*, custom). For transient session-scoped monitoring use `observe` instead. Requires Kibana with the Alerting feature enabled — the tool is auto-disabled when no Kibana URL is configured.

2026-04-307

k8s-blast-radius.md

from "elastic/example-mcp-app-observability"

Assess the impact of a Kubernetes node going offline — which deployments lose all replicas (full outage), which lose partial capacity (degraded), which are unaffected, and whether the cluster has enough spare capacity to reschedule the lost pods. Use when the user asks "what happens if node X goes down", "what's the blast radius of draining this node", "can I safely maintain node Y", "what's running on this node", "if I evict this node what breaks", or is planning node maintenance, a cluster upgrade, or investigating an actual node failure. Requires Kubernetes (kubeletstats metrics) and Elastic APM for downstream service impact — do not trigger for non-K8s deployments.

2026-04-307

package.json

"author": "elastic"

"repository": "elastic/example-mcp-app-observability"

GitHub 저장소 열기 Creator 저장소 보기

$ install --global

$ download --local

Manus에서 실행

$ useful --forSOC

소프트웨어 개발자컴퓨터 및 수학직15-1252L4

name

mcp-app-dev-setup

description

MCP App Dev Setup

What you set up

The dev loop has four pieces, all of which must be working:

Forge clone at ../forge/ (sibling of elastic-o11y-mcp/)
Forge Python venv with the package installed in editable mode (pip install -e ".[dev]")
MCP App build — npm install && npm run build in elastic-o11y-mcp/
Cluster access — oteldemo-esyox GKE cluster credentials in .env, validated by a Forge live status check

If any piece is missing or broken, repair it. If the user has a clear preference (different cluster, different repo location), defer to it.

Sequence

Step 1 — Locate or clone Forge

# If sibling exists:
ls -d ../forge

# If not, clone it
git clone https://github.com/elastic/forge.git ../forge

If the user has Forge in a non-sibling location, accept their path and adjust subsequent commands.

Step 2 — Forge Python environment

cd ../forge
# Create venv if missing
python3 -m venv .venv 2>/dev/null || true
source .venv/bin/activate
pip install -e ".[dev]"

# Confirm
python3 -c "from forge.cli import main; print('forge cli ok')"

Step 3 — MCP App build

cd ../elastic-o11y-mcp
npm install
npm run build

If npm run build fails on type errors, surface them — the user may have intentional in-progress changes.

Step 4 — Cluster credentials

The canonical dev cluster is oteldemo-esyox. Credentials are in .env:

ELASTICSEARCH_URL=...
ELASTICSEARCH_API_KEY=...
KIBANA_URL=...
KIBANA_API_KEY=...

If .env is missing or fields are empty:

Check if .env.example is present — copy it to .env and prompt the user for the credentials. The credentials live in 1Password (Forge — oteldemo-esyox); the user can fetch them.
Once .env is populated, validate by running a basic Forge query:

cd ../forge
source .venv/bin/activate
python3 -c "
from forge.elastic.client import ElasticsearchClient
import os
c = ElasticsearchClient(url=os.environ['ELASTICSEARCH_URL'], api_key=os.environ['ELASTICSEARCH_API_KEY'])
print(c.info())
"

Step 5 — Smoke test the validation suite

Confirm the bench manifest validates:

cd ../forge
source .venv/bin/activate
python3 -m forge.cli mcp-app-bench

Expected output: 6 entries, 4 with ✓ (eval pack present), 2 with ○ (eval pack missing — known gap).

If the manifest fails to validate, the genome library may be inconsistent with what the bench references — surface the error and stop.

Daily workflow you can suggest

After setup, the user is ready to:

# Terminal 1 — Forge live session
cd ../forge && source .venv/bin/activate
python3 -m forge.cli  # explore commands; live session start needs a connected cluster

# Terminal 2 — MCP App harness
cd elastic-o11y-mcp
npm run dev          # builds the server in watch mode
npm run harness      # opens inline view harness at localhost:5371

Things to surface

When you finish setup, report:

Whether each of the four pieces is working
The dev cluster connection status (real cluster name + index count if reachable)
Which validation suite entries have eval packs and which don't
Any version drift detected (Node version, Python version, Forge head commit)

If something is broken in a way you can't fix without user input (missing credentials, ambiguous repo location), ask once with the specific question — don't guess.

What you do NOT do

Do not check in .env or any credential.
Do not modify Forge's library/ or forge/ directories — that's the engineer's territory, not setup territory.
Do not run forge mcp-app-bench --run against a cluster without explicit user approval — it consumes real cluster resources for ~25-35 minutes.

mcp-app-dev-setup

MCP App Dev Setup

What you set up

Sequence

Step 1 — Locate or clone Forge

Step 2 — Forge Python environment

Step 3 — MCP App build

Step 4 — Cluster credentials

Step 5 — Smoke test the validation suite

Daily workflow you can suggest

Things to surface

What you do NOT do

이 저장소의 다른 Skills

이 저장소의 다른 Skills

MCP App Dev Setup

What you set up

Sequence

Step 1 — Locate or clone Forge

Step 2 — Forge Python environment

Step 3 — MCP App build

Step 4 — Cluster credentials

Step 5 — Smoke test the validation suite

Daily workflow you can suggest

Things to surface

What you do NOT do