feat(mcp): add alert, saved search, and webhook MCP tools

[brandon-pereira]

Summary

• Adds 5 new MCP tools: hyperdx_get_alert, hyperdx_save_alert, hyperdx_get_webhook, hyperdx_get_saved_search, and hyperdx_save_saved_search — enabling AI agents to manage alerts, saved searches, and webhook destinations via the MCP server.
• Makes McpContext.userId required and rejects MCP requests without a user ID (403), tightening the auth surface.
• Enhances getLoggedInAgent test fixture to accept custom credentials for multi-tenancy isolation tests.
• Improves logging, output, and memory usage of integration tests as we were pushing on the edges and int became flakey

Details

New Alert Tools (tools/alerts/)

• hyperdx_get_alert: List all alerts as a slim summary (id, name, state, source, interval) with optional state filtering, or get full detail with recent evaluation history for a specific alert.
• hyperdx_save_alert: Create or update alerts with full support for threshold types (including range-based between/not_between), webhook channels, schedule configuration, and both saved-search and dashboard-tile sources. Includes runtime cross-field validation to work around MCP SDK limitations with ZodEffects.
• hyperdx_get_webhook: List webhook destinations (id, name, service) without exposing sensitive fields (url, headers, body).

New Saved Search Tools (tools/savedSearches/)

• hyperdx_get_saved_search: List saved searches (id, name, tags) or get full detail including query, source, filters.
• hyperdx_save_saved_search: Create or update saved searches with support for Lucene/SQL where clauses, structured filters (including sql_ast), column selection, ordering, and tags.

Auth Tightening

• McpContext.userId is now required (string instead of string | undefined).
• The HTTP handler rejects requests without a userId with 403.
• Tracing unconditionally sets the mcp.user.id attribute.

Test Coverage

• Comprehensive integration tests for all new tools covering: create, update, list, detail, error handling (invalid IDs, non-existent records), and team scoping.
• Updated existing dashboard test to include userId in context.

Documentation

• Updated MCP.md tool table with the 5 new tools.

[changeset-bot]

🦋 Changeset detected

Latest commit: 71cea47

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@hyperdx/api	Minor
@hyperdx/app	Minor
@hyperdx/otel-collector	Minor

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
hyperdx-oss	Ready	Preview, Comment	May 14, 2026 4:22pm

[github-actions]

🟡 Tier 3 — Standard

Introduces new logic, modifies core functionality, or touches areas with non-trivial risk.

Why this tier:

• Diff size: 908 production lines changed (Tier 2 max: < 250)
• Cross-layer change: touches backend (packages/api) + shared utils (packages/common-utils)

Review process: Full human review — logic, architecture, edge cases.
SLA: First-pass feedback within 1 business day.

Stats

• Production files changed: 18
• Production lines changed: 908 (+ 1000 in test files, excluded from tier calculation)
• Branch: brandon/mcp-alert-tools
• Author: brandon-pereira

To override this classification, remove the review/tier-3 label and apply a different review/tier-* label. Manual overrides are preserved on subsequent pushes.

[github-actions]

E2E Test Results

✅ All tests passed • 176 passed • 3 skipped • 1261s

Status	Count
✅ Passed	176
❌ Failed	0
⚠️ Flaky	5
⏭️ Skipped	3

Tests ran across 4 shards in parallel.

View full report →

[github-actions]

PR Review

Well-structured feature addition with comprehensive integration tests and proper team-scoping throughout. Multi-tenancy is correctly enforced: validateAlertInput verifies that webhook/saved-search references belong to the calling team (packages/api/src/controllers/alerts.ts:90-111), and all MCP queries are filtered by teamId. The required-userId tightening in app.ts and the McpContext type change are a sensible auth hardening.

Non-critical items worth a look:

• ⚠️ Mixed PR scope → Three unrelated changes are bundled with the feature: Makefile (--output-style=stream), package.json (drop --coverage from ci:int), and queryParser.ts (console.error → console.warn). CLAUDE.md asks for single-logical-change PRs — easier to revert if one of these regresses CI later. Acceptable to land together, but call them out in the PR body next time.
• ⚠️ Inconsistent teamId casting → getWebhook.ts:30 and getSavedSearch.ts:42 pass team: teamId as a string, while getAlert.ts:51 uses new mongoose.Types.ObjectId(teamId). Mongoose auto-casts so both work, but pick one pattern for clarity.
• ⚠️ Forced type cast in saveAlert.ts:140 → alertInput as Parameters<typeof createAlert>[1] hides any future divergence between AlertInput and createAlert's parameter type. Consider narrowing the types instead so the compiler keeps you honest.
• ⚠️ BaseError message extraction (saveAlert.ts:108-112) → Relies on e.name holding the user-facing message for BaseError subclasses. This works today (e.g. Api400Error) but is non-idiomatic — a future BaseError subclass that sets name to a generic class name would silently surface that to the MCP client. A short comment in BaseError explaining the convention, or a dedicated .userMessage field, would make this more durable.

No blocking issues; the feature itself is clean and well-tested.

[github-actions]

Deep Review

🟡 P2 -- recommended

• packages/api/src/mcp/tools/alerts/schemas.ts:117 -- the MCP name field accepts min(1).max(512) but does not .trim(), so a payload like name: " " is stored as a whitespace-only alert name while the REST route (SavedSearchSchema / alertSchema callers in routers/api/savedSearch.ts:39 and the alerts router) rejects it with z.string().trim().min(1); this is a behaviour skew between MCP and HTTP for the same resource.

  • Fix: Add .trim() to the MCP name schemas in mcp/tools/alerts/schemas.ts and mcp/tools/savedSearches/schemas.ts so MCP and HTTP write identical names.

• packages/api/src/mcp/tools/savedSearches/schemas.ts:36 -- MCP name has the same drift versus routers/api/savedSearch.ts:39 (z.string().trim().min(1)); whitespace-only saved-search names create rows that fail later UI assumptions.

  • Fix: Add .trim() to name so saved-search creation via MCP matches the HTTP contract.

• packages/api/src/mcp/tools/alerts/saveAlert.ts:108 -- alertInput as Parameters<typeof createAlert>[1] papers over a real type mismatch: thresholdType in AlertInput is AlertThresholdType (nativeEnum) while the MCP shape carries a plain string union; the cast happens to work because the literal values match today, so any future enum rename will silently break only at runtime.

  • Fix: Drop the cast and build the controller payload from AlertThresholdType[...] (mirror the existing AlertSource mapping a few lines above) so the type system catches drift.

• packages/api/src/fixtures.ts:217 -- the new credentials parameter to getLoggedInAgent has no caller in this PR (the team-scoping tests use fake ObjectIds), so the new fixture branch is unexercised dead code that future readers will assume is load-bearing.

  • Fix: Either remove the optional credentials parameter or land a test that uses it (e.g., a real second-user multi-tenancy assertion) so the branch is covered.

• packages/api/src/mcp/tools/alerts/schemas.ts:151 -- validateSaveAlertInput's scheduleOffsetMinutes >= interval branch has no test coverage (the test file exercises between/thresholdMax only); this is the runtime substitute for the deleted Zod superRefine, so regressions here go unnoticed.

  • Fix: Add a test case in alerts.test.ts for scheduleOffsetMinutes: 5, interval: '1m' asserting the error string mentions the interval, and (optionally) a not_between variant of the threshold test.

• packages/common-utils/src/queryParser.ts:1027 -- downgrading console.error to console.warn for enable_full_text_index fetch failures and KV-items lookup builds is unrelated to the MCP feature in this PR, and lowers the operational signal for what is a real DB or schema problem (the catch returns false / empty map, so callers silently lose full-text-index behaviour). Bundling unrelated log-level changes into a feature PR makes blame-tracking the regressed signal harder.

  • Fix: Split this change into its own PR (or revert it here) and, if the goal is only "less noise in CI integration tests", scope the suppression to the test harness instead of production code.

🔵 P3 nitpicks (3)

• packages/api/src/mcp/tools/alerts/getAlert.ts:54 -- wraps teamId in new mongoose.Types.ObjectId(...) while sibling getWebhook.ts:29 passes the raw string; both work because of Mongoose autocasting but the inconsistency invites copy-paste mistakes.

  • Fix: Pick one style (prefer the explicit ObjectId) and apply it across the alerts/ and savedSearches/ MCP tools.

• packages/api/src/mcp/tools/savedSearches/saveSavedSearch.ts:64 -- the update flow does a getSavedSearch existence check and then updateSavedSearch, which is itself a team-scoped findOneAndUpdate; the pre-check is a redundant round-trip and a thin race window where updated becomes null collapses into the unhelpful "Failed to update saved search" message.

  • Fix: Drop the pre-check and treat a null from updateSavedSearch as "not found".

• packages/api/src/mcp/tools/savedSearches/schemas.ts:48 -- tags: z.array(z.string()) does not constrain element length, so empty-string or whitespace tags can be persisted; minor inconsistency with the rest of the saved-search UX where tags are user-meaningful labels.

  • Fix: Add .min(1).max(...) (and optionally .trim()) to the tag element schema, or accept the divergence intentionally.

---

Reviewers (5): correctness, testing, maintainability, project-standards, api-contract.

Testing gaps:

• validateSaveAlertInput branches for scheduleOffsetMinutes >= interval and not_between thresholdType are uncovered.
• New getLoggedInAgent(server, credentials) signature has no caller exercising the custom-credentials path.

[brandon-pereira]

backporting coverage removal to OSS as this PR seems to have crossed the memory threshold and now the int tests are failing

[brandon-pereira]

Backporting change to improve logging of int tests - failures previously may not be shown

[brandon-pereira]

This was very chirpy in int tests - moved to warn since it does not break (warns are suppressed in int tests)

[wrn14897]

I know we’re using these translateXXX methods in the external API, but it feels error-prone and not very straightforward to use. What do you think about moving this logic into the model file (as a method)?

[brandon-pereira]

Makes sense - let me ship this in a fast-follow :)

[wrn14897]

LGTM