MCP resources

MCP resources are read-only data an MCP client can fetch and attach as context—unlike tools, which the client calls to take an action, a resource is addressed by a URI and simply returns data. Alpacon exposes 72 resources under the alpacon:// scheme, one per read-only (list_/get_) tool, so each resource stays in sync with its underlying tool.

URI pattern

alpacon://<domain>[/<sub>]/{region}/{workspace}[/{server_id}][/<facet>]
  • <domain> groups resources by area: servers, metrics, audit, certs, iam, and so on.
  • [/<sub>] is an optional literal segment that splits a domain further, e.g. certs/authorities versus certs/sign-requests.
  • {region} and {workspace} are path parameters on nearly every resource.
  • A trailing {id} (e.g. {server_id}, {alert_id}) addresses a single item instead of a list; a trailing literal facet (e.g. /info, /cpu, /overview) selects a specific view, sometimes combined with an id ({server_id}/cpu).

A few resources don’t fit the pattern exactly:

  • alpacon://workspaces and alpacon://workspaces/{region} omit {workspace} (and the first omits {region} too), since these discover which workspaces exist in the first place.
  • alpacon://alerts/active/{region}/{workspace} inserts a literal filter segment (active) before {region}, pinning the underlying list_alerts call to acknowledged=false.

A resource returns the same JSON as its underlying tool. For field-level detail on a returned value, see the linked tool page for that domain.

Resources by domain

Servers

See Server management tools.

ResourceReturnsTool
alpacon://servers/{region}/{workspace}Server list: names, UUIDs, status, OS, connection infolist_servers
alpacon://servers/{region}/{workspace}/{server_id}Single server detail: hostname, IP, OS, agent version, online statusget_server
alpacon://servers/{region}/{workspace}/{server_id}/notesDocumentation notes attached to the serverlist_server_notes
alpacon://servers/{region}/{workspace}/{server_id}/overviewCombined hardware, OS, uptime, network, and disk overviewget_server_overview
alpacon://server-notes/{region}/{workspace}/{note_id}Single note detail: title, content, author, timestamps, privacyget_server_note
alpacon://registration-tokens/{region}/{workspace}Alpamon registration tokens issued in the workspacelist_registration_tokens

System information & packages

See System information & packages tools.

ResourceReturnsTool
alpacon://system/{region}/{workspace}/{server_id}/infoHardware info: CPU model, core count, RAM size, architectureget_system_info
alpacon://system/{region}/{workspace}/{server_id}/os-versionOS name, version, kernel version, distributionget_os_version
alpacon://system/{region}/{workspace}/{server_id}/usersOS-level user accounts (passwd entries)list_system_users
alpacon://system/{region}/{workspace}/{server_id}/groupsOS-level groups and their memberslist_system_groups
alpacon://system/{region}/{workspace}/{server_id}/packagesInstalled OS packages (rpm/deb): name, version, architecturelist_system_packages
alpacon://system/{region}/{workspace}/{server_id}/network-interfacesNetwork interfaces: IP, MAC, MTU, link statusget_network_interfaces
alpacon://system/{region}/{workspace}/{server_id}/disk-infoPhysical disks and partition layoutget_disk_info
alpacon://system/{region}/{workspace}/{server_id}/timeSystem clock, timezone, and uptimeget_system_time
alpacon://packages/system/{region}/{workspace}/{server_id}System package entries: name, version, installation detailslist_system_package_entries
alpacon://packages/python/{region}/{workspace}/{server_id}Python packages installed on the server: name, version, detailslist_python_packages

Monitoring & alerts

See Monitoring & alerts tools.

ResourceReturnsTool
alpacon://metrics/{region}/{workspace}/{server_id}/cpuCPU utilization: current/average/min/max with health statusget_cpu_usage
alpacon://metrics/{region}/{workspace}/{server_id}/memoryMemory utilization: current/average/min/max with health statusget_memory_usage
alpacon://metrics/{region}/{workspace}/{server_id}/diskDisk usage percentage and total/used/free spaceget_disk_usage
alpacon://metrics/{region}/{workspace}/{server_id}/disk-ioDisk read/write throughput: peak and average per deviceget_disk_io
alpacon://metrics/{region}/{workspace}/{server_id}/networkNetwork bandwidth: current/average/peak in/out (bps, pps)get_network_traffic
alpacon://metrics/{region}/{workspace}/{server_id}/summaryCombined CPU, memory, disk, and network summaryget_server_metrics_summary
alpacon://metrics/{region}/{workspace}/topTop servers ranked by resource usage over the last 24 hoursget_top_servers
alpacon://alert-rules/{region}/{workspace}Configured alert rules: conditions, severity, notification settingsget_alert_rules
alpacon://alerts/{region}/{workspace}All alertslist_alerts
alpacon://alerts/active/{region}/{workspace}Unacknowledged alerts only (acknowledged=false)list_alerts
alpacon://alerts/{region}/{workspace}/{alert_id}Single alert detailget_alert

Command execution

See Command execution tools.

ResourceReturnsTool
alpacon://commands/{region}/{workspace}Recent command execution history: status, output, timestampslist_commands

File transfer

See File transfer tools.

ResourceReturnsTool
alpacon://webftp/sessions/{region}/{workspace}Active and past WebFTP file transfer sessionswebftp_sessions_list
alpacon://webftp/downloads/{region}/{workspace}Download history: filenames, sizes, timestamps, statuswebftp_downloads_list
alpacon://webftp/uploads/{region}/{workspace}Upload history: filenames, sizes, timestamps, statuswebftp_uploads_list

Events & webhooks

See Events & webhooks tools.

ResourceReturnsTool
alpacon://events/{region}/{workspace}Recent server events, newest firstlist_events
alpacon://events/{region}/{workspace}/{event_id}Single event detail: description, timestamp, server, reporterget_event
alpacon://event-subscriptions/{region}/{workspace}Event subscriptions: channel, event type, targetlist_event_subscriptions
alpacon://webhooks/{region}/{workspace}Configured webhook endpointslist_webhooks
alpacon://webhooks/{region}/{workspace}/{webhook_id}Single webhook detail: URL, SSL verification, status, ownerget_webhook

Audit logs

See Audit log tools.

ResourceReturnsTool
alpacon://audit/activity/{region}/{workspace}Activity logs of user and system actionslist_activity_logs
alpacon://audit/activity/{region}/{workspace}/{log_id}Single activity log entry detailget_activity_log
alpacon://audit/server-logs/{region}/{workspace}Server command execution log historylist_server_logs
alpacon://audit/webftp-logs/{region}/{workspace}File transfer log historylist_webftp_logs
alpacon://audit/session-analyses/{region}/{workspace}AI security analysis results across the workspacelist_session_analyses
alpacon://audit/session-analyses/{region}/{workspace}/{analysis_id}Single analysis in full: risk factors, MITRE ATT&CK mapping, timelineget_session_analysis_detail

Work Sessions

See Work Session tools.

ResourceReturnsTool
alpacon://work-sessions/{region}/{workspace}Work Sessions, optionally filtered by status or requester typework_session_list
alpacon://work-sessions/{region}/{workspace}/{session_id}Single Work Session: status, scopes, servers, requester_type, expires_atwork_session_get

Access control & approvals

See Access control & approvals tools.

ResourceReturnsTool
alpacon://approvals/{region}/{workspace}Pending and historical approval requestslist_approval_requests
alpacon://approvals/{region}/{workspace}/{request_id}Single approval request: requester, type, reason, statusget_approval_request
alpacon://sudo-policies/{region}/{workspace}Sudo privilege policies: allowed commands, assigned users/servers, validitylist_sudo_policies
alpacon://acls/command/{region}/{workspace}Command ACL rules gating command executionlist_command_acls
alpacon://acls/server/{region}/{workspace}Server ACL rules gating which servers a token can accesslist_server_acls
alpacon://acls/file/{region}/{workspace}File ACL rules gating WebFTP upload/downloadlist_file_acls

IAM & API tokens

See IAM & API tokens tools.

ResourceReturnsTool
alpacon://iam/users/{region}/{workspace}IAM users: username, email, active status, group countlist_iam_users
alpacon://iam/users/{region}/{workspace}/{user_id}Single IAM user detailget_iam_user
alpacon://iam/groups/{region}/{workspace}IAM permission groups: name, description, member infolist_iam_groups
alpacon://iam/groups/{region}/{workspace}/{group_id}Single IAM group detail: members, descriptionget_iam_group
alpacon://iam/memberships/{region}/{workspace}IAM group memberships, optionally filtered by grouplist_iam_memberships
alpacon://iam/applications/{region}/{workspace}IAM applications (machine service accounts)list_iam_applications
alpacon://iam/applications/{region}/{workspace}/{app_id}Single IAM application detailget_iam_application
alpacon://tokens/{region}/{workspace}API tokens in the workspacelist_api_tokens
alpacon://tokens/{region}/{workspace}/{token_id}Single API token detail: scopes, expiry, enabled statusget_api_token
alpacon://tokens/scopes/{region}/{workspace}Available API token permission scopeslist_api_token_scopes
alpacon://tokens/presets/{region}/{workspace}Bundled API token scope presetslist_api_token_presets

Certificates

See Certificate tools.

ResourceReturnsTool
alpacon://certs/authorities/{region}/{workspace}Certificate authorities: name, domain, validity, key algorithm/sizelist_certificate_authorities
alpacon://certs/authorities/{region}/{workspace}/{ca_id}Single CA detailget_certificate_authority
alpacon://certs/sign-requests/{region}/{workspace}Certificate signing requests and their statuslist_sign_requests
alpacon://certs/sign-requests/{region}/{workspace}/{csr_id}Single CSR detail: status, common name, SANs, CAget_sign_request
alpacon://certs/{region}/{workspace}Issued certificates: common names, expiry, revocation statuslist_certificates
alpacon://certs/{region}/{workspace}/{certificate_id}Single certificate detail: content, SANs, expiryget_certificate
alpacon://certs/revoke-requests/{region}/{workspace}Certificate revocation requests and their statuslist_revoke_requests
alpacon://certs/revoke-requests/{region}/{workspace}/{revoke_id}Single revocation request detailget_revoke_request

Workspaces & identity

ResourceReturnsTool
alpacon://workspacesAll configured workspaces across every regionlist_workspaces
alpacon://workspaces/{region}Workspaces configured in a single regionlist_workspaces
alpacon://current-user/{region}/{workspace}The authenticated caller: username, email, role, UID, shell, home directoryget_current_user
  • Tools: the full read/write tool set each resource is thinly wrapping
  • MCP prompts: workflow guides that call these same read-only tools during triage and audit
  • Getting started: connect your MCP client and see how it lists resources
Last updated: