{"id":"eunomia-bpf-mcptrace","name":"MCPtrace","homepage":null,"repo_url":"https://github.com/eunomia-bpf/MCPtrace","category":"infrastructure","subcategories":[],"tags":["mcp","ebpf","bpftrace","kernel-tracing","linux","observability","ai-agent-integration","rust","python"],"what_it_does":"Provides an MCP (Model Context Protocol) server that generates and executes bpftrace kernel tracing programs from AI assistant requests, including discovery/listing of available probes and asynchronous execution with later polling for results.","use_cases":["AI-assisted Linux kernel debugging via natural language","Discovering kernel tracepoints/probes to monitor specific events","Tracing system calls, disk/network activity, and performance bottlenecks","Asynchronous capture of intermittent production issues with later retrieval of trace output"],"not_for":["Use in environments where granting/handling sudo credentials is unacceptable","Real-time streaming requirements (only polling is described)","Workloads that require strict script validation/sandboxing before kernel tracing","Teams needing guaranteed API contracts, versioned stability, or enterprise-grade SLAs"],"best_when":"You have a Linux host with bpftrace available, are comfortable with an on-prem/local MCP server model, and want AI help generating kernel tracing scripts while managing sudo access securely.","avoid_when":"You cannot enforce strong operational controls around sudo/password handling, or you require comprehensive, production-grade auth, rate limiting, and idempotency semantics.","alternatives":["Manual bpftrace scripting","Other eBPF tracing tooling with UI/CLI (e.g., bpftrace directly, or higher-level frameworks)","In-house MCP tools that wrap approved tracing templates rather than free-form script generation"],"af_score":42.2,"security_score":18.2,"reliability_score":30.0,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:54:16.361683+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["sudo/bpftrace execution via local configuration (password or passwordless sudo)"],"oauth":false,"scopes":false,"notes":"README describes sudo requirement and either a .env containing BPFTRACE_PASSWD or passwordless sudo for bpftrace. No explicit MCP auth scheme (e.g., API keys, OAuth) is documented; README mentions 'proper authentication' in the concept but also notes future enhancements."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source (MIT per repo metadata). No hosted pricing described; costs are operational (compute/host resources, tracing overhead)."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":42.2,"security_score":18.2,"reliability_score":30.0,"mcp_server_quality":70.0,"documentation_accuracy":60.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":35.0,"rate_limit_clarity":5.0,"tls_enforcement":0.0,"auth_strength":25.0,"scope_granularity":0.0,"dependency_hygiene":40.0,"secret_handling":30.0,"security_notes":"Security model relies on sudo access for bpftrace. README suggests storing a sudo password in a .env file and warns that there is no script validation (trust the AI client to generate safe scripts). No documented network transport security (TLS) or MCP-level authentication/authorization or scope granularity is provided in the README content. Also noted: resource limits (60s max execution, 10k lines buffer) but overall sandboxing/validation is not described.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":50.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["No real-time streaming; agents must poll via get_result using execution_id.","No script validation/sandboxing is described; an agent may generate unsafe/overly expensive bpftrace programs if not constrained by the client.","Server requires sudo/bpftrace; failures will occur if sudo is not configured or credentials are missing/incorrect.","Asynchronous execution buffers/results may require careful cleanup/timeout handling; behavior is described only at a high level.","Retry behavior/idempotency semantics are not clearly documented; repeated exec_program calls may generate multiple independent trace executions."]}}