automateyournetwork/gcp-cloud-monitoring
workspace/skills/gcp-cloud-monitoring/SKILL.md
Google Cloud Monitoring — time series metrics, alert policies, active alerts, metric discovery. Use when checking GCP network performance, investigating firing alerts, querying VM CPU or memory metrics, reviewing Cloud VPN tunnel status, or assessing load balancer latency.
$ install --global
skillsauthnpx skillsauth add automateyournetwork/netclaw gcp-cloud-monitoringInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 3:29 AM6.0s1 file scanned
SKILL.md
- name:
- gcp-cloud-monitoring
- description:
- Google Cloud Monitoring — time series metrics, alert policies, active alerts, metric discovery. Use when checking GCP network performance, investigating firing alerts, querying VM CPU or memory metrics, reviewing Cloud VPN tunnel status, or assessing load balancer latency.
- version:
- 1.0.0
- license:
- Apache-2.0
- tags:
- [gcp, cloud-monitoring, metrics, alerts, observability]
GCP Cloud Monitoring
MCP Server
- Endpoint:
https://monitoring.googleapis.com/mcp(Streamable HTTP) - Auth: OAuth 2.0 via Google IAM — service account key (
GOOGLE_APPLICATION_CREDENTIALS) orgcloud auth application-default login - Requires:
GCP_PROJECT_IDenvironment variable
Available Tools (6)
| Tool | What It Does |
|------|-------------|
| list_timeseries | Query time series data — CPU, memory, network, disk metrics for any GCP resource |
| list_metric_descriptors | Discover available metric types in a project — find what you can monitor |
| list_alert_policies | List all alerting policies — conditions, notification channels, thresholds |
| get_alert_policy | Get details of a specific alerting policy |
| list_alerts | List current and past alert violations — what's firing right now |
| get_alert | Get details of a specific alert violation |
Workflow: GCP Network Monitoring
When a user asks "how is our GCP network performing?":
- Check alerts:
list_alertsto find any active alert violations - VM network metrics:
list_timeseriesforcompute.googleapis.com/instance/network/received_bytes_countandsent_bytes_count - Packet drops:
list_timeseriesforcompute.googleapis.com/instance/network/received_packets_dropped_count - Firewall metrics:
list_timeseriesforcompute.googleapis.com/firewall/dropped_packets_count - Load balancer metrics:
list_timeseriesforloadbalancing.googleapis.com/https/request_countandtotal_latencies - Report: Network health dashboard with any issues flagged
Workflow: Alert Investigation
When investigating GCP alerts:
- List active alerts:
list_alerts— find what's currently firing - Get alert details:
get_alert— condition, threshold, resource affected - Get policy:
get_alert_policy— what triggers this alert, notification channels - Pull metrics:
list_timeseriesfor the affected metric — see the spike/anomaly - Cross-reference: Use
gcp-cloud-loggingfor correlated log entries - Report: Alert investigation with root cause and timeline
Workflow: Resource Health Check
When checking GCP infrastructure health:
- Discover metrics:
list_metric_descriptorsfiltered by service (compute, networking, loadbalancing) - VM CPU/Memory:
list_timeseriesforcompute.googleapis.com/instance/cpu/utilizationand memory metrics - Disk I/O:
list_timeseriesforcompute.googleapis.com/instance/disk/read_bytes_countand write metrics - Network throughput:
list_timeseriesfor network sent/received bytes - Alert status:
list_alert_policies+list_alerts— any policies in violation? - Report: Infrastructure health dashboard with severity ratings
Common GCP Network Metrics
| Metric | What It Tells You |
|--------|-------------------|
| compute.googleapis.com/instance/network/received_bytes_count | Inbound network throughput per VM |
| compute.googleapis.com/instance/network/sent_bytes_count | Outbound network throughput per VM |
| compute.googleapis.com/instance/network/received_packets_dropped_count | Dropped inbound packets (congestion) |
| compute.googleapis.com/instance/network/sent_packets_dropped_count | Dropped outbound packets (congestion) |
| compute.googleapis.com/firewall/dropped_packets_count | Packets dropped by VPC firewall rules |
| loadbalancing.googleapis.com/https/request_count | HTTP(S) LB request rate |
| loadbalancing.googleapis.com/https/total_latencies | HTTP(S) LB end-to-end latency |
| loadbalancing.googleapis.com/https/backend_latencies | Backend response time behind LB |
| vpn.googleapis.com/tunnel_established | Cloud VPN tunnel state (1=up, 0=down) |
| vpn.googleapis.com/sent_bytes_count | Bytes sent through VPN tunnel |
| router.googleapis.com/bgp/received_routes_count | BGP routes received by Cloud Router |
| interconnect.googleapis.com/link/received_bytes_count | Cloud Interconnect link throughput |
Important Rules
- Remote MCP server — hosted by Google, no local install needed
- OAuth 2.0 authentication — uses IAM for access control
- Project-scoped — metrics are scoped to the configured GCP project
- Read-only — monitoring queries don't modify anything
- Record in GAIT — log monitoring investigations for audit trail
Environment Variables
GCP_PROJECT_ID— Google Cloud project IDGOOGLE_APPLICATION_CREDENTIALS— Path to service account key JSON file
Related Skills
automateyournetwork/humanrail-escalation
testing
VerifiedTrustedCommunity
Human-in-the-loop escalation via HumanRail — route low-confidence agent decisions, pre-destructive operation approvals, and ambiguous incident tickets to real human engineers. Human answers are verified and returned as structured output. Workers are paid via Lightning Network. Use when the agent is uncertain, when a destructive change needs explicit human sign-off beyond a ServiceNow CR, or when an ambiguous ticket requires human triage before automated handling.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-node-operations
testing
VerifiedTrustedCommunity
Manage EVE-NG node lifecycle. Use when listing nodes, checking runtime state, creating or deleting nodes, starting or stopping nodes or whole labs, verifying node details, or wiping node NVRAM back to factory defaults.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-lab-management
development
VerifiedTrustedCommunity
Manage EVE-NG labs and platform inventory. Use when listing labs, checking lab metadata, creating or deleting labs, importing or exporting lab archives, checking EVE-NG health or auth, or verifying available node images before build work.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-console-ops
tools
VerifiedTrustedCommunity
Execute live CLI commands on running EVE-NG nodes over telnet console. Use when running show commands, making live config changes, verifying protocol state, testing connectivity, checking console readiness, or interacting with IOS, Junos, VPCS, EOS, or NX-OS nodes.
491SKILL.mdUpdated May 12, 2026