Overview
IncidentFox provides 50+ built-in tools across multiple categories. These tools enable agents to interact with your infrastructure and observability stack.Tool Categories
| Category | Tools | Description |
|---|---|---|
| Kubernetes | 9 | Pod logs, deployments, events, resource usage |
| AWS | 8 | EC2, Lambda, RDS, ECS, CloudWatch |
| Observability | 15+ | Grafana, Datadog, Coralogix, New Relic |
| GitHub | 16 | Code search, PRs, issues, Actions |
| Custom MCP | Unlimited | Add your own tools via MCP |
Tool Distribution by Agent
| Agent | Tools | Purpose |
|---|---|---|
| Planner | None | Planning only, delegates to others |
| K8s Agent | 9 | Kubernetes troubleshooting |
| AWS Agent | 8 | AWS resource debugging |
| Metrics Agent | 22 | Anomaly detection, correlation |
| Coding Agent | 15 | Code analysis, CI/CD |
| Investigation Agent | 30+ | All tools (dynamic) |
How Tools Work
Tool Loading
Tools are loaded dynamically based on:- Integration Installed - Is the package available?
- Credentials Configured - Are API keys set?
- Team Settings - Is the tool enabled?
Configuring Tools
Enable/Disable
Per-Agent Configuration
Tool Metrics
All tools track:tool_calls_total{tool_name, status}- Call counttool_duration_seconds{tool_name}- Execution time
Common Tools
Most Used for Investigations
| Tool | Category | Description |
|---|---|---|
get_pod_logs | Kubernetes | Fetch container logs |
get_cloudwatch_logs | AWS | Query CloudWatch logs |
search_coralogix_logs | Observability | Search Coralogix |
query_prometheus | Observability | Query Grafana/Prometheus |
search_github_code | GitHub | Search across repos |
Most Used for CI/CD
| Tool | Category | Description |
|---|---|---|
get_github_actions_logs | GitHub | CI build logs |
describe_codepipeline | AWS | Pipeline status |
read_github_file | GitHub | Read code files |
git_diff | Git | Show changes |